Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/33CF3800618411F18EBE8FEACE1D38B0.roa
File: 33CF3800618411F18EBE8FEACE1D38B0.roa (raw, json)
Hash identifier: aQrVZL/t5mYXdirzTqusDgksHw4rZSL/PYzPclSjNGk=
Subject key identifier: 51:93:0F:8B:2C:10:86:74:97:36:8B:13:F5:7C:F0:67:3A:E7:4D:EB
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01D1F5
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/33CF3800618411F18EBE8FEACE1D38B0.roa
Signing time: Sat 06 Jun 2026 08:46:26 +0000
ROA not before: Sat 06 Jun 2026 08:46:22 +0000
ROA not after: Sun 05 Jul 2026 08:46:22 +0000
asID: 60117
IP address blocks: 154.82.25.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 08 Jun 2026 00:08:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119285 (0x1d1f5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 6 08:46:22 2026 GMT
Not After : Jul 5 08:46:22 2026 GMT
Subject: CN=6a23de62-404b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:18:90:f8:cd:47:fa:c3:f9:d6:28:2d:e2:b2:
88:62:1e:68:af:22:56:df:de:e6:20:c0:3d:44:35:
08:50:bf:46:6b:bd:f5:46:8f:5d:a9:7a:cc:0d:96:
ca:7c:cf:96:4d:8b:b3:87:80:af:ea:90:d0:dc:7e:
e5:df:04:3a:00:ec:5c:f0:be:ea:22:62:7b:60:8d:
bf:52:36:39:71:03:25:78:7e:a0:c5:8f:3c:f2:de:
12:7a:da:bf:67:a0:88:45:18:13:da:84:d7:f0:c4:
0e:f1:c0:67:31:ee:58:7a:b3:5f:28:30:76:60:b1:
d2:bd:4f:72:b0:4a:b3:e7:b7:85:6e:13:17:a2:10:
78:2d:78:62:b1:a9:7b:ec:1a:16:8f:12:91:79:2f:
b3:14:f7:28:a8:ef:e5:f3:ac:65:27:9d:a6:dd:47:
c8:b9:19:3b:28:1f:17:40:99:a5:dd:ed:b3:38:79:
d2:03:ef:cc:d2:75:70:7d:74:32:10:9b:51:df:c8:
1d:c7:dd:99:25:16:74:c3:6f:dd:0f:b6:f6:b3:ad:
a8:c0:66:16:7a:9e:34:51:67:03:a1:16:42:29:b1:
99:6e:d6:d2:27:19:57:a4:51:c8:7a:bb:6e:01:80:
94:a7:ea:96:a9:55:20:7f:04:e0:6c:6f:7f:b8:f3:
76:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:93:0F:8B:2C:10:86:74:97:36:8B:13:F5:7C:F0:67:3A:E7:4D:EB
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/33CF3800618411F18EBE8FEACE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.82.25.0/24
Signature Algorithm: sha256WithRSAEncryption
37:f6:d5:b4:91:6e:4d:a5:25:e8:4f:54:31:00:26:d0:2e:7b:
a0:82:7e:f3:78:f3:37:9b:7f:b6:48:dc:41:cf:70:e8:7c:63:
f3:e3:6e:82:13:1f:77:b1:7d:3e:34:7c:46:d4:55:a4:a7:1b:
cb:28:43:de:9c:f6:c2:90:ba:a1:15:4e:00:f7:ee:2f:8d:6a:
64:b4:39:d2:71:51:94:ca:35:56:6c:bd:24:89:36:8f:54:b7:
42:e7:98:de:45:48:a4:a3:95:8d:ea:50:5a:e6:9d:ef:0a:06:
1c:00:34:b1:5a:ff:f2:f9:48:91:d3:a4:c9:3f:77:39:7a:94:
e4:51:e4:4d:3e:83:fe:09:b1:e5:72:c4:e0:99:0d:1d:a3:82:
f3:0f:1f:35:cb:c4:11:6a:d4:e7:0c:49:2b:ff:59:fd:24:bb:
13:72:22:be:d6:79:d0:11:65:a5:44:49:41:1f:08:f6:9d:a0:
99:1f:a4:75:05:0c:09:3f:00:c6:f4:72:65:5b:f6:a7:d2:f1:
32:b4:dd:34:64:56:32:36:09:00:61:fd:d8:f1:ab:5b:97:25:
cc:60:75:8a:52:b3:96:af:1f:ac:a1:bf:4e:53:93:48:47:44:
5f:65:03:02:e9:61:6f:47:38:22:12:13:34:22:a5:ca:77:ad:
b9:2c:9b:6d
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAdH1MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjYwNjA2MDg0NjIyWhcNMjYwNzA1MDg0NjIyWjAYMRYw
FAYDVQQDEw02YTIzZGU2Mi00MDRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAuRiQ+M1H+sP51igt4rKIYh5oryJW397mIMA9RDUIUL9Ga731Ro9dqXrM
DZbKfM+WTYuzh4Cv6pDQ3H7l3wQ6AOxc8L7qImJ7YI2/UjY5cQMleH6gxY888t4S
etq/Z6CIRRgT2oTX8MQO8cBnMe5YerNfKDB2YLHSvU9ysEqz57eFbhMXohB4LXhi
sal77BoWjxKReS+zFPcoqO/l86xlJ52m3UfIuRk7KB8XQJml3e2zOHnSA+/M0nVw
fXQyEJtR38gdx92ZJRZ0w2/dD7b2s62owGYWep40UWcDoRZCKbGZbtbSJxlXpFHI
ertuAYCUp+qWqVUgfwTgbG9/uPN28QIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFFGT
D4ssEIZ0lzaLE/V88Gc6503rMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8zM0NGMzgwMDYxODQxMUYxOEVCRThGRUFDRTFEMzhCMC5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmlIZMA0GCSqGSIb3DQEB
CwUAA4IBAQA39tW0kW5NpSXoT1QxACbQLnuggn7zePM3m3+2SNxBz3DofGPz426C
Ex93sX0+NHxG1FWkpxvLKEPenPbCkLqhFU4A9+4vjWpktDnScVGUyjVWbL0kiTaP
VLdC55jeRUiko5WN6lBa5p3vCgYcADSxWv/y+UiR06TJP3c5epTkUeRNPoP+CbHl
csTgmQ0do4LzDx81y8QRatTnDEkr/1n9JLsTciK+1nnQEWWlRElBHwj2naCZH6R1
BQwJPwDG9HJlW/an0vEytN00ZFYyNgkAYf3Y8atblyXMYHWKUrOWrx+sob9OU5NI
R0RfZQMC6WFvRzgiEhM0IqXKd625LJtt
-----END CERTIFICATE-----
Generated at Sat Jun 6 12:04:15 2026 by rpki-client