Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1011BF383EDD11F1BF23A20CCF1D38B0.roa
File: 1011BF383EDD11F1BF23A20CCF1D38B0.roa (raw, json)
Hash identifier: q96jutBglKUAG85XUbWvzm+edxXo095rXo0ww9u8C1w=
Subject key identifier: 4B:53:45:EE:1E:E7:DB:CA:2C:4D:B0:9F:2E:1F:8C:5A:5A:EA:64:D9
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C6BB
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1011BF383EDD11F1BF23A20CCF1D38B0.roa
Signing time: Thu 23 Apr 2026 06:24:21 +0000
ROA not before: Thu 23 Apr 2026 06:24:16 +0000
ROA not after: Mon 08 Jun 2026 06:24:16 +0000
asID: 214143
IP address blocks: 154.81.132.0/22 maxlen: 24
154.81.138.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 15 May 2026 06:17:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116411 (0x1c6bb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 23 06:24:16 2026 GMT
Not After : Jun 8 06:24:16 2026 GMT
Subject: CN=69e9bb14-ff64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:72:f3:d3:65:d0:28:0b:ff:fa:fa:6a:d5:a2:
a2:76:8e:aa:87:8d:44:10:38:eb:29:82:3e:a9:43:
8f:9c:07:06:d2:49:68:39:4d:75:7f:e4:a0:4a:87:
8f:07:43:6d:5f:34:14:95:25:d6:62:77:25:a6:d8:
f6:ce:a2:ca:db:0c:ae:f3:11:b1:2f:f2:d2:1d:c7:
ac:32:8b:af:d5:3b:b7:34:42:ab:dc:59:5d:e8:6e:
e2:88:d6:c3:fe:51:88:50:f7:e2:2d:34:42:9d:98:
27:ed:86:99:54:55:a4:5b:ee:4d:96:ec:77:19:74:
e9:6c:50:fe:7e:2d:b0:13:89:09:64:29:4d:52:f3:
56:e4:fc:8a:fc:dd:f9:cc:82:08:b4:8b:98:cb:6e:
f6:ab:e3:76:9e:50:81:9a:84:c6:da:56:18:2e:e7:
71:73:54:12:c8:64:a8:56:21:6a:78:17:18:b3:55:
59:2c:2d:0f:ce:04:57:2c:c4:46:a9:39:9b:55:de:
ff:05:f8:dd:9d:07:9d:6b:bb:b9:df:df:d7:40:bd:
bb:8d:c0:e8:ec:12:7e:e8:ff:37:e8:44:77:cc:fb:
8b:aa:31:b9:85:58:1c:23:3e:d0:53:bf:35:51:6a:
26:f6:e2:88:8d:a4:e4:75:9f:fa:82:65:71:2c:95:
c2:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:53:45:EE:1E:E7:DB:CA:2C:4D:B0:9F:2E:1F:8C:5A:5A:EA:64:D9
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1011BF383EDD11F1BF23A20CCF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.81.132.0/22
154.81.138.0/23
Signature Algorithm: sha256WithRSAEncryption
a0:5b:7d:17:60:52:51:b4:41:0a:07:b0:2e:c8:df:57:05:cb:
54:d5:05:d5:3e:61:64:b2:ea:b2:35:26:4d:c3:78:9a:ab:ab:
1a:47:29:a8:9f:b3:a3:ce:4d:84:97:62:fd:15:d0:ef:ed:65:
c1:b6:95:97:a9:1c:37:3a:b3:79:8e:5f:e4:6b:7c:26:54:6c:
87:28:09:ab:89:b0:1d:00:1d:c6:14:32:28:d0:1f:24:82:3a:
19:4d:b3:91:07:58:b5:9e:77:b2:b7:1f:8d:c1:f1:f4:ca:42:
f0:79:aa:28:79:cf:5d:e9:00:38:82:b4:a9:13:d4:fa:4d:29:
d0:48:3a:6a:c0:70:53:20:bb:01:a5:fd:5a:d3:6e:e9:e6:6f:
79:af:72:d0:b2:ec:36:ce:1c:c6:b9:1d:b3:4b:e1:96:fc:64:
e1:9c:99:13:5f:1f:58:a8:1e:1b:d3:3b:34:51:aa:40:d4:28:
4f:4a:30:b1:4f:73:d2:97:90:bc:68:5f:8a:0c:bd:f3:19:2b:
6d:a3:e5:6e:c5:d1:f3:93:6c:77:bb:46:10:a7:3b:ea:8d:0d:
94:27:88:f1:4e:40:47:49:48:f1:1b:60:27:44:01:92:c7:9d:
90:fb:f3:dd:f5:44:82:cf:a0:7b:6f:4b:aa:51:67:72:93:7c:
06:4d:65:e9
-----BEGIN CERTIFICATE-----
MIIFijCCBHKgAwIBAgIDAca7MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjYwNDIzMDYyNDE2WhcNMjYwNjA4MDYyNDE2WjAYMRYw
FAYDVQQDEw02OWU5YmIxNC1mZjY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAsnLz02XQKAv/+vpq1aKido6qh41EEDjrKYI+qUOPnAcG0kloOU11f+Sg
SoePB0NtXzQUlSXWYnclptj2zqLK2wyu8xGxL/LSHcesMouv1Tu3NEKr3Fld6G7i
iNbD/lGIUPfiLTRCnZgn7YaZVFWkW+5Nlux3GXTpbFD+fi2wE4kJZClNUvNW5PyK
/N35zIIItIuYy272q+N2nlCBmoTG2lYYLudxc1QSyGSoViFqeBcYs1VZLC0PzgRX
LMRGqTmbVd7/BfjdnQeda7u539/XQL27jcDo7BJ+6P836ER3zPuLqjG5hVgcIz7Q
U781UWom9uKIjaTkdZ/6gmVxLJXCjwIDAQABo4ICqzCCAqcwHQYDVR0OBBYEFEtT
Re4e59vKLE2wny4fjFpa6mTZMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8xMDExQkYzODNFREQxMUYxQkYyM0EyMENDRjFEMzhCMC5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQCmlGEAwQBmlGKMA0GCSqG
SIb3DQEBCwUAA4IBAQCgW30XYFJRtEEKB7AuyN9XBctU1QXVPmFksuqyNSZNw3ia
q6saRymon7Ojzk2El2L9FdDv7WXBtpWXqRw3OrN5jl/ka3wmVGyHKAmribAdAB3G
FDIo0B8kgjoZTbORB1i1nneytx+NwfH0ykLweaooec9d6QA4grSpE9T6TSnQSDpq
wHBTILsBpf1a027p5m95r3LQsuw2zhzGuR2zS+GW/GThnJkTXx9YqB4b0zs0UapA
1ChPSjCxT3PSl5C8aF+KDL3zGStto+VuxdHzk2x3u0YQpzvqjQ2UJ4jxTkBHSUjx
G2AnRAGSx52Q+/Pd9USCz6B7b0uqUWdyk3wGTWXp
-----END CERTIFICATE-----
Generated at Wed May 13 17:57:07 2026 by rpki-client