Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EEDEF1DA27A011F1BDEEB2D2DAE4EC9C.roa
File: EEDEF1DA27A011F1BDEEB2D2DAE4EC9C.roa (raw, json)
Hash identifier: OJfqqSuF/iLzV1HIlLMUNr/UdGjOqxsIW0NCnevuTq0=
Subject key identifier: 2E:85:D5:E6:34:3F:C7:CE:B6:ED:25:1E:42:EC:1F:36:57:FC:CB:EC
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C0B9
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EEDEF1DA27A011F1BDEEB2D2DAE4EC9C.roa
Signing time: Tue 24 Mar 2026 16:45:59 +0000
ROA not before: Tue 24 Mar 2026 16:45:54 +0000
ROA not after: Fri 01 May 2026 16:45:54 +0000
asID: 62240
IP address blocks: 154.194.99.0/24 maxlen: 24
154.194.100.0/24 maxlen: 24
154.196.56.0/24 maxlen: 24
154.196.57.0/24 maxlen: 24
154.196.58.0/24 maxlen: 24
154.196.59.0/24 maxlen: 24
154.196.60.0/24 maxlen: 24
154.196.61.0/24 maxlen: 24
154.196.62.0/24 maxlen: 24
154.196.64.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 28 Mar 2026 00:07:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114873 (0x1c0b9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 24 16:45:54 2026 GMT
Not After : May 1 16:45:54 2026 GMT
Subject: CN=69c2bfc6-5b98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:dc:68:27:80:83:43:63:3e:ff:4e:96:5f:e1:
e6:6d:6f:30:9a:88:77:74:5a:aa:6d:38:ab:89:c9:
38:94:59:1e:e1:ab:3e:07:84:39:da:91:ef:dc:62:
c8:62:9c:22:32:50:76:e6:f9:fc:1d:75:be:4f:89:
d8:dc:fd:79:12:83:0b:e9:88:d8:4e:a8:d7:10:42:
a7:55:d8:ef:b4:49:87:e9:b0:f0:b4:63:64:db:5f:
2a:47:f7:3e:98:fa:6f:31:fa:86:99:26:c3:36:26:
8c:ee:13:47:5b:e7:d9:a8:0a:55:9f:51:e9:da:b8:
59:0f:de:31:13:ae:e6:e2:e2:df:d4:ec:d1:95:15:
4a:3f:41:05:1d:d5:a5:54:8c:6b:29:ca:d6:2e:75:
67:42:88:b7:39:8c:53:0d:15:9c:0c:82:75:9d:9c:
fb:bc:6c:36:70:a8:6b:11:78:6b:e4:c6:4c:9a:91:
9a:d9:b6:38:5e:a5:2c:a3:8d:96:c9:07:15:c6:e0:
d1:b7:87:d5:e7:0c:ba:8a:d1:df:f4:ba:aa:e9:22:
52:b3:cf:b7:3b:cd:18:db:78:23:f2:d2:0a:e4:9d:
e9:b4:32:2c:b9:5a:bc:10:05:94:34:c2:74:2c:ba:
0f:25:21:34:27:85:03:60:9e:5e:43:78:a3:9c:b7:
8c:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:85:D5:E6:34:3F:C7:CE:B6:ED:25:1E:42:EC:1F:36:57:FC:CB:EC
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EEDEF1DA27A011F1BDEEB2D2DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.99.0-154.194.100.255
154.196.56.0-154.196.62.255
154.196.64.0/24
Signature Algorithm: sha256WithRSAEncryption
31:e4:07:c9:c6:11:52:5f:69:c5:69:92:e0:9d:00:80:8c:0c:
e0:49:82:67:5b:40:0c:8a:cf:69:1a:03:ba:bf:e9:67:d5:31:
b8:c1:ad:3a:7f:d9:27:88:1f:12:6e:29:c8:5a:e6:94:ad:49:
f6:0e:57:26:97:9f:62:b4:28:3c:aa:45:be:1c:b1:e1:e4:a5:
b5:0d:59:c0:07:1d:d6:37:7f:35:9c:f7:92:d9:ab:17:2a:3e:
5b:d1:fc:00:49:11:4d:ab:8e:43:c7:ea:15:a0:34:be:57:4e:
fc:b9:17:9c:ff:83:28:b1:55:fa:68:0d:a5:b4:78:84:f8:6b:
cb:da:12:15:bd:c6:43:6d:e2:c0:94:bb:68:ca:b4:a0:8f:91:
b2:89:6b:19:4c:07:5c:16:52:49:ad:e3:07:28:66:09:5f:00:
ea:15:ac:56:8b:cc:1f:df:56:0d:e6:7f:34:c5:74:71:3f:ab:
a0:b0:1d:6a:c9:0a:a3:25:f5:cc:d2:8a:f9:e4:98:2a:c1:c2:
77:72:61:c8:b3:0d:fc:3a:86:eb:07:ff:f0:83:6c:8b:50:13:
70:9e:04:f0:89:16:62:8a:22:93:31:4e:68:3d:8a:f7:a4:be:
2b:63:8b:df:44:d0:e2:6b:5b:24:31:81:73:52:52:03:42:ea:
25:e6:73:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 08:37:01 2026 by rpki-client