Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5F5F5AA06FF711F1832741F3CE1D38B0.roa
File: 5F5F5AA06FF711F1832741F3CE1D38B0.roa (raw, json)
Hash identifier: sJ7z9Dbx++SwCdsJpS/K6+57syQbXSwzpHaY/hsC7SE=
Subject key identifier: 3F:AE:F9:B7:A2:63:2C:50:07:DC:06:46:B0:A8:2F:09:91:C5:F9:C2
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01D4E5
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5F5F5AA06FF711F1832741F3CE1D38B0.roa
Signing time: Wed 24 Jun 2026 18:06:08 +0000
ROA not before: Wed 24 Jun 2026 18:06:03 +0000
ROA not after: Thu 30 Jul 2026 18:06:03 +0000
asID: 209363
IP address blocks: 154.208.117.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 28 Jun 2026 00:07:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 120037 (0x1d4e5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 24 18:06:03 2026 GMT
Not After : Jul 30 18:06:03 2026 GMT
Subject: CN=6a3c1c8f-d2be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:07:2a:b0:d6:79:87:64:04:3a:f4:32:c1:3c:
c0:35:6c:08:c4:93:ca:42:65:2a:b5:fd:74:89:24:
50:48:23:ae:fd:70:d8:58:39:f5:7a:8f:d4:ce:0a:
aa:9c:57:e3:1b:1a:6d:b6:26:a3:1c:86:3e:aa:6d:
88:65:11:ca:c2:58:07:5d:6a:9d:7e:51:39:c1:00:
dd:cb:bd:5a:26:52:c3:85:7e:10:70:a5:41:0e:63:
4b:13:a2:fe:32:d2:54:5b:85:43:0f:23:03:03:7d:
3e:a5:94:3d:72:7e:65:5a:57:90:52:b6:1f:6a:4a:
23:25:28:0d:96:35:69:7c:8c:84:94:83:d7:4b:c5:
ed:71:d2:57:9b:fd:1b:d6:d7:f9:ce:33:26:d3:db:
3e:62:81:5f:8c:c5:3b:c2:ec:af:42:49:7e:d1:e0:
7a:0d:ae:dd:fb:1e:68:b9:15:5c:65:85:a9:df:81:
7d:79:70:a9:0d:eb:a2:c4:e1:62:6c:b8:24:d6:bc:
a1:ec:da:eb:f0:c2:cc:f6:77:d6:5b:f4:e0:e8:03:
06:4a:39:20:77:82:e8:b5:10:03:fb:03:21:77:4b:
71:25:3b:56:78:fc:c8:54:06:8e:4e:1b:53:43:35:
79:a5:79:c4:ba:e6:19:cf:bc:98:34:43:98:9d:ce:
39:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:AE:F9:B7:A2:63:2C:50:07:DC:06:46:B0:A8:2F:09:91:C5:F9:C2
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5F5F5AA06FF711F1832741F3CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.208.117.0/24
Signature Algorithm: sha256WithRSAEncryption
09:bb:33:4f:1d:6e:f0:3a:ba:39:f3:37:82:5a:96:72:a6:98:
a5:1c:2c:ed:61:0c:64:0a:c4:95:dc:5e:42:52:94:85:29:4e:
37:ac:bc:11:44:d9:12:b3:55:50:7b:37:7d:3d:dc:8f:16:c4:
42:fc:06:3c:36:ae:7d:a2:5f:14:08:fb:9d:d4:04:14:bd:f9:
be:13:52:a7:3a:67:bf:a8:b1:6a:64:ca:c4:16:e3:9a:69:df:
90:20:42:82:fb:d9:86:1c:98:b6:00:d7:4d:c7:2f:36:fa:b5:
eb:aa:92:4c:40:74:3b:10:d1:30:b6:c2:d8:58:07:86:c4:2f:
ac:0a:99:20:48:8d:49:27:d6:41:6b:ef:47:6a:9d:9e:91:ca:
86:31:63:be:21:f9:bc:d5:7d:48:18:aa:58:4f:6d:e8:52:4d:
42:6b:06:25:2d:ce:c4:d3:f1:a1:af:68:7b:d9:ad:42:bb:3c:
c5:9f:2f:b7:4c:3c:0b:22:67:34:75:d0:13:47:2b:47:96:62:
82:20:cf:a8:5c:1f:fd:8b:41:91:1b:46:ff:c3:36:ed:6d:db:
19:45:7f:55:39:a4:79:83:ce:06:37:07:0b:64:73:f2:b8:7e:
ad:10:e6:28:65:78:e7:ff:e3:8b:3b:47:7a:c5:30:6f:0a:b0:
04:e1:8f:45
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAdTlMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjYwNjI0MTgwNjAzWhcNMjYwNzMwMTgwNjAzWjAYMRYw
FAYDVQQDEw02YTNjMWM4Zi1kMmJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAvwcqsNZ5h2QEOvQywTzANWwIxJPKQmUqtf10iSRQSCOu/XDYWDn1eo/U
zgqqnFfjGxpttiajHIY+qm2IZRHKwlgHXWqdflE5wQDdy71aJlLDhX4QcKVBDmNL
E6L+MtJUW4VDDyMDA30+pZQ9cn5lWleQUrYfakojJSgNljVpfIyElIPXS8XtcdJX
m/0b1tf5zjMm09s+YoFfjMU7wuyvQkl+0eB6Da7d+x5ouRVcZYWp34F9eXCpDeui
xOFibLgk1ryh7Nrr8MLM9nfWW/Tg6AMGSjkgd4LotRAD+wMhd0txJTtWePzIVAaO
ThtTQzV5pXnEuuYZz7yYNEOYnc45ewIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFD+u
+beiYyxQB9wGRrCoLwmRxfnCMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC81RjVGNUFBMDZGRjcxMUYxODMyNzQxRjNDRTFEMzhCMC5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmtB1MA0GCSqGSIb3DQEB
CwUAA4IBAQAJuzNPHW7wOro58zeCWpZyppilHCztYQxkCsSV3F5CUpSFKU43rLwR
RNkSs1VQezd9PdyPFsRC/AY8Nq59ol8UCPud1AQUvfm+E1KnOme/qLFqZMrEFuOa
ad+QIEKC+9mGHJi2ANdNxy82+rXrqpJMQHQ7ENEwtsLYWAeGxC+sCpkgSI1JJ9ZB
a+9Hap2ekcqGMWO+Ifm81X1IGKpYT23oUk1CawYlLc7E0/Ghr2h72a1CuzzFny+3
TDwLImc0ddATRytHlmKCIM+oXB/9i0GRG0b/wzbtbdsZRX9VOaR5g84GNwcLZHPy
uH6tEOYoZXjn/+OLO0d6xTBvCrAE4Y9F
-----END CERTIFICATE-----
Generated at Fri Jun 26 19:22:40 2026 by rpki-client