Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/21CF26CE3E4811F1B68481F3CE1D38B0.roa
File: 21CF26CE3E4811F1B68481F3CE1D38B0.roa (raw, json)
Hash identifier: xpz3GM7pkV2L2S6lTBDuHH4h6pHfbvTaw6eUMmIb8vQ=
Subject key identifier: 76:B5:18:F0:4F:F0:69:20:A1:2F:E5:50:90:A4:B3:40:A5:9B:06:31
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C679
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/21CF26CE3E4811F1B68481F3CE1D38B0.roa
Signing time: Wed 22 Apr 2026 12:38:15 +0000
ROA not before: Wed 22 Apr 2026 12:38:11 +0000
ROA not after: Sun 31 May 2026 12:38:11 +0000
asID: 214143
IP address blocks: 154.82.174.0/23 maxlen: 24
154.82.176.0/23 maxlen: 24
154.82.178.0/23 maxlen: 24
154.82.180.0/24 maxlen: 24
154.83.32.0/24 maxlen: 24
154.92.209.0/24 maxlen: 24
154.93.1.0/24 maxlen: 24
154.93.3.0/24 maxlen: 24
154.93.26.0/24 maxlen: 24
154.94.35.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 11 May 2026 00:07:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116345 (0x1c679)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 22 12:38:11 2026 GMT
Not After : May 31 12:38:11 2026 GMT
Subject: CN=69e8c137-6a19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:84:54:8a:a7:2f:02:3d:bd:ac:75:2a:03:4e:
c6:96:b1:7b:fe:fb:e7:b6:75:19:f7:66:ee:13:89:
e3:90:bc:de:1f:4f:a4:ee:40:46:af:e0:c2:11:6a:
65:95:54:d5:c9:fd:73:63:51:49:38:46:f4:1f:57:
8e:a5:59:ad:1e:5b:18:22:22:10:64:37:6f:fc:90:
70:ac:1f:22:57:52:f8:c9:a4:30:04:47:d5:64:46:
57:ac:cb:8a:fb:94:91:1f:71:c4:86:a0:fb:0b:c8:
64:2f:9c:c1:6b:6f:a1:c6:6e:49:8c:ba:53:43:0b:
7b:3d:2e:48:02:35:27:30:f5:2a:a9:fe:19:a7:29:
5d:0a:9f:0c:e3:54:0e:d8:d4:da:36:34:22:3f:4a:
fd:95:6a:21:43:83:2c:d1:65:42:ae:6a:13:48:07:
5e:79:49:8d:84:76:6e:b4:5b:a0:9f:ce:0e:a1:d2:
71:d4:27:0c:cf:7e:f1:10:5c:54:b9:fa:b3:8c:63:
8f:61:d6:1e:a9:b0:4e:41:6b:81:7d:06:d1:2e:3e:
6e:05:64:27:62:b4:fe:3f:81:c7:7d:8a:67:a5:9e:
9f:fd:fe:fe:45:fc:5b:6a:0e:e6:bb:c9:d4:2c:74:
3f:9d:77:d8:3f:02:29:44:fe:c9:61:71:97:8b:82:
5a:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:B5:18:F0:4F:F0:69:20:A1:2F:E5:50:90:A4:B3:40:A5:9B:06:31
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/21CF26CE3E4811F1B68481F3CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.82.174.0-154.82.180.255
154.83.32.0/24
154.92.209.0/24
154.93.1.0/24
154.93.3.0/24
154.93.26.0/24
154.94.35.0/24
Signature Algorithm: sha256WithRSAEncryption
29:23:67:ce:73:97:c8:9c:b9:70:f9:b5:b3:16:42:a6:d0:91:
76:da:e3:60:34:3e:20:20:b3:52:2f:77:9d:1d:dc:67:de:97:
78:84:46:a4:56:c5:6a:31:30:50:1b:fd:49:93:89:0c:c6:a7:
8d:48:12:7c:0e:b2:ea:0c:aa:95:68:71:f7:cc:3d:7d:b6:59:
fe:21:18:89:cb:39:27:d3:73:97:ab:ed:d2:2f:0f:dc:8e:46:
bb:ae:46:5c:d7:27:57:7b:37:ad:52:70:35:49:d9:4c:d8:a4:
3c:35:e6:61:11:7e:40:fb:19:1b:40:87:8f:8e:10:d7:2f:76:
be:d9:6c:6f:67:88:dc:cc:33:51:1a:33:27:c9:66:64:cf:1d:
a3:bc:b9:af:5b:2a:9a:49:f4:a5:9b:7c:95:5d:66:f3:fc:a8:
b3:d0:31:52:1d:11:34:53:3e:78:f5:88:a4:d1:82:00:c0:67:
f1:7d:cc:cd:7c:ca:c4:c9:7d:ee:ac:cb:f9:b9:e4:8a:fb:b6:
07:ee:75:ac:ad:02:45:50:d8:5e:67:5d:9e:dd:b3:4f:69:b7:
32:88:97:88:20:bd:49:df:d0:16:11:92:98:9e:17:e8:ad:d1:
f4:18:ea:d1:4c:61:8d:fa:6f:4d:7c:ef:06:b6:14:4f:8c:06:
a8:4e:91:87
-----BEGIN CERTIFICATE-----
MIIFsDCCBJigAwIBAgIDAcZ5MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjYwNDIyMTIzODExWhcNMjYwNTMxMTIzODExWjAYMRYw
FAYDVQQDEw02OWU4YzEzNy02YTE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAvIRUiqcvAj29rHUqA07GlrF7/vvntnUZ92buE4njkLzeH0+k7kBGr+DC
EWpllVTVyf1zY1FJOEb0H1eOpVmtHlsYIiIQZDdv/JBwrB8iV1L4yaQwBEfVZEZX
rMuK+5SRH3HEhqD7C8hkL5zBa2+hxm5JjLpTQwt7PS5IAjUnMPUqqf4ZpyldCp8M
41QO2NTaNjQiP0r9lWohQ4Ms0WVCrmoTSAdeeUmNhHZutFugn84OodJx1CcMz37x
EFxUufqzjGOPYdYeqbBOQWuBfQbRLj5uBWQnYrT+P4HHfYpnpZ6f/f7+Rfxbag7m
u8nULHQ/nXfYPwIpRP7JYXGXi4JauwIDAQABo4IC0TCCAs0wHQYDVR0OBBYEFHa1
GPBP8GkgoS/lUJCks0ClmwYxMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8yMUNGMjZDRTNFNDgxMUYxQjY4NDgxRjNDRTFEMzhCMC5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMEsGCCsGAQUFBwEHAQH/BDwwOjA4BAIAATAyMAwDBAGaUq4DBACaUrQDBACa
UyADBACaXNEDBACaXQEDBACaXQMDBACaXRoDBACaXiMwDQYJKoZIhvcNAQELBQAD
ggEBACkjZ85zl8icuXD5tbMWQqbQkXba42A0PiAgs1Ivd50d3Gfel3iERqRWxWox
MFAb/UmTiQzGp41IEnwOsuoMqpVocffMPX22Wf4hGInLOSfTc5er7dIvD9yORruu
RlzXJ1d7N61ScDVJ2UzYpDw15mERfkD7GRtAh4+OENcvdr7ZbG9niNzMM1EaMyfJ
ZmTPHaO8ua9bKppJ9KWbfJVdZvP8qLPQMVIdETRTPnj1iKTRggDAZ/F9zM18ysTJ
fe6sy/m55Ir7tgfudaytAkVQ2F5nXZ7ds09ptzKIl4ggvUnf0BYRkpieF+it0fQY
6tFMYY36b0187wa2FE+MBqhOkYc=
-----END CERTIFICATE-----
Generated at Sat May 9 11:00:23 2026 by rpki-client