Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C0B19D9627B711F1A33ACCD5DAE4EC9C.roa
File: C0B19D9627B711F1A33ACCD5DAE4EC9C.roa (raw, json)
Hash identifier: S0Eplueks5XTbPOdfWPz4O3ziSbp4IyZ3Op3v3rBBqo=
Subject key identifier: A8:45:2E:69:4B:A4:0E:06:D1:9E:83:E0:0E:D8:9B:2D:75:16:10:F8
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C0CF
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C0B19D9627B711F1A33ACCD5DAE4EC9C.roa
Signing time: Tue 24 Mar 2026 19:29:20 +0000
ROA not before: Tue 24 Mar 2026 19:29:14 +0000
ROA not after: Thu 30 Apr 2026 19:29:14 +0000
asID: 55933
IP address blocks: 154.201.64.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 28 Mar 2026 00:07:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114895 (0x1c0cf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 24 19:29:14 2026 GMT
Not After : Apr 30 19:29:14 2026 GMT
Subject: CN=69c2e60f-1986
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:9d:33:b0:a1:46:de:7b:9e:9d:26:eb:ed:9e:
d8:8d:ae:71:82:41:88:e6:c3:a4:86:a7:28:81:07:
43:ac:51:4e:cf:3b:4b:8c:a9:88:de:bc:c2:bd:83:
65:a9:ac:6e:9f:1d:0b:01:50:bc:87:74:95:96:22:
13:38:5c:07:40:0d:81:45:92:34:f0:b6:88:9c:fd:
cf:95:bb:3d:3f:0c:d8:09:84:30:56:cd:0e:d5:29:
18:4f:b0:1d:d7:fa:3d:36:b6:be:5b:43:e1:ef:11:
d8:3f:ef:33:2e:b0:30:6a:3a:37:7a:07:68:ad:4e:
7b:b0:f7:c2:42:46:2f:0b:13:cd:77:9c:b7:75:14:
51:7b:e3:a5:e8:95:4a:57:2e:90:e4:de:9b:03:c5:
86:b6:73:0d:de:7b:00:f9:a3:59:34:db:48:55:9d:
3c:4a:b9:95:65:be:f5:11:a0:bf:a0:0d:3b:44:79:
7f:a6:a0:57:90:5b:2c:e6:3a:35:09:54:44:ed:44:
fb:69:ae:32:f8:4e:12:d8:a4:a6:36:31:ee:4d:af:
b7:6e:e0:ce:f4:5a:f1:67:b5:79:92:32:ae:81:52:
4f:88:91:b5:b5:58:07:85:ed:7b:38:a3:a3:c9:92:
a7:ad:6e:f5:1e:c9:b1:18:6d:29:8d:4a:45:a6:9f:
27:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:45:2E:69:4B:A4:0E:06:D1:9E:83:E0:0E:D8:9B:2D:75:16:10:F8
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C0B19D9627B711F1A33ACCD5DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.201.64.0/19
Signature Algorithm: sha256WithRSAEncryption
4f:74:d3:88:89:01:f2:83:a5:82:ee:34:39:87:fa:dd:71:53:
6c:f6:d6:cd:76:c9:a5:50:cb:8d:f8:9f:70:d1:cd:a9:8d:92:
b6:8a:53:77:66:f6:a6:9f:63:e8:8d:07:af:51:4d:f0:20:26:
03:82:60:b7:14:33:34:1e:07:39:fc:77:3b:f5:b8:d6:cf:54:
ab:cd:a7:fe:7a:34:84:c7:4b:31:16:16:d0:09:7c:8c:2d:04:
34:ff:a2:e9:7e:be:82:fc:b1:14:c4:11:35:a5:97:0a:b5:5d:
1b:ce:0c:fd:74:cf:03:bc:34:56:0e:2f:58:91:f3:f1:bd:36:
4f:6b:0c:41:6d:63:5b:90:c1:8e:28:f8:a6:e2:d5:29:c7:14:
34:cc:d8:29:d3:4d:a6:8d:8b:f6:9c:0a:39:51:02:c0:63:09:
ad:d0:17:78:52:48:75:fe:a8:93:b9:c2:4b:ca:02:70:b9:a7:
56:af:f3:4b:1e:42:da:18:70:e7:8a:31:5c:20:0b:0f:58:ec:
9c:10:b2:e9:7f:13:74:aa:8c:89:58:59:82:05:c9:df:08:0d:
39:f8:3a:7d:77:26:74:9f:46:9a:35:ac:5d:48:f4:b2:3e:83:
b9:90:ab:72:7b:08:6e:b3:fb:79:8a:bd:3d:a5:34:44:44:92:
fd:10:de:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 09:11:51 2026 by rpki-client