Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1A4AFB76508B11F185D90819CF1D38B0.roa
File: 1A4AFB76508B11F185D90819CF1D38B0.roa (raw, json)
Hash identifier: HN+SvkYdpuFQaKS3UVoBL0YwVCK1LmxTKnRkZXfHB+Y=
Subject key identifier: FF:15:3C:00:DA:F9:41:7F:C4:D2:03:F8:D3:9B:68:00:32:25:CD:D9
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01CBCE
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1A4AFB76508B11F185D90819CF1D38B0.roa
Signing time: Fri 15 May 2026 18:23:00 +0000
ROA not before: Fri 15 May 2026 18:22:55 +0000
ROA not after: Mon 22 Jun 2026 18:22:55 +0000
asID: 141159
IP address blocks: 154.94.228.0/22 maxlen: 24
154.94.228.0/24 maxlen: 24
154.94.229.0/24 maxlen: 24
154.94.230.0/24 maxlen: 24
154.94.231.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 04 Jun 2026 00:07:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117710 (0x1cbce)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 15 18:22:55 2026 GMT
Not After : Jun 22 18:22:55 2026 GMT
Subject: CN=6a076484-fd9d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f9:15:0f:68:be:76:5b:22:50:c5:93:43:50:ee:
19:ab:d3:87:af:4c:3d:e7:8d:7b:9b:d2:c4:3e:37:
44:6f:ab:bc:a1:df:df:2f:c9:a8:07:18:e9:1e:13:
8f:c1:43:61:2a:38:ae:4d:6e:38:2f:76:34:d1:af:
8e:d4:4f:db:ea:aa:e0:8e:bd:d8:fc:2a:c7:b3:b1:
8d:74:67:1d:c8:25:df:4f:d8:fe:67:8a:85:57:48:
e2:4d:b0:59:26:3c:7e:bd:24:ae:91:bb:db:ed:7a:
49:12:2e:ab:b3:43:f9:ce:82:69:39:69:96:ed:03:
e2:b6:95:67:66:8c:7b:22:ed:10:a4:f9:69:f2:d2:
48:b1:70:d1:e7:b2:d9:38:8a:4c:f1:6f:86:4e:26:
8a:40:7a:e3:53:86:4e:c9:a3:0c:71:9d:20:ae:33:
3a:a1:39:2f:0f:e5:bb:6e:c2:9a:ec:05:c2:a1:08:
4b:21:c9:9f:f6:6e:82:46:d3:c3:bf:09:d5:b4:fd:
ee:4f:e9:6f:fa:17:1e:4a:5f:92:6f:b1:23:82:8f:
b2:be:59:95:15:c6:1e:11:7d:de:c0:28:0c:8a:58:
48:58:55:c9:b2:12:c8:04:5e:3b:2a:21:23:3b:19:
57:a3:1f:aa:13:44:b9:46:a1:6e:09:d9:fa:33:17:
54:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:15:3C:00:DA:F9:41:7F:C4:D2:03:F8:D3:9B:68:00:32:25:CD:D9
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1A4AFB76508B11F185D90819CF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.228.0/22
Signature Algorithm: sha256WithRSAEncryption
7f:17:fa:65:38:53:c3:25:e2:7f:e1:6f:ab:18:7f:51:40:8c:
e9:0e:94:80:b0:58:0f:c5:40:8f:4c:b8:a4:77:c0:3e:08:e2:
11:22:d4:3a:26:a5:ff:f9:f2:7b:df:3e:a5:ab:dc:93:ec:ff:
0c:b6:92:be:ce:41:57:96:31:d5:7c:b9:80:68:43:20:be:f1:
9f:6c:1b:58:08:77:d1:5c:53:39:33:8e:df:e2:26:88:e8:c8:
81:d6:0b:6b:69:ea:68:60:1b:c7:9d:f3:06:d8:4b:48:39:50:
68:63:b6:2b:dc:ae:26:b6:eb:2e:96:94:3c:af:7f:46:f2:d9:
cf:85:8a:4f:47:c4:31:eb:b4:af:9f:88:f6:85:ee:af:a2:44:
f6:d0:22:a9:26:92:2f:8d:77:b4:dc:08:a8:bf:af:f9:d3:52:
61:c2:a3:5c:87:45:aa:62:f4:ca:11:78:56:ab:43:7c:60:dd:
1c:45:13:d6:aa:1f:41:e6:69:d1:7c:4f:a8:03:b1:ec:cf:08:
3f:5b:45:d4:b0:89:1d:8c:3d:b6:4c:70:3d:27:6a:29:b3:21:
b9:8d:09:43:d4:75:ee:22:75:7b:86:03:b4:c2:22:7f:c2:93:
3f:6a:e1:6d:2a:4e:19:cc:2d:93:38:b0:37:73:c6:60:b3:7f:
92:d0:cc:e0
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAcvOMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjYwNTE1MTgyMjU1WhcNMjYwNjIyMTgyMjU1WjAYMRYw
FAYDVQQDEw02YTA3NjQ4NC1mZDlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA+RUPaL52WyJQxZNDUO4Zq9OHr0w95417m9LEPjdEb6u8od/fL8moBxjp
HhOPwUNhKjiuTW44L3Y00a+O1E/b6qrgjr3Y/CrHs7GNdGcdyCXfT9j+Z4qFV0ji
TbBZJjx+vSSukbvb7XpJEi6rs0P5zoJpOWmW7QPitpVnZox7Iu0QpPlp8tJIsXDR
57LZOIpM8W+GTiaKQHrjU4ZOyaMMcZ0grjM6oTkvD+W7bsKa7AXCoQhLIcmf9m6C
RtPDvwnVtP3uT+lv+hceSl+Sb7Ejgo+yvlmVFcYeEX3ewCgMilhIWFXJshLIBF47
KiEjOxlXox+qE0S5RqFuCdn6MxdUowIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFP8V
PADa+UF/xNID+NObaAAyJc3ZMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8xQTRBRkI3NjUwOEIxMUYxODVEOTA4MTlDRjFEMzhCMC5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCml7kMA0GCSqGSIb3DQEB
CwUAA4IBAQB/F/plOFPDJeJ/4W+rGH9RQIzpDpSAsFgPxUCPTLikd8A+COIRItQ6
JqX/+fJ73z6lq9yT7P8MtpK+zkFXljHVfLmAaEMgvvGfbBtYCHfRXFM5M47f4iaI
6MiB1gtraepoYBvHnfMG2EtIOVBoY7Yr3K4mtusulpQ8r39G8tnPhYpPR8Qx67Sv
n4j2he6vokT20CKpJpIvjXe03Aiov6/501JhwqNch0WqYvTKEXhWq0N8YN0cRRPW
qh9B5mnRfE+oA7Hszwg/W0XUsIkdjD22THA9J2opsyG5jQlD1HXuInV7hgO0wiJ/
wpM/auFtKk4ZzC2TOLA3c8Zgs3+S0Mzg
-----END CERTIFICATE-----
Generated at Tue Jun 2 21:35:46 2026 by rpki-client