Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/361D294A49D411F1937B44D6CE1D38B0.roa
File: 361D294A49D411F1937B44D6CE1D38B0.roa (raw, json)
Hash identifier: /D2XWDf4Pnoaw4rx6Q0vEbI0KPWNdUbTqASfSJFOkAY=
Subject key identifier: 34:CA:28:5E:EA:26:93:9F:0A:F4:18:A9:63:C5:D7:78:B1:64:4E:32
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C9B8
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/361D294A49D411F1937B44D6CE1D38B0.roa
Signing time: Thu 07 May 2026 05:18:42 +0000
ROA not before: Thu 07 May 2026 05:18:36 +0000
ROA not after: Fri 15 May 2026 05:18:36 +0000
asID: 150706
IP address blocks: 154.223.168.0/24 maxlen: 24
154.223.169.0/24 maxlen: 24
154.223.170.0/24 maxlen: 24
154.223.171.0/24 maxlen: 24
154.223.176.0/24 maxlen: 24
154.223.177.0/24 maxlen: 24
154.223.178.0/24 maxlen: 24
154.223.179.0/24 maxlen: 24
154.223.180.0/24 maxlen: 24
154.223.181.0/24 maxlen: 24
154.223.182.0/24 maxlen: 24
154.223.183.0/24 maxlen: 24
154.223.188.0/24 maxlen: 24
154.223.189.0/24 maxlen: 24
154.223.190.0/24 maxlen: 24
154.223.191.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 11 May 2026 00:07:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117176 (0x1c9b8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 7 05:18:36 2026 GMT
Not After : May 15 05:18:36 2026 GMT
Subject: CN=69fc20b2-2dc7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:59:38:a3:51:8c:ff:25:1d:30:df:48:dd:2d:
1d:9b:1a:c3:99:81:34:85:a1:7a:66:e7:29:98:57:
0f:a1:27:55:dc:7c:e4:00:bd:4c:e8:03:ec:0b:35:
dd:02:cc:f3:2b:ad:1c:00:18:e8:64:d1:53:e4:df:
99:77:98:2f:fc:14:8c:5a:45:87:f2:14:5b:ee:9a:
59:e5:60:89:78:50:70:37:c6:13:f4:e7:b9:9e:82:
47:c0:7d:52:f3:8b:c5:0e:de:b6:d1:5e:cf:02:44:
cf:4a:37:1c:26:3c:86:0b:b7:ac:85:1f:83:d5:70:
e1:2c:e1:fc:e4:6d:25:e5:64:00:05:3a:d0:70:a7:
40:12:a0:d5:53:82:bf:0f:5f:ea:23:b2:98:7e:51:
6a:a3:6d:2b:a5:b1:ee:36:83:e8:79:9e:f1:2a:6a:
6f:57:e7:7f:3b:3d:c3:83:4e:1e:8c:4b:18:9a:44:
d9:97:d8:6d:3a:94:4d:89:4c:cd:54:e5:ae:3e:bd:
ee:34:aa:82:57:81:d0:6a:bb:c6:6f:34:c4:88:00:
0e:59:bb:fc:5a:b3:d8:f9:c2:e1:77:ab:d7:d9:05:
65:d6:df:70:5d:2d:6e:a2:d2:20:6a:b7:6a:10:56:
bc:0d:8e:8d:8b:70:d4:67:f6:de:a8:da:14:55:f7:
51:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:CA:28:5E:EA:26:93:9F:0A:F4:18:A9:63:C5:D7:78:B1:64:4E:32
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/361D294A49D411F1937B44D6CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.223.168.0/22
154.223.176.0/21
154.223.188.0/22
Signature Algorithm: sha256WithRSAEncryption
27:69:bd:ee:9a:b0:7c:b4:ea:7e:21:19:c0:53:f5:e4:8d:51:
79:19:b1:4d:6d:63:5b:dd:87:4f:48:a9:e8:62:9f:bd:91:14:
2a:9b:c5:57:da:ed:11:dc:cb:b0:18:71:8d:57:de:22:95:c9:
fd:12:46:e3:38:cc:fb:2e:fb:a1:4d:2e:9a:43:38:75:99:3b:
8c:80:c4:ef:16:17:fa:43:1d:4e:72:58:ff:c7:80:92:a4:14:
b6:8d:05:fb:ae:f1:f2:80:96:e6:33:12:9c:c7:22:aa:af:fe:
20:6f:a6:fb:7a:61:91:4a:78:f5:bb:af:a2:05:9a:d3:d5:f5:
5c:0a:40:54:5e:b4:c4:58:8e:83:19:a3:3a:72:a0:48:0d:b3:
16:88:ac:3d:d5:0e:43:9d:39:c2:8b:19:ab:02:8d:95:8e:38:
ad:0c:9e:0d:4b:d4:52:f9:b3:90:6d:e3:cb:b5:ba:19:31:76:
dd:92:20:80:e1:dd:71:dd:35:18:ef:82:e9:86:a6:91:28:a0:
1f:20:50:fe:b1:f3:9a:b6:28:56:2a:31:42:76:f3:0e:05:ee:
2e:7c:62:ef:43:87:c7:46:d5:c8:c6:aa:0d:7a:5a:9e:b7:c8:
ee:2b:df:db:d5:01:32:0a:49:dc:fe:6b:d0:25:a7:9b:77:f5:
70:c6:50:ae
-----BEGIN CERTIFICATE-----
MIIFkDCCBHigAwIBAgIDAcm4MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjYwNTA3MDUxODM2WhcNMjYwNTE1MDUxODM2WjAYMRYw
FAYDVQQDEw02OWZjMjBiMi0yZGM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA3Fk4o1GM/yUdMN9I3S0dmxrDmYE0haF6ZucpmFcPoSdV3HzkAL1M6APs
CzXdAszzK60cABjoZNFT5N+Zd5gv/BSMWkWH8hRb7ppZ5WCJeFBwN8YT9Oe5noJH
wH1S84vFDt620V7PAkTPSjccJjyGC7eshR+D1XDhLOH85G0l5WQABTrQcKdAEqDV
U4K/D1/qI7KYflFqo20rpbHuNoPoeZ7xKmpvV+d/Oz3Dg04ejEsYmkTZl9htOpRN
iUzNVOWuPr3uNKqCV4HQarvGbzTEiAAOWbv8WrPY+cLhd6vX2QVl1t9wXS1uotIg
ardqEFa8DY6Ni3DUZ/beqNoUVfdRqwIDAQABo4ICsTCCAq0wHQYDVR0OBBYEFDTK
KF7qJpOfCvQYqWPF13ixZE4yMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8zNjFEMjk0QTQ5RDQxMUYxOTM3QjQ0RDZDRTFEMzhCMC5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQCmt+oAwQDmt+wAwQCmt+8
MA0GCSqGSIb3DQEBCwUAA4IBAQAnab3umrB8tOp+IRnAU/XkjVF5GbFNbWNb3YdP
SKnoYp+9kRQqm8VX2u0R3MuwGHGNV94ilcn9EkbjOMz7LvuhTS6aQzh1mTuMgMTv
Fhf6Qx1Oclj/x4CSpBS2jQX7rvHygJbmMxKcxyKqr/4gb6b7emGRSnj1u6+iBZrT
1fVcCkBUXrTEWI6DGaM6cqBIDbMWiKw91Q5DnTnCixmrAo2VjjitDJ4NS9RS+bOQ
bePLtboZMXbdkiCA4d1x3TUY74LphqaRKKAfIFD+sfOatihWKjFCdvMOBe4ufGLv
Q4fHRtXIxqoNelqet8juK9/b1QEyCknc/mvQJaebd/VwxlCu
-----END CERTIFICATE-----
Generated at Sat May 9 11:03:40 2026 by rpki-client