Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CA81486E279711F1BA90FB9FDAE4EC9C.roa
File: CA81486E279711F1BA90FB9FDAE4EC9C.roa (raw, json)
Hash identifier: BdLOjio3NdTNugRCbitqwAgbtR3wDwDAkBH+0Y/1iJQ=
Subject key identifier: DA:4F:38:C5:AA:2B:90:7A:D2:50:4C:8F:D4:DF:AD:2A:E1:F0:9F:52
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C0A7
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CA81486E279711F1BA90FB9FDAE4EC9C.roa
Signing time: Tue 24 Mar 2026 15:40:32 +0000
ROA not before: Tue 24 Mar 2026 15:40:27 +0000
ROA not after: Thu 27 Aug 2026 15:40:27 +0000
asID: 45669
IP address blocks: 154.80.16.0/24 maxlen: 24
154.80.17.0/24 maxlen: 24
154.80.18.0/24 maxlen: 24
154.80.19.0/24 maxlen: 24
154.80.20.0/24 maxlen: 24
154.80.21.0/24 maxlen: 24
154.80.22.0/24 maxlen: 24
154.80.23.0/24 maxlen: 24
154.80.24.0/24 maxlen: 24
154.80.25.0/24 maxlen: 24
154.80.26.0/24 maxlen: 24
154.80.27.0/24 maxlen: 24
154.80.28.0/24 maxlen: 24
154.80.29.0/24 maxlen: 24
154.80.30.0/24 maxlen: 24
154.80.31.0/24 maxlen: 24
154.80.32.0/24 maxlen: 24
154.80.33.0/24 maxlen: 24
154.80.34.0/24 maxlen: 24
154.80.35.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 28 Mar 2026 00:07:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114855 (0x1c0a7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 24 15:40:27 2026 GMT
Not After : Aug 27 15:40:27 2026 GMT
Subject: CN=69c2b070-36f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:f0:ad:04:3b:0d:5d:59:f1:8c:d9:4d:3b:10:
d7:00:a0:02:4b:db:e7:c4:1d:42:fc:d0:fd:7d:93:
74:92:44:b0:23:ec:66:29:67:dc:b2:f3:ec:80:6e:
68:d3:1b:1c:dc:6f:e3:98:0a:0c:a5:31:94:15:53:
d2:fc:d2:26:18:b7:86:9f:d9:0f:5d:62:a1:dd:e2:
6c:be:0c:c6:70:5d:ea:15:57:84:66:48:15:35:ba:
9c:18:d3:a0:7a:9e:6f:68:a3:b4:8c:cc:0c:1b:ef:
32:ba:9c:77:47:7a:d7:f9:a2:f2:00:77:1e:b8:2f:
34:78:0c:c6:1b:ca:d4:25:76:c6:ff:de:e5:c8:75:
88:34:5b:6e:27:0d:10:53:59:9a:93:ad:91:a4:85:
82:12:50:80:b3:2d:4f:76:01:de:bb:95:e2:07:c7:
3b:c1:66:20:4d:c0:d2:a7:02:70:ad:36:70:09:6d:
0f:78:97:c5:48:6a:de:04:9b:dd:24:55:d9:14:33:
67:3f:b8:fe:52:fd:9a:4e:68:6f:80:06:76:fc:20:
41:df:08:42:69:ba:9b:14:1f:f4:df:15:4c:9b:0b:
86:d0:9c:35:ce:5c:76:8f:a0:a1:e4:eb:c5:a1:21:
9f:ca:c9:b8:ee:eb:86:27:c3:29:e5:97:9d:ff:b5:
01:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:4F:38:C5:AA:2B:90:7A:D2:50:4C:8F:D4:DF:AD:2A:E1:F0:9F:52
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CA81486E279711F1BA90FB9FDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.80.16.0-154.80.35.255
Signature Algorithm: sha256WithRSAEncryption
72:53:5f:94:6b:dd:47:75:d0:d0:21:1c:c9:12:65:35:53:42:
db:39:6e:37:9f:6c:aa:c0:0a:2b:13:80:1b:72:7d:71:6b:d4:
47:2c:a2:81:3b:bf:35:b9:31:79:96:73:96:aa:04:80:ce:83:
5f:7c:4f:38:5e:12:57:8d:6f:22:a3:57:9f:a0:08:fd:47:64:
e2:ff:83:7b:68:e5:6c:93:db:cc:02:f7:3b:22:da:b1:9d:1f:
7b:53:8c:c9:e9:eb:14:80:b5:b6:43:fb:d3:38:f0:dd:bb:80:
de:14:f8:72:11:8f:1e:a8:40:43:3f:a1:fc:e0:ff:7c:43:8d:
ee:07:73:1b:eb:bd:94:cd:a2:f2:a1:03:d2:df:bf:e2:ae:3c:
e9:be:bc:a2:1b:6a:b6:40:47:4e:6f:7e:46:b1:ad:58:10:f0:
f4:07:98:80:42:34:1a:00:df:d8:e9:f8:bb:7d:24:98:be:e7:
2f:75:2e:c2:96:1d:60:3b:94:15:de:f2:2c:87:f9:3d:21:6a:
f3:c1:a7:e3:c4:cd:3a:cb:c7:81:77:06:06:a5:2f:f7:67:9b:
88:2c:23:a8:9a:0b:46:01:74:7e:52:7f:f8:65:9e:43:df:84:
f2:3a:0a:44:98:78:36:5c:db:91:b7:01:fb:60:1c:a1:f7:16:
b9:83:cb:14
-----BEGIN CERTIFICATE-----
MIIFjDCCBHSgAwIBAgIDAcCnMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjYwMzI0MTU0MDI3WhcNMjYwODI3MTU0MDI3WjAYMRYw
FAYDVQQDEw02OWMyYjA3MC0zNmY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAyvCtBDsNXVnxjNlNOxDXAKACS9vnxB1C/ND9fZN0kkSwI+xmKWfcsvPs
gG5o0xsc3G/jmAoMpTGUFVPS/NImGLeGn9kPXWKh3eJsvgzGcF3qFVeEZkgVNbqc
GNOgep5vaKO0jMwMG+8yupx3R3rX+aLyAHceuC80eAzGG8rUJXbG/97lyHWINFtu
Jw0QU1mak62RpIWCElCAsy1PdgHeu5XiB8c7wWYgTcDSpwJwrTZwCW0PeJfFSGre
BJvdJFXZFDNnP7j+Uv2aTmhvgAZ2/CBB3whCabqbFB/03xVMmwuG0Jw1zlx2j6Ch
5OvFoSGfysm47uuGJ8Mp5Zed/7UBiwIDAQABo4ICrTCCAqkwHQYDVR0OBBYEFNpP
OMWqK5B60lBMj9TfrSrh8J9SMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9DQTgxNDg2RTI3OTcxMUYxQkE5MEZCOUZEQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOMAwDBASaUBADBAKaUCAwDQYJ
KoZIhvcNAQELBQADggEBAHJTX5Rr3Ud10NAhHMkSZTVTQts5bjefbKrACisTgBty
fXFr1EcsooE7vzW5MXmWc5aqBIDOg198TzheEleNbyKjV5+gCP1HZOL/g3to5WyT
28wC9zsi2rGdH3tTjMnp6xSAtbZD+9M48N27gN4U+HIRjx6oQEM/ofzg/3xDje4H
cxvrvZTNovKhA9Lfv+KuPOm+vKIbarZAR05vfkaxrVgQ8PQHmIBCNBoA39jp+Lt9
JJi+5y91LsKWHWA7lBXe8iyH+T0havPBp+PEzTrLx4F3BgalL/dnm4gsI6iaC0YB
dH5Sf/hlnkPfhPI6CkSYeDZc25G3AftgHKH3FrmDyxQ=
-----END CERTIFICATE-----
Generated at Thu Mar 26 06:00:54 2026 by rpki-client