This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2F78A720C91611F0A93E5595DAE4EC9C.roa File: 2F78A720C91611F0A93E5595DAE4EC9C.roa (raw, json) Hash identifier: bDixcFkAtpeMTNfRjQ9JadLDwf9fo3nmWWJd7eGpA9c= Subject key identifier: 78:6F:C9:64:34:32:95:D2:2F:DE:63:FD:6E:57:C7:99:E0:1C:5D:F4 Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC Certificate serial: 01AA41 Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2F78A720C91611F0A93E5595DAE4EC9C.roa Signing time: Mon 24 Nov 2025 09:15:58 +0000 ROA not before: Mon 24 Nov 2025 09:15:53 +0000 ROA not after: Tue 30 Dec 2025 09:15:53 +0000 asID: 401783 IP address blocks: 154.82.134.0/24 maxlen: 24 154.82.148.0/24 maxlen: 24 154.82.158.0/24 maxlen: 24 154.82.181.0/24 maxlen: 24 154.83.65.0/24 maxlen: 24 154.90.134.0/24 maxlen: 24 154.90.136.0/24 maxlen: 24 154.90.137.0/24 maxlen: 24 154.90.140.0/24 maxlen: 24 154.90.189.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft rsync://rpki.afrinic.net/repository/AfriNIC.cer Signature path expires: Fri 05 Dec 2025 00:06:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 109121 (0x1aa41) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC Validity Not Before: Nov 24 09:15:53 2025 GMT Not After : Dec 30 09:15:53 2025 GMT Subject: CN=6924224d-5432 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:2b:71:21:43:06:fd:67:b9:dd:cb:59:d9:3a: a6:2d:11:ce:6e:7e:db:14:ea:f9:8f:e2:71:44:54: 63:28:f4:b4:3e:75:b3:ab:4d:ff:38:c8:73:dc:59: f7:6e:3f:bf:be:7f:80:a9:8f:86:5d:9c:32:aa:10: 38:74:23:b7:53:e5:0e:06:4d:9d:41:bc:6d:80:ad: 33:45:0f:3a:97:30:29:f0:d6:21:cb:44:9f:62:03: 54:69:64:ab:cc:38:cc:e4:3f:20:d1:24:ee:dc:12: ce:90:5f:7b:b6:a9:97:13:2e:d2:f8:bc:b0:40:d8: 9d:5e:03:f1:b9:80:7b:c9:b9:fa:6e:52:22:ab:a0: 74:56:fc:6a:bf:82:ad:03:63:5b:9f:69:b2:01:25: 5c:67:d4:cf:2e:fe:f7:e5:62:e4:08:50:78:e7:d4: da:44:02:16:9c:b6:3a:a7:75:f7:98:0e:c8:6a:9d: c5:28:3d:07:dd:2d:e7:90:80:7c:26:d3:89:3e:3b: f6:43:f8:b8:ef:95:8d:ef:cc:0b:ef:41:98:e9:10: c2:6a:6e:60:5a:59:ac:ff:41:ce:ca:16:82:25:fa: 35:76:1b:f8:61:78:ea:c6:2a:bd:a4:b3:0b:8e:eb: 50:7d:89:75:88:52:77:fc:df:4b:33:e3:1d:4e:2b: 7a:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:6F:C9:64:34:32:95:D2:2F:DE:63:FD:6E:57:C7:99:E0:1C:5D:F4 X509v3 Authority Key Identifier: keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://rpki.afrinic.net/policy/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2F78A720C91611F0A93E5595DAE4EC9C.roa RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 154.82.134.0/24 154.82.148.0/24 154.82.158.0/24 154.82.181.0/24 154.83.65.0/24 154.90.134.0/24 154.90.136.0/23 154.90.140.0/24 154.90.189.0/24 Signature Algorithm: sha256WithRSAEncryption bc:ef:52:df:63:fa:13:43:23:79:f3:20:9c:4f:0f:b9:cc:f7: d3:cb:82:9a:21:ef:1c:18:2b:d5:8c:56:56:4b:9a:52:99:cf: 01:7b:4c:18:b3:f2:00:cc:42:f1:a7:37:09:e8:da:88:0e:61: 54:ee:87:e6:ab:9e:2a:21:3b:b7:37:05:c0:f1:e6:bf:19:4b: 3b:a6:87:05:01:f1:9a:9a:d8:3a:28:45:48:8f:6d:99:aa:d6: ce:20:6c:9b:fa:97:47:4d:3e:82:1f:8d:59:bd:f5:2c:07:64: 29:fd:5c:f8:03:36:10:fc:7e:bf:c6:af:ef:b9:8d:8c:c0:29: 1e:b2:5c:14:67:cc:7b:fe:a7:66:54:8e:71:85:16:c2:cf:84: fe:68:a8:2b:47:c6:3f:32:2d:a8:a0:fd:c8:30:b6:5d:da:46: bb:fb:a7:cd:2d:e8:62:fd:e3:d7:c6:85:93:22:3c:33:8e:48: bc:f9:95:b5:e1:55:b1:bd:2c:50:3a:d2:5b:86:b2:95:cf:41: 07:7e:69:14:00:15:57:1b:55:0c:92:f2:28:5d:90:19:34:43: a1:3a:95:fe:5a:02:47:e0:a9:91:38:b6:e6:7b:d0:20:c1:1f: b9:c4:87:77:02:8b:21:c6:f1:f8:0e:0e:aa:41:84:59:09:b0: b4:11:dd:53 -----BEGIN CERTIFICATE----- MIIFtDCCBJygAwIBAgIDAapBMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0 MTE2REUxNUIzREMwHhcNMjUxMTI0MDkxNTUzWhcNMjUxMjMwMDkxNTUzWjAYMRYw FAYDVQQDEw02OTI0MjI0ZC01NDMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB CgKCAQEA4StxIUMG/We53ctZ2TqmLRHObn7bFOr5j+JxRFRjKPS0PnWzq03/OMhz 3Fn3bj+/vn+AqY+GXZwyqhA4dCO3U+UOBk2dQbxtgK0zRQ86lzAp8NYhy0SfYgNU aWSrzDjM5D8g0STu3BLOkF97tqmXEy7S+LywQNidXgPxuYB7ybn6blIiq6B0Vvxq v4KtA2Nbn2myASVcZ9TPLv735WLkCFB459TaRAIWnLY6p3X3mA7Iap3FKD0H3S3n kIB8JtOJPjv2Q/i475WN78wL70GY6RDCam5gWlms/0HOyhaCJfo1dhv4YXjqxiq9 pLMLjutQfYl1iFJ3/N9LM+MdTit6HQIDAQABo4IC1TCCAtEwHQYDVR0OBBYEFHhv yWQ0MpXSL95j/W5Xx5ngHF30MB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG OEFFQTIyOC8yRjc4QTcyMEM5MTYxMUYwQTkzRTU1OTVEQUU0RUM5Qy5yb2EwNQYI KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u eG1sME8GCCsGAQUFBwEHAQH/BEAwPjA8BAIAATA2AwQAmlKGAwQAmlKUAwQAmlKe AwQAmlK1AwQAmlNBAwQAmlqGAwQBmlqIAwQAmlqMAwQAmlq9MA0GCSqGSIb3DQEB CwUAA4IBAQC871LfY/oTQyN58yCcTw+5zPfTy4KaIe8cGCvVjFZWS5pSmc8Be0wY s/IAzELxpzcJ6NqIDmFU7ofmq54qITu3NwXA8ea/GUs7pocFAfGamtg6KEVIj22Z qtbOIGyb+pdHTT6CH41ZvfUsB2Qp/Vz4AzYQ/H6/xq/vuY2MwCkeslwUZ8x7/qdm VI5xhRbCz4T+aKgrR8Y/Mi2ooP3IMLZd2ka7+6fNLehi/ePXxoWTIjwzjki8+ZW1 4VWxvSxQOtJbhrKVz0EHfmkUABVXG1UMkvIoXZAZNEOhOpX+WgJH4KmROLbme9Ag wR+5xId3AoshxvH4Dg6qQYRZCbC0Ed1T -----END CERTIFICATE-----Generated at Wed Dec 3 10:26:05 2025 by rpki-client