Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AB83382A279511F181E64593DAE4EC9C.roa
File: AB83382A279511F181E64593DAE4EC9C.roa (raw, json)
Hash identifier: 77uM5wi7BjyqKmOvXHdlmkeiKqyQt2h20doWd8b5luw=
Subject key identifier: 1B:28:EF:9B:65:23:08:87:A2:F5:95:08:E9:8F:92:39:9D:8F:F5:AB
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C0A3
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AB83382A279511F181E64593DAE4EC9C.roa
Signing time: Tue 24 Mar 2026 15:25:21 +0000
ROA not before: Tue 24 Mar 2026 15:25:16 +0000
ROA not after: Thu 27 Aug 2026 15:25:16 +0000
asID: 45669
IP address blocks: 154.80.56.0/24 maxlen: 24
154.80.57.0/24 maxlen: 24
154.80.58.0/24 maxlen: 24
154.80.59.0/24 maxlen: 24
154.80.60.0/24 maxlen: 24
154.80.61.0/24 maxlen: 24
154.80.62.0/24 maxlen: 24
154.80.63.0/24 maxlen: 24
154.80.64.0/24 maxlen: 24
154.80.65.0/24 maxlen: 24
154.80.66.0/24 maxlen: 24
154.80.67.0/24 maxlen: 24
154.80.68.0/24 maxlen: 24
154.80.69.0/24 maxlen: 24
154.80.70.0/24 maxlen: 24
154.80.71.0/24 maxlen: 24
154.80.72.0/24 maxlen: 24
154.80.73.0/24 maxlen: 24
154.80.74.0/24 maxlen: 24
154.80.75.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 28 Mar 2026 00:07:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114851 (0x1c0a3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 24 15:25:16 2026 GMT
Not After : Aug 27 15:25:16 2026 GMT
Subject: CN=69c2ace1-3e5b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:fb:fb:84:a8:0f:c9:4f:fd:63:c1:70:77:a5:
86:99:6a:0f:72:04:8e:c3:cc:5e:42:5e:4b:7b:74:
3f:c1:76:f6:dd:56:22:28:5e:fa:fc:85:c7:2b:49:
7a:94:1f:c8:83:57:1f:44:a1:17:bd:d8:2d:41:0b:
e3:d2:62:f7:8b:3f:ae:86:c0:39:44:62:aa:ae:37:
25:85:05:8c:a3:68:97:d6:4d:4e:95:75:61:cb:fb:
70:9e:b0:04:35:a5:67:21:fd:a1:b7:ec:86:8a:7a:
ca:26:2d:32:37:7d:91:b1:ac:41:ca:0d:de:75:18:
78:bb:1c:76:c1:e5:7b:b8:3c:12:5e:ad:74:c5:61:
94:f9:40:12:30:80:1f:9b:bd:76:42:a6:62:0a:99:
60:8b:5c:32:d1:b5:32:6e:24:a9:47:fe:be:7d:31:
6a:46:81:c9:eb:dd:fb:fe:2c:10:6a:19:88:93:9c:
cf:33:52:89:b5:9d:81:fa:ab:8a:af:e8:f3:eb:f2:
c1:1a:44:f5:48:c1:93:0f:c0:ef:97:e3:03:68:4c:
a7:b5:93:c3:0c:81:95:ac:c2:ab:51:83:8e:d4:fd:
a2:8d:ec:38:c5:6d:a2:55:19:64:d8:ed:33:c2:ae:
f1:02:7b:44:9c:33:57:5b:88:0c:1e:32:58:68:d2:
9f:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:28:EF:9B:65:23:08:87:A2:F5:95:08:E9:8F:92:39:9D:8F:F5:AB
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AB83382A279511F181E64593DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.80.56.0-154.80.75.255
Signature Algorithm: sha256WithRSAEncryption
0e:d9:4b:97:0e:05:d1:c5:b2:1a:5f:a2:42:c7:97:7a:16:64:
2f:af:91:68:73:72:ea:1e:eb:44:bc:9a:ce:9b:40:65:7b:60:
03:67:f6:54:66:bb:61:be:ff:54:ab:b0:3d:e4:ab:de:b3:57:
94:3e:cf:18:ed:fd:25:3b:ef:75:38:74:73:bb:2f:56:9c:36:
ef:b8:56:0c:b6:3c:a8:c4:44:2d:22:71:63:cd:00:67:ec:8e:
2b:77:fa:eb:e1:9f:81:66:a0:ff:4d:cb:4e:db:b0:63:83:6e:
6b:02:57:48:3b:b5:ad:54:e4:1a:be:e5:c1:ac:6b:70:c4:9b:
ae:66:a3:77:a2:cd:68:2f:11:4d:91:43:ce:74:78:90:a7:1b:
57:c7:d1:96:7a:62:d5:66:09:2a:75:ca:dc:7e:61:7a:0e:08:
36:c6:d2:22:3c:5f:1d:97:c4:6e:c6:07:59:4b:bb:48:0c:5f:
49:69:1b:fc:af:cd:c5:b5:df:a8:12:eb:a3:ae:ba:e3:c6:2a:
38:3f:ae:30:eb:95:92:60:c4:9b:e2:92:49:13:0d:95:e1:66:
6e:99:db:54:c2:b5:49:4c:6d:5c:2d:6e:d6:71:21:11:52:cb:
63:c2:38:4e:64:98:f5:cc:39:ec:6e:b6:db:8f:4b:20:8f:35:
3a:bc:25:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 16:32:53 2026 by rpki-client