Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0B5D04123FC711F19DDD67A0CE1D38B0.roa
File: 0B5D04123FC711F19DDD67A0CE1D38B0.roa (raw, json)
Hash identifier: uTu2glAY4f6LJ2oF33mhslkND6NIqBoHGBvWgwAE8Ns=
Subject key identifier: 92:A1:02:67:E9:E9:E3:89:3D:B4:44:EE:3F:F4:40:A9:11:5B:49:78
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C739
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0B5D04123FC711F19DDD67A0CE1D38B0.roa
Signing time: Fri 24 Apr 2026 10:19:15 +0000
ROA not before: Fri 24 Apr 2026 10:19:10 +0000
ROA not after: Sun 31 May 2026 10:19:10 +0000
asID: 62240
IP address blocks: 154.194.112.0/24 maxlen: 24
154.194.113.0/24 maxlen: 24
154.195.16.0/24 maxlen: 24
154.195.17.0/24 maxlen: 24
154.195.18.0/24 maxlen: 24
154.195.19.0/24 maxlen: 24
154.195.20.0/24 maxlen: 24
154.195.21.0/24 maxlen: 24
154.195.176.0/24 maxlen: 24
154.195.177.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 11 May 2026 00:07:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116537 (0x1c739)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 24 10:19:10 2026 GMT
Not After : May 31 10:19:10 2026 GMT
Subject: CN=69eb43a3-9eda
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:b1:1f:ae:18:83:a3:d9:e6:02:c9:06:d1:68:
ae:81:ad:0d:23:c4:98:1f:1a:d7:34:11:c3:2d:b4:
7d:69:4a:aa:fa:0b:e9:09:fa:53:d2:ee:cf:bf:3f:
b9:7f:57:67:e5:88:e0:4a:36:76:ae:e4:dd:40:14:
c1:23:e6:97:77:a7:fb:78:2b:42:2c:19:0e:8b:ff:
3a:3a:e7:50:45:9b:ca:77:e1:5f:42:d8:64:dd:eb:
8d:ee:67:f6:2e:dc:ed:1b:6e:8b:a1:4f:cf:58:d9:
66:ba:45:e2:50:f2:8f:b6:ad:a2:6b:14:a1:26:b4:
37:66:b7:f4:4c:c7:87:d8:bd:60:a3:9e:d0:f5:4c:
dd:1c:9a:6b:1e:1c:c9:72:1e:ea:6c:e9:cd:01:a7:
c7:05:98:ee:60:89:e8:99:7a:45:ea:84:e2:f1:35:
cb:85:3a:7f:1d:73:9e:8c:19:53:95:fa:c1:5a:93:
01:0d:19:22:e2:c6:18:f9:90:12:3f:d3:97:70:0a:
74:eb:d1:ef:0e:21:8b:84:59:a2:3f:b5:c6:14:84:
c2:a2:5c:87:28:c6:63:68:88:34:3e:f1:1f:5e:67:
75:96:10:b0:f1:b7:a7:21:a8:5c:38:57:ae:7d:56:
76:17:e6:20:fa:c5:63:07:f1:ea:df:5d:ba:5b:b4:
94:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:A1:02:67:E9:E9:E3:89:3D:B4:44:EE:3F:F4:40:A9:11:5B:49:78
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0B5D04123FC711F19DDD67A0CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.112.0/23
154.195.16.0-154.195.21.255
154.195.176.0/23
Signature Algorithm: sha256WithRSAEncryption
c1:bd:af:b2:6e:fe:16:cc:88:d0:ef:dc:0c:8f:0f:ca:53:2b:
10:4f:ba:27:c6:54:85:0e:1d:47:de:86:13:29:d2:49:8b:46:
f4:ff:6f:5b:3e:b6:cd:dd:46:dd:87:5d:f1:06:64:14:f2:ed:
84:53:df:13:e5:5d:66:b8:ba:ad:0e:ff:03:98:75:f9:ea:0c:
e9:25:cd:49:fe:fb:7c:03:a8:42:bf:7f:ac:ab:c4:c0:d9:83:
6a:ed:8b:6e:36:ea:0a:17:cb:1b:fd:d9:ab:84:59:37:19:08:
81:a3:68:bc:b0:84:1a:2f:d0:1a:12:a2:e1:2f:96:e9:24:9c:
25:e6:01:66:96:72:bf:2f:41:f4:e1:0c:3a:50:59:ab:d2:03:
24:16:1d:e5:af:ee:16:4d:18:e9:68:d0:f5:83:b3:6a:f7:cc:
4a:1f:55:b7:86:b4:5d:ed:dc:e5:4e:6b:e0:08:fe:fd:90:3b:
f1:2f:ff:e1:43:46:82:f1:82:49:6d:b0:90:83:62:2e:e6:9e:
c3:18:53:2f:51:20:ad:be:b3:1f:f5:85:9c:ec:0b:d8:0f:9a:
e8:01:c1:47:eb:8c:c9:25:1d:e1:71:b9:47:17:82:af:72:7e:
da:5b:d6:27:73:be:04:ac:af:12:bc:6f:db:3e:ff:75:a6:e4:
cc:2c:b1:52
-----BEGIN CERTIFICATE-----
MIIFmDCCBICgAwIBAgIDAcc5MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjYwNDI0MTAxOTEwWhcNMjYwNTMxMTAxOTEwWjAYMRYw
FAYDVQQDEw02OWViNDNhMy05ZWRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAsbEfrhiDo9nmAskG0Wiuga0NI8SYHxrXNBHDLbR9aUqq+gvpCfpT0u7P
vz+5f1dn5YjgSjZ2ruTdQBTBI+aXd6f7eCtCLBkOi/86OudQRZvKd+FfQthk3euN
7mf2LtztG26LoU/PWNlmukXiUPKPtq2iaxShJrQ3Zrf0TMeH2L1go57Q9UzdHJpr
HhzJch7qbOnNAafHBZjuYInomXpF6oTi8TXLhTp/HXOejBlTlfrBWpMBDRki4sYY
+ZASP9OXcAp069HvDiGLhFmiP7XGFITColyHKMZjaIg0PvEfXmd1lhCw8benIahc
OFeufVZ2F+Yg+sVjB/Hq3126W7SUyQIDAQABo4ICuTCCArUwHQYDVR0OBBYEFJKh
Amfp6eOJPbRE7j/0QKkRW0l4MB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8wQjVEMDQxMjNGQzcxMUYxOURERDY3QTBDRTFEMzhCMC5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMDMGCCsGAQUFBwEHAQH/BCQwIjAgBAIAATAaAwQBmsJwMAwDBASawxADBAGa
wxQDBAGaw7AwDQYJKoZIhvcNAQELBQADggEBAMG9r7Ju/hbMiNDv3AyPD8pTKxBP
uifGVIUOHUfehhMp0kmLRvT/b1s+ts3dRt2HXfEGZBTy7YRT3xPlXWa4uq0O/wOY
dfnqDOklzUn++3wDqEK/f6yrxMDZg2rti2426goXyxv92auEWTcZCIGjaLywhBov
0BoSouEvlukknCXmAWaWcr8vQfThDDpQWavSAyQWHeWv7hZNGOlo0PWDs2r3zEof
VbeGtF3t3OVOa+AI/v2QO/Ev/+FDRoLxgkltsJCDYi7mnsMYUy9RIK2+sx/1hZzs
C9gPmugBwUfrjMklHeFxuUcXgq9yftpb1idzvgSsrxK8b9s+/3Wm5MwssVI=
-----END CERTIFICATE-----
Generated at Sat May 9 11:01:50 2026 by rpki-client