Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/85984C0E278611F180FCC6BBDAE4EC9C.roa
File: 85984C0E278611F180FCC6BBDAE4EC9C.roa (raw, json)
Hash identifier: ++bGAgeEPcFxl3mkKFTBKcwONM72lv8yYDqBXYiRzEk=
Subject key identifier: 42:44:D8:DF:4B:11:D7:AB:0D:52:83:6A:08:42:F3:3E:07:50:AC:25
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C095
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/85984C0E278611F180FCC6BBDAE4EC9C.roa
Signing time: Tue 24 Mar 2026 13:36:55 +0000
ROA not before: Tue 24 Mar 2026 13:36:50 +0000
ROA not after: Fri 01 May 2026 13:36:50 +0000
asID: 62240
IP address blocks: 154.196.31.0/24 maxlen: 24
154.196.68.0/24 maxlen: 24
154.196.70.0/24 maxlen: 24
154.196.76.0/24 maxlen: 24
154.196.77.0/24 maxlen: 24
154.196.78.0/24 maxlen: 24
154.196.79.0/24 maxlen: 24
154.196.80.0/24 maxlen: 24
154.196.81.0/24 maxlen: 24
154.196.87.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 28 Mar 2026 00:07:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114837 (0x1c095)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 24 13:36:50 2026 GMT
Not After : May 1 13:36:50 2026 GMT
Subject: CN=69c29377-1952
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:e9:d9:ae:f6:fc:a0:e0:0f:16:de:e8:56:d7:
15:c7:2f:a4:f7:5c:10:3d:8f:c7:4e:c6:83:fc:45:
38:3b:bd:b8:48:1f:54:a2:cf:b2:93:b9:6d:87:24:
b3:98:bd:a0:cb:31:c2:9b:39:7a:7e:4b:f5:7c:14:
30:80:99:c6:ec:14:3a:e4:58:2f:8b:40:3c:a8:ad:
1b:66:2d:9c:93:63:d5:af:ae:3e:80:7a:f5:70:29:
56:38:9e:95:b6:4f:74:79:35:8d:50:b7:91:58:d4:
12:a1:41:eb:65:13:7a:20:b2:9d:f5:1d:e1:cb:b4:
3b:10:ca:d3:6f:4a:d7:89:1a:a9:80:10:ff:a3:d2:
c7:3d:c2:7c:bd:b0:ef:d4:89:70:0e:56:12:cd:7e:
92:0a:0d:7e:76:9e:95:4f:39:72:6a:42:e4:4f:5f:
47:04:d5:66:de:6f:6b:28:0f:32:4c:45:06:0b:35:
48:aa:5e:3c:fc:52:fa:a5:79:1c:97:a3:fc:f1:85:
7d:f5:90:b5:db:6c:d5:01:17:73:e0:08:f2:84:31:
05:7b:2b:07:39:87:90:c7:8a:15:67:e1:6c:af:21:
4f:5c:52:fb:00:09:c7:38:f1:fb:f7:2b:71:9c:83:
b1:a5:c7:86:ae:5a:e5:f5:6f:9b:58:dc:87:fd:44:
1b:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:44:D8:DF:4B:11:D7:AB:0D:52:83:6A:08:42:F3:3E:07:50:AC:25
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/85984C0E278611F180FCC6BBDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.196.31.0/24
154.196.68.0/24
154.196.70.0/24
154.196.76.0-154.196.81.255
154.196.87.0/24
Signature Algorithm: sha256WithRSAEncryption
88:ed:66:17:9f:4f:2c:34:74:d4:47:91:00:01:ca:66:37:9d:
94:84:57:f4:cc:bc:10:37:ae:f2:b3:81:0e:bd:f4:99:c0:d6:
5a:3d:11:91:01:a3:69:70:35:54:fa:6b:af:31:b9:95:72:15:
10:e1:4c:13:1d:15:7d:d0:58:f2:9e:4f:ec:4b:20:5f:97:62:
37:6a:de:49:2e:05:fe:4d:cc:54:7b:1f:1c:b6:1c:d0:a1:22:
7a:6a:33:3a:cb:b4:62:e1:7d:af:5a:00:1b:03:73:5c:3d:2b:
15:58:69:b6:16:7f:39:1c:96:7c:7f:dd:11:ea:09:9e:0b:a7:
2a:47:55:f6:72:79:bd:55:7e:2c:93:48:9c:1c:3f:48:4a:a3:
63:16:bf:37:59:cf:7d:c3:6c:0c:85:3b:cd:9b:4d:40:c1:c7:
1b:99:ac:30:f9:50:fc:a6:6a:56:ee:03:00:e6:e8:50:cf:50:
f0:9c:b5:ba:06:4c:00:b8:e3:bc:55:5c:cb:d7:42:9d:6b:5f:
ac:8f:5b:c8:2a:56:67:65:45:60:de:5d:67:bd:9d:3d:6b:52:
76:4a:36:0e:ba:7e:eb:02:ff:9a:bd:43:29:da:96:db:43:a5:
01:1d:0d:3d:82:f3:63:fb:87:36:37:d8:c6:2a:a9:98:9b:d7:
98:18:90:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 16:33:34 2026 by rpki-client