Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A9548C3027BC11F184012AF1DAE4EC9C.roa
File: A9548C3027BC11F184012AF1DAE4EC9C.roa (raw, json)
Hash identifier: 2gbisw9LQ41rdF6svCenjYmKDWMrscO9U4WRFqFLDlo=
Subject key identifier: 5F:9E:66:E3:2C:19:80:FD:68:A1:37:BC:CC:D0:B1:A3:92:BA:62:3E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C0D9
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A9548C3027BC11F184012AF1DAE4EC9C.roa
Signing time: Tue 24 Mar 2026 20:04:28 +0000
ROA not before: Tue 24 Mar 2026 20:04:23 +0000
ROA not after: Fri 01 May 2026 20:04:23 +0000
asID: 62240
IP address blocks: 154.195.6.0/24 maxlen: 24
154.195.7.0/24 maxlen: 24
154.195.139.0/24 maxlen: 24
154.195.145.0/24 maxlen: 24
154.195.146.0/24 maxlen: 24
154.195.147.0/24 maxlen: 24
154.195.148.0/24 maxlen: 24
154.195.149.0/24 maxlen: 24
154.195.150.0/24 maxlen: 24
154.195.151.0/24 maxlen: 24
154.195.168.0/24 maxlen: 24
154.195.169.0/24 maxlen: 24
154.195.170.0/24 maxlen: 24
154.195.171.0/24 maxlen: 24
154.195.172.0/24 maxlen: 24
154.195.173.0/24 maxlen: 24
154.195.174.0/24 maxlen: 24
154.195.175.0/24 maxlen: 24
154.195.176.0/24 maxlen: 24
154.195.177.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 28 Mar 2026 00:07:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114905 (0x1c0d9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 24 20:04:23 2026 GMT
Not After : May 1 20:04:23 2026 GMT
Subject: CN=69c2ee4c-e233
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:15:57:88:56:38:35:e6:f0:63:cc:67:4d:d9:
73:4a:19:43:58:6d:0c:85:ba:6a:46:41:21:b0:41:
58:bb:70:ce:bd:b9:32:93:2b:2b:eb:cc:d0:a2:84:
ea:65:19:e4:cd:57:a7:82:31:ce:54:b7:a8:d9:17:
31:58:5f:23:d2:1b:82:73:20:1c:6a:fc:84:33:17:
a6:40:91:18:60:ef:b0:64:a1:a0:39:9b:f8:eb:9d:
53:84:6c:f7:02:97:1a:64:54:d5:7f:eb:14:f3:e7:
1f:8a:41:97:6a:61:ff:4a:ea:0c:71:e9:ce:63:a1:
31:1c:9a:22:b7:23:44:fe:ec:a8:f3:79:45:f2:3c:
2c:9d:0f:f0:85:25:0f:3c:11:58:57:23:bf:0e:79:
ff:98:9d:1d:d0:d5:a4:25:84:8e:a7:6f:ab:1f:9e:
60:8c:81:12:77:f7:76:82:0f:76:60:71:9c:7c:94:
80:c6:3d:23:f9:6c:16:f6:c1:32:56:03:ce:fd:c5:
a5:a7:36:74:29:ab:df:f1:2b:f2:e5:c2:69:6c:0d:
6e:70:d1:96:33:87:3c:1a:08:d8:fd:cb:28:7e:ef:
e6:da:b1:b7:9e:27:28:a2:7e:ea:f5:45:54:12:75:
82:a2:ce:95:3c:6d:f7:e1:d4:fc:dd:fc:90:b9:6c:
63:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:9E:66:E3:2C:19:80:FD:68:A1:37:BC:CC:D0:B1:A3:92:BA:62:3E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A9548C3027BC11F184012AF1DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.195.6.0/23
154.195.139.0/24
154.195.145.0-154.195.151.255
154.195.168.0-154.195.177.255
Signature Algorithm: sha256WithRSAEncryption
8b:61:c7:50:ef:a4:38:34:51:07:3e:cf:8d:63:cc:26:4b:45:
c3:71:c3:f0:42:25:fe:93:ac:58:ab:ef:56:82:4f:ae:1d:46:
8b:d6:27:3a:81:8b:aa:94:cd:54:fe:5d:5a:59:bf:55:13:c5:
12:00:ad:bb:27:4d:79:15:6a:bb:6e:e7:cf:5d:d8:4e:e6:05:
f2:90:39:4c:dd:e7:fc:69:05:db:fe:24:d0:39:03:04:d6:7c:
32:87:db:41:df:de:cc:38:42:95:16:6b:8a:77:1a:ae:13:ec:
1c:af:13:99:45:49:7e:69:75:a3:12:61:a5:0a:d3:f6:99:4a:
eb:f7:f5:d2:ce:d4:1c:55:ba:b0:28:08:b3:aa:b3:33:b5:34:
d8:93:4f:e4:6b:46:79:d1:9e:5b:18:98:ad:83:c6:b7:a6:ce:
db:be:00:f1:ac:36:6d:6c:c8:f3:57:bf:3d:aa:59:cd:44:a3:
69:98:10:b7:b5:fd:24:21:5a:db:81:f6:ae:1b:eb:d2:09:cb:
a4:d7:87:47:4c:31:52:49:ea:9f:a6:52:e5:71:0e:b1:b9:5d:
69:77:d7:a2:32:06:0e:7f:34:28:90:e6:e3:fb:1a:4f:48:3d:
fc:e6:66:d2:48:a2:a2:97:79:94:85:02:89:40:03:24:c0:8f:
6a:3e:ad:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 04:46:52 2026 by rpki-client