Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/424C299869AD11F1995786F4CE1D38B0.roa
File: 424C299869AD11F1995786F4CE1D38B0.roa (raw, json)
Hash identifier: Edmf47D1JU8ZFf3fP/xbfNtw1qSvqc1l8KoGG4CdK48=
Subject key identifier: 0B:C9:07:62:F9:F8:D9:17:8A:5F:4A:5B:0A:73:4B:64:57:D0:83:A6
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01D37B
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/424C299869AD11F1995786F4CE1D38B0.roa
Signing time: Tue 16 Jun 2026 18:00:29 +0000
ROA not before: Tue 16 Jun 2026 18:00:24 +0000
ROA not after: Wed 22 Jul 2026 18:00:24 +0000
asID: 401696
IP address blocks: 154.94.224.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 25 Jun 2026 14:14:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119675 (0x1d37b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 16 18:00:24 2026 GMT
Not After : Jul 22 18:00:24 2026 GMT
Subject: CN=6a318f3d-5820
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:84:b2:4c:1d:2d:06:00:12:2b:f4:f4:77:87:
12:46:37:4a:a8:5e:d7:fa:6b:70:ef:53:ce:24:16:
d1:c5:36:e8:6c:ed:91:a3:30:70:23:07:e7:68:3b:
c1:1b:e8:1c:14:99:5e:ff:c4:0c:f6:7c:c4:7a:5c:
51:5c:fa:a5:f7:fd:65:64:4f:a4:e7:84:2f:cc:29:
5b:3c:b7:dc:92:6c:39:1f:d9:53:ca:fa:ec:9a:43:
a4:54:02:7e:ed:38:34:7c:bf:5d:03:7e:23:33:c3:
2e:64:8a:0e:41:cc:d0:dd:74:94:ff:31:32:75:36:
15:57:e4:1f:38:62:47:32:05:7e:fa:27:d6:09:11:
44:e8:2f:2b:f6:ba:4a:cf:9c:75:2a:d2:30:b3:b3:
d6:3f:c3:78:f1:73:e4:e6:33:db:29:0f:40:46:90:
ad:56:75:60:0b:61:ff:17:96:11:dc:ad:6b:58:a2:
76:70:ab:d3:c7:3c:9f:d4:78:27:58:d9:59:d2:eb:
d5:8f:7b:4d:76:16:17:f9:57:83:db:19:dd:88:53:
fd:79:dd:d9:92:77:50:86:97:dd:6b:e5:bd:38:3a:
9b:5c:3f:f7:97:cd:de:3f:8e:ff:26:a2:ef:51:b2:
55:7d:43:0d:bd:10:5a:96:0b:e8:4e:e6:49:bc:50:
1a:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:C9:07:62:F9:F8:D9:17:8A:5F:4A:5B:0A:73:4B:64:57:D0:83:A6
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/424C299869AD11F1995786F4CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.224.0/20
Signature Algorithm: sha256WithRSAEncryption
93:b6:c7:bc:bd:24:a4:35:e5:a9:af:8a:28:2b:6f:d5:c7:14:
9d:58:74:78:41:03:1b:90:22:9b:f2:50:57:cd:c0:e4:80:56:
e7:ff:b6:fd:10:fb:df:8f:8d:5b:f6:6e:77:c3:3a:a4:cb:ef:
64:9f:2a:50:b8:3e:9f:4d:21:e2:36:2c:ba:ad:05:84:8d:1f:
02:da:81:f4:07:98:eb:60:5d:b8:fe:01:4a:a4:73:3e:0e:80:
b3:36:ef:c7:98:32:ce:42:e3:fa:9e:c4:6b:f0:c1:eb:34:ef:
38:0d:eb:2c:5c:4a:44:6b:c8:a4:5a:2c:78:58:67:f5:76:b4:
2c:fe:c8:a4:f1:27:95:58:04:29:54:e3:6a:e4:cb:a5:5a:01:
26:01:a6:f3:b3:a0:31:40:29:c2:b5:fa:62:3d:6f:dc:4e:10:
d5:e3:21:45:1d:dd:45:ee:1e:ed:6c:b0:67:be:a5:83:99:c8:
d5:25:8f:aa:ef:62:d5:9c:1f:80:8a:38:7d:94:b2:68:5d:e7:
b5:ba:44:3b:58:88:14:7a:b7:e6:ca:75:89:31:96:1b:9a:17:
60:03:33:91:98:3d:b7:33:fa:ed:51:97:09:cf:bd:d2:73:25:
d6:cb:63:bf:82:26:bf:c8:fc:6b:dd:08:74:b5:d7:63:a6:1c:
ac:5a:e5:35
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAdN7MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjYwNjE2MTgwMDI0WhcNMjYwNzIyMTgwMDI0WjAYMRYw
FAYDVQQDEw02YTMxOGYzZC01ODIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAnYSyTB0tBgASK/T0d4cSRjdKqF7X+mtw71POJBbRxTbobO2RozBwIwfn
aDvBG+gcFJle/8QM9nzEelxRXPql9/1lZE+k54QvzClbPLfckmw5H9lTyvrsmkOk
VAJ+7Tg0fL9dA34jM8MuZIoOQczQ3XSU/zEydTYVV+QfOGJHMgV++ifWCRFE6C8r
9rpKz5x1KtIws7PWP8N48XPk5jPbKQ9ARpCtVnVgC2H/F5YR3K1rWKJ2cKvTxzyf
1HgnWNlZ0uvVj3tNdhYX+VeD2xndiFP9ed3ZkndQhpfda+W9ODqbXD/3l83eP47/
JqLvUbJVfUMNvRBalgvoTuZJvFAaRwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFAvJ
B2L5+NkXil9KWwpzS2RX0IOmMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC80MjRDMjk5ODY5QUQxMUYxOTk1Nzg2RjRDRTFEMzhCMC5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEml7gMA0GCSqGSIb3DQEB
CwUAA4IBAQCTtse8vSSkNeWpr4ooK2/VxxSdWHR4QQMbkCKb8lBXzcDkgFbn/7b9
EPvfj41b9m53wzqky+9knypQuD6fTSHiNiy6rQWEjR8C2oH0B5jrYF24/gFKpHM+
DoCzNu/HmDLOQuP6nsRr8MHrNO84DessXEpEa8ikWix4WGf1drQs/sik8SeVWAQp
VONq5MulWgEmAabzs6AxQCnCtfpiPW/cThDV4yFFHd1F7h7tbLBnvqWDmcjVJY+q
72LVnB+Aijh9lLJoXee1ukQ7WIgUerfmynWJMZYbmhdgAzORmD23M/rtUZcJz73S
cyXWy2O/gia/yPxr3Qh0tddjphysWuU1
-----END CERTIFICATE-----
Generated at Tue Jun 23 21:51:36 2026 by rpki-client