Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A6CD8DFE278511F197DDD4B7DAE4EC9C.roa
File: A6CD8DFE278511F197DDD4B7DAE4EC9C.roa (raw, json)
Hash identifier: PfygA2nE8pZ+12/shYOOkM7SGZEWTo8OAwOMMnkIN98=
Subject key identifier: C5:85:72:18:A1:E7:AD:A6:1B:75:02:BB:96:7C:A4:C2:22:D7:D8:BC
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C093
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A6CD8DFE278511F197DDD4B7DAE4EC9C.roa
Signing time: Tue 24 Mar 2026 13:30:41 +0000
ROA not before: Tue 24 Mar 2026 13:30:36 +0000
ROA not after: Fri 01 May 2026 13:30:36 +0000
asID: 62240
IP address blocks: 154.194.109.0/24 maxlen: 24
154.194.110.0/24 maxlen: 24
154.194.111.0/24 maxlen: 24
154.194.117.0/24 maxlen: 24
154.194.207.0/24 maxlen: 24
154.195.113.0/24 maxlen: 24
154.195.141.0/24 maxlen: 24
154.195.142.0/24 maxlen: 24
154.198.63.0/24 maxlen: 24
154.198.191.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 28 Mar 2026 00:07:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114835 (0x1c093)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 24 13:30:36 2026 GMT
Not After : May 1 13:30:36 2026 GMT
Subject: CN=69c29201-a6f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:4b:54:42:56:70:de:36:a0:9a:29:2b:8b:32:
5a:1c:73:4b:a1:b4:c3:7f:b4:10:d7:1b:5a:5f:20:
4c:ad:85:6f:9c:ad:5c:8c:dd:03:5f:f8:ea:af:78:
99:fd:4b:25:d7:b0:6a:26:9d:e8:e7:f8:8b:76:2b:
d6:01:8d:97:56:f6:65:0c:2c:3c:69:f6:51:60:bc:
0c:1e:c3:5c:9f:16:b1:b2:ce:bb:ba:a8:83:b9:8e:
d4:26:4d:e9:61:31:95:81:aa:93:86:18:17:00:e2:
f6:10:f6:ca:e4:b4:b3:df:59:17:6c:61:f9:eb:84:
ee:f8:a1:70:aa:f8:01:39:55:25:76:d2:16:d4:1c:
a0:64:dc:2e:3c:68:43:a7:55:ba:d0:73:fa:8b:a8:
4e:22:b0:4a:fa:ee:65:d7:a0:e8:e4:9e:4d:bb:34:
fd:dc:84:fb:6f:cb:ef:c2:06:6b:08:52:56:f1:3e:
cd:b8:bd:e6:ad:ea:99:5d:dc:01:e2:37:47:75:80:
8a:07:3c:f8:e8:f8:50:50:ef:67:72:2e:7b:f5:e8:
43:4d:c8:3d:9e:47:dc:c5:0a:62:9a:48:fd:67:a0:
f5:c9:07:41:80:39:f6:e0:c7:e6:ea:b9:c6:9a:98:
6b:d9:25:47:89:2f:59:36:df:c5:06:59:e9:6f:5c:
7f:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:85:72:18:A1:E7:AD:A6:1B:75:02:BB:96:7C:A4:C2:22:D7:D8:BC
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A6CD8DFE278511F197DDD4B7DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.109.0-154.194.111.255
154.194.117.0/24
154.194.207.0/24
154.195.113.0/24
154.195.141.0-154.195.142.255
154.198.63.0/24
154.198.191.0/24
Signature Algorithm: sha256WithRSAEncryption
ac:5e:05:d8:33:94:58:9d:90:86:0c:dc:c4:39:e3:4b:20:b4:
a1:58:28:72:00:af:46:fa:4e:d7:1f:ec:2b:cd:19:7a:7f:37:
a1:93:ec:60:86:56:82:c7:4c:52:a8:fb:2f:e4:dc:5b:c4:6e:
9e:d9:df:88:7f:d1:bb:e1:b3:32:17:17:78:a3:6b:35:68:28:
9e:bb:75:01:e5:bd:06:79:3a:d6:c4:e5:aa:1e:18:bf:65:e0:
c7:75:42:e6:6e:2d:e6:22:f7:80:d4:1f:f7:2d:60:2d:8c:68:
05:82:bf:81:7b:fa:08:db:f6:e7:de:6c:7c:c4:5d:62:d3:ee:
77:b8:bf:01:cb:2f:da:43:2e:25:9b:0b:8a:16:ab:3a:d8:81:
38:7f:88:77:d1:bc:ad:12:de:e4:bf:ee:55:06:c2:14:d6:68:
8d:61:78:7d:1b:bd:69:ad:71:bd:e5:df:0a:ff:b5:7a:04:11:
f4:6b:3e:e0:01:fe:16:fe:38:fe:34:37:01:8b:3c:82:05:21:
2f:94:5c:9f:9a:47:c3:af:60:fe:28:87:be:89:6d:2b:df:c6:
d1:1b:55:2f:6d:c8:64:d1:bf:d2:75:17:2f:4f:ad:19:83:3c:
0c:29:fd:95:ec:20:97:d5:f2:2b:ea:f7:80:9d:98:b2:b6:61:
e5:9c:a2:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 04:07:31 2026 by rpki-client