Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4CEF2BD86C8311F1BDA671B5CE1D38B0.roa
File: 4CEF2BD86C8311F1BDA671B5CE1D38B0.roa (raw, json)
Hash identifier: aBRvGg82GfrvsZrXyxFtxgye6c3hYqkIQbJeQrf/aqs=
Subject key identifier: E7:79:7D:05:8D:DD:27:EE:2F:DF:16:F1:0C:7F:D1:AE:80:63:06:4B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01D40F
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4CEF2BD86C8311F1BDA671B5CE1D38B0.roa
Signing time: Sat 20 Jun 2026 08:37:41 +0000
ROA not before: Sat 20 Jun 2026 08:37:36 +0000
ROA not after: Mon 27 Jul 2026 08:37:36 +0000
asID: 138915
IP address blocks: 154.205.128.0/24 maxlen: 24
154.205.129.0/24 maxlen: 24
154.205.130.0/24 maxlen: 24
154.205.131.0/24 maxlen: 24
154.205.132.0/24 maxlen: 24
154.205.133.0/24 maxlen: 24
154.205.134.0/24 maxlen: 24
154.205.135.0/24 maxlen: 24
154.205.136.0/23 maxlen: 24
154.205.138.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 25 Jun 2026 14:14:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119823 (0x1d40f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 20 08:37:36 2026 GMT
Not After : Jul 27 08:37:36 2026 GMT
Subject: CN=6a365155-ddd7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:2a:c2:e8:e8:24:39:29:5f:47:57:41:e8:ae:
96:60:f2:9b:12:63:ef:cb:b9:01:63:7a:32:f7:c2:
12:38:51:8e:b7:d6:71:2e:4f:ee:bb:2d:d0:5d:3a:
3a:82:be:f3:4a:07:01:d8:28:b1:c6:c4:4c:83:7c:
bc:e5:0d:b5:b5:06:ac:ba:19:86:30:b5:97:7e:8a:
d9:2e:93:3c:67:94:75:dd:0f:08:6a:cb:47:78:74:
d8:ec:0a:e1:03:5d:11:df:df:c2:46:69:dc:43:ee:
f1:a5:ad:c1:2a:e4:62:77:91:c6:a0:5c:2e:34:6b:
55:16:90:32:20:2b:1e:6c:88:1e:7c:ee:7e:de:d9:
6c:fc:17:4e:78:67:b1:13:87:0b:ea:0c:f1:60:3c:
8e:d5:d3:81:a0:9b:fc:e2:83:9a:c6:76:c9:d6:d0:
d2:95:3f:f0:50:90:3e:1c:8a:42:6d:2b:89:2d:d3:
ad:3f:fb:b6:14:72:ff:a8:cf:29:f5:61:f3:f1:90:
70:9c:60:03:5a:35:39:b0:21:5f:2a:42:3f:70:36:
2c:64:11:35:dd:a3:ab:36:1d:28:d7:7d:43:31:4b:
5d:e2:da:b9:c4:43:2c:30:62:49:53:da:a3:ef:93:
9e:7f:27:b9:3f:53:cd:fb:8e:3b:89:06:0f:62:33:
4e:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:79:7D:05:8D:DD:27:EE:2F:DF:16:F1:0C:7F:D1:AE:80:63:06:4B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4CEF2BD86C8311F1BDA671B5CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.128.0-154.205.138.255
Signature Algorithm: sha256WithRSAEncryption
00:c9:ee:d0:b0:e4:2c:a6:aa:53:3a:3e:b1:9e:49:96:43:f9:
43:ff:74:5c:96:02:4b:d6:57:dd:e0:17:f8:01:51:46:86:54:
37:9c:56:44:11:bd:07:cf:dc:15:a9:37:5e:3d:91:1c:4e:59:
3e:11:d9:02:68:1c:f4:40:6e:93:9f:04:81:19:8b:3e:6a:78:
bb:6c:ea:69:d4:ef:fe:35:db:c1:fb:81:99:bb:4f:23:ae:42:
5c:2e:ec:47:cd:b1:22:87:6a:8a:53:50:70:82:86:af:54:81:
18:80:fa:a7:00:e4:d8:14:4b:00:51:32:e3:ff:73:fe:46:a7:
14:96:52:04:bb:d5:86:03:b6:a7:41:76:c4:77:f4:7b:e9:7c:
09:d5:e2:0c:aa:eb:6e:16:e9:96:e7:91:43:fa:69:19:13:6b:
4f:30:3f:bb:b2:e8:f9:ba:70:ed:12:e9:dd:29:52:35:80:9e:
eb:80:37:99:7a:56:15:d5:b4:d3:33:80:5f:15:7e:e9:b4:4a:
89:f2:22:91:02:24:55:1b:60:56:c9:0a:48:f7:e1:69:f9:f5:
f4:3b:85:4f:d4:9f:25:13:b8:1b:0d:be:b5:ad:8f:0f:25:40:
18:28:d4:83:92:5c:f7:bf:09:33:a1:05:50:4f:4f:cd:f8:ed:
75:72:5e:5f
-----BEGIN CERTIFICATE-----
MIIFjDCCBHSgAwIBAgIDAdQPMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjYwNjIwMDgzNzM2WhcNMjYwNzI3MDgzNzM2WjAYMRYw
FAYDVQQDEw02YTM2NTE1NS1kZGQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA7irC6OgkOSlfR1dB6K6WYPKbEmPvy7kBY3oy98ISOFGOt9ZxLk/uuy3Q
XTo6gr7zSgcB2CixxsRMg3y85Q21tQasuhmGMLWXforZLpM8Z5R13Q8IastHeHTY
7ArhA10R39/CRmncQ+7xpa3BKuRid5HGoFwuNGtVFpAyICsebIgefO5+3tls/BdO
eGexE4cL6gzxYDyO1dOBoJv84oOaxnbJ1tDSlT/wUJA+HIpCbSuJLdOtP/u2FHL/
qM8p9WHz8ZBwnGADWjU5sCFfKkI/cDYsZBE13aOrNh0o131DMUtd4tq5xEMsMGJJ
U9qj75Oefye5P1PN+447iQYPYjNOGwIDAQABo4ICrTCCAqkwHQYDVR0OBBYEFOd5
fQWN3SfuL98W8Qx/0a6AYwZLMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC80Q0VGMkJEODZDODMxMUYxQkRBNjcxQjVDRTFEMzhCMC5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOMAwDBAeazYADBACazYowDQYJ
KoZIhvcNAQELBQADggEBAADJ7tCw5CymqlM6PrGeSZZD+UP/dFyWAkvWV93gF/gB
UUaGVDecVkQRvQfP3BWpN149kRxOWT4R2QJoHPRAbpOfBIEZiz5qeLts6mnU7/41
28H7gZm7TyOuQlwu7EfNsSKHaopTUHCChq9UgRiA+qcA5NgUSwBRMuP/c/5GpxSW
UgS71YYDtqdBdsR39HvpfAnV4gyq624W6ZbnkUP6aRkTa08wP7uy6Pm6cO0S6d0p
UjWAnuuAN5l6VhXVtNMzgF8Vfum0SonyIpECJFUbYFbJCkj34Wn59fQ7hU/UnyUT
uBsNvrWtjw8lQBgo1IOSXPe/CTOhBVBPT8347XVyXl8=
-----END CERTIFICATE-----
Generated at Tue Jun 23 21:51:26 2026 by rpki-client