This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4D539B02C60911F09C2384DADAE4EC9C.roa File: 4D539B02C60911F09C2384DADAE4EC9C.roa (raw, json) Hash identifier: fEAD/GmGAsC7i3HZY6rMyNx6G+NZswkEaDSOxlJfQOQ= Subject key identifier: 71:08:3F:06:10:70:28:FB:6F:53:D2:E3:67:BA:9F:A4:46:69:0D:20 Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC Certificate serial: 01A9FA Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4D539B02C60911F09C2384DADAE4EC9C.roa Signing time: Thu 20 Nov 2025 12:06:11 +0000 ROA not before: Thu 20 Nov 2025 12:06:01 +0000 ROA not after: Tue 30 Dec 2025 12:06:01 +0000 asID: 8796 IP address blocks: 154.201.72.0/21 maxlen: 24 154.201.88.0/22 maxlen: 24 154.201.92.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft rsync://rpki.afrinic.net/repository/AfriNIC.cer Signature path expires: Fri 05 Dec 2025 00:06:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 109050 (0x1a9fa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC Validity Not Before: Nov 20 12:06:01 2025 GMT Not After : Dec 30 12:06:01 2025 GMT Subject: CN=691f0433-e152 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:b1:6a:48:a6:c8:90:c5:54:79:7e:2c:07:26: 71:6e:68:fa:a6:b7:dc:a9:a7:3f:a7:d2:30:4a:5c: 8c:05:01:12:e0:af:69:60:27:ca:eb:76:06:36:ca: db:dc:65:6c:cf:89:36:75:67:8f:6e:f1:43:75:59: 21:46:7e:a9:e6:3b:8d:19:be:50:5b:60:74:95:d2: 02:27:24:95:28:89:83:6b:93:c2:93:12:36:60:33: 3d:f4:41:6c:6b:35:b8:2b:a4:0c:2c:d0:fb:b0:ad: c0:7e:16:1a:de:2a:58:a8:bb:52:b5:b1:77:9a:f3: 41:a9:c4:b0:7a:ab:d9:c1:3e:5c:3c:97:ba:bb:d7: 1d:a2:0e:21:4f:7f:53:4b:4b:c9:1e:67:4f:93:cd: 3a:3b:55:71:b6:1a:97:d3:03:c5:36:04:4d:13:ee: bc:67:8b:97:96:64:4f:4e:01:a4:36:cd:ba:db:8c: c3:95:6f:85:09:10:30:06:2c:1c:a7:3d:39:f9:e3: f6:5a:38:5f:92:9b:a5:c1:a1:c6:be:8c:49:3a:c2: 1f:99:82:3c:3a:4f:d5:d9:48:2e:8a:5e:74:ce:d3: f0:71:fc:5c:8c:eb:b0:fe:96:62:d2:f2:a1:de:04: 64:f2:bd:5c:8e:81:8b:59:e5:b5:28:9d:9c:76:34: 4d:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:08:3F:06:10:70:28:FB:6F:53:D2:E3:67:BA:9F:A4:46:69:0D:20 X509v3 Authority Key Identifier: keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://rpki.afrinic.net/policy/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4D539B02C60911F09C2384DADAE4EC9C.roa RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 154.201.72.0/21 154.201.88.0-154.201.93.255 Signature Algorithm: sha256WithRSAEncryption 61:32:2a:7b:36:17:9b:f5:61:57:c2:c4:58:e8:37:4c:d4:d6: b3:93:df:42:84:3e:13:e7:37:9b:f4:16:4b:f4:8e:4e:24:99: af:10:49:57:fa:08:45:3d:91:dd:f6:d9:49:ac:78:45:0e:05: 68:5f:e1:07:9f:53:7a:fe:a3:78:01:c2:25:dd:25:db:70:8d: 13:bf:4d:e5:af:e8:e1:93:f3:bd:78:be:7a:a2:7c:c5:21:72: 88:05:2f:fe:0c:51:66:50:b4:77:5f:5b:bb:f7:20:d0:b2:e9: 31:0d:5c:72:64:ea:82:1c:d4:8d:19:84:77:85:e7:ed:b1:22: 06:76:1d:d0:48:19:79:8d:4a:74:6e:09:89:93:4e:79:7a:2b: ce:e5:78:a1:e6:52:0c:c9:18:2e:74:28:ba:7f:51:54:53:18: 34:ef:6d:e7:ea:bb:ef:ac:90:15:04:c8:ef:54:cd:a7:1c:e4: 23:c2:20:aa:b9:6c:e9:26:47:b8:a9:83:35:7a:85:95:cf:c3: 40:7c:4d:31:e7:c8:32:f8:b1:56:bc:5b:a8:9e:65:68:1f:eb: c8:d9:ba:24:ab:70:95:fe:e6:b8:ed:56:72:b0:d8:ad:fc:cb: 92:7a:e5:75:00:ef:4d:fb:b8:0e:8c:54:26:6f:2b:a9:fc:5d: bf:78:94:22 -----BEGIN CERTIFICATE----- MIIFkjCCBHqgAwIBAgIDAan6MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0 MTE2REUxNUIzREMwHhcNMjUxMTIwMTIwNjAxWhcNMjUxMjMwMTIwNjAxWjAYMRYw FAYDVQQDEw02OTFmMDQzMy1lMTUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB CgKCAQEA7rFqSKbIkMVUeX4sByZxbmj6prfcqac/p9IwSlyMBQES4K9pYCfK63YG Nsrb3GVsz4k2dWePbvFDdVkhRn6p5juNGb5QW2B0ldICJySVKImDa5PCkxI2YDM9 9EFsazW4K6QMLND7sK3AfhYa3ipYqLtStbF3mvNBqcSweqvZwT5cPJe6u9cdog4h T39TS0vJHmdPk806O1VxthqX0wPFNgRNE+68Z4uXlmRPTgGkNs2624zDlW+FCRAw Biwcpz05+eP2WjhfkpulwaHGvoxJOsIfmYI8Ok/V2Uguil50ztPwcfxcjOuw/pZi 0vKh3gRk8r1cjoGLWeW1KJ2cdjRNuQIDAQABo4ICszCCAq8wHQYDVR0OBBYEFHEI PwYQcCj7b1PS42e6n6RGaQ0gMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG OEFFQTIyOC80RDUzOUIwMkM2MDkxMUYwOUMyMzg0REFEQUU0RUM5Qy5yb2EwNQYI KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u eG1sMC0GCCsGAQUFBwEHAQH/BB4wHDAaBAIAATAUAwQDmslIMAwDBAOayVgDBAGa yVwwDQYJKoZIhvcNAQELBQADggEBAGEyKns2F5v1YVfCxFjoN0zU1rOT30KEPhPn N5v0Fkv0jk4kma8QSVf6CEU9kd322UmseEUOBWhf4QefU3r+o3gBwiXdJdtwjRO/ TeWv6OGT8714vnqifMUhcogFL/4MUWZQtHdfW7v3INCy6TENXHJk6oIc1I0ZhHeF 5+2xIgZ2HdBIGXmNSnRuCYmTTnl6K87leKHmUgzJGC50KLp/UVRTGDTvbefqu++s kBUEyO9Uzacc5CPCIKq5bOkmR7ipgzV6hZXPw0B8TTHnyDL4sVa8W6ieZWgf68jZ uiSrcJX+5rjtVnKw2K38y5J65XUA7037uA6MVCZvK6n8Xb94lCI= -----END CERTIFICATE-----Generated at Wed Dec 3 11:06:35 2025 by rpki-client