Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/631DECF8456111F19F072CBDCE1D38B0.roa
File: 631DECF8456111F19F072CBDCE1D38B0.roa (raw, json)
Hash identifier: zOHmt3XqT8lPKsfbirXNVWjHgjePzFovDtTp6D8zmJ8=
Subject key identifier: CC:04:9F:24:60:59:25:B0:54:4A:14:98:F3:9D:22:6F:EF:14:0D:AE
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C89F
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/631DECF8456111F19F072CBDCE1D38B0.roa
Signing time: Fri 01 May 2026 13:26:40 +0000
ROA not before: Fri 01 May 2026 13:26:36 +0000
ROA not after: Tue 02 Jun 2026 13:26:36 +0000
asID: 140869
IP address blocks: 154.81.32.0/24 maxlen: 24
154.81.33.0/24 maxlen: 24
154.81.34.0/24 maxlen: 24
154.81.35.0/24 maxlen: 24
154.81.36.0/24 maxlen: 24
154.81.37.0/24 maxlen: 24
154.81.38.0/24 maxlen: 24
154.81.39.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 11 May 2026 00:07:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116895 (0x1c89f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 1 13:26:36 2026 GMT
Not After : Jun 2 13:26:36 2026 GMT
Subject: CN=69f4aa10-c94e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:62:7c:d0:29:b5:b5:a5:1a:54:b1:02:99:4c:
76:a2:ae:c2:68:7a:c8:67:8c:4b:2f:68:ed:98:23:
9e:9e:64:6d:09:d0:24:80:8d:63:78:69:2d:d7:d0:
9b:46:ba:98:25:29:02:e6:b3:f8:3d:05:c1:a2:68:
84:2c:e1:5f:ab:c5:d4:a0:99:d9:44:b7:b1:7f:37:
54:bb:21:14:a6:87:08:89:9c:2d:3c:96:b1:d0:7c:
7a:f6:a7:63:5c:41:3b:d3:8a:cd:7f:0a:ba:db:ec:
97:27:08:0c:c9:40:02:76:c4:01:a6:fc:5b:0d:62:
07:8c:ed:cc:7d:d0:2e:f2:d4:c9:a2:28:2e:b6:cc:
25:56:22:06:11:96:ef:af:2e:ee:c8:ea:af:74:8f:
84:e4:4d:43:87:c8:86:bd:cf:1a:14:73:fa:42:71:
50:a0:e6:37:2d:7a:ee:16:f3:c6:bc:67:a6:fa:2a:
0f:55:19:ce:3a:2a:93:c2:8a:5a:cb:4b:9d:0a:0a:
f9:fe:e2:5a:c2:67:b5:34:27:28:72:92:6e:1f:05:
b8:91:e1:71:5e:be:4b:60:60:99:98:50:e7:fb:4d:
91:d2:00:83:cb:ee:a4:90:b6:b9:16:87:4d:38:01:
ad:31:36:7d:01:88:57:b0:47:eb:19:c8:94:1f:14:
0c:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:04:9F:24:60:59:25:B0:54:4A:14:98:F3:9D:22:6F:EF:14:0D:AE
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/631DECF8456111F19F072CBDCE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.81.32.0/21
Signature Algorithm: sha256WithRSAEncryption
6c:46:d7:5d:24:ff:32:82:9f:d4:12:bd:aa:72:4c:46:ef:bb:
9e:ab:1f:dc:fb:2c:bc:24:fc:62:1a:a7:4a:11:ff:fc:f0:d0:
45:3e:6e:10:6a:dd:ad:5d:3f:5e:bd:a7:69:65:6f:93:9f:9a:
23:ac:e1:df:8a:d7:2d:5a:9e:1a:9b:49:45:c0:2d:ed:fa:72:
56:0e:e5:6b:04:54:0c:d5:45:ef:73:45:41:94:e7:8a:66:76:
17:4d:7f:00:8e:89:57:b0:b0:d7:42:7e:ff:b6:df:32:84:4e:
23:10:bd:36:71:c6:24:ca:4f:53:b8:82:4b:a9:9c:68:f3:e5:
fb:c2:ad:d5:36:47:49:69:80:b3:4a:85:f4:9e:34:2d:f0:b9:
53:d1:e8:9a:29:05:eb:04:67:44:da:82:52:d4:99:ee:7b:b0:
b7:90:41:8c:ad:f1:b6:e9:98:33:fc:41:5b:5d:2a:6c:12:0c:
61:98:89:e6:a9:6c:6d:61:c5:ce:44:bf:f4:d8:3c:a7:5d:79:
82:44:17:7c:a0:94:8a:c3:18:0f:42:00:49:19:d6:de:2f:73:
5e:89:01:f6:87:88:a3:a0:51:b3:77:8a:44:5e:6f:ad:42:ff:
ff:b2:28:c3:71:5d:06:ae:dd:12:dd:48:75:49:11:e2:85:9a:
8b:51:21:83
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAcifMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjYwNTAxMTMyNjM2WhcNMjYwNjAyMTMyNjM2WjAYMRYw
FAYDVQQDEw02OWY0YWExMC1jOTRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA52J80Cm1taUaVLECmUx2oq7CaHrIZ4xLL2jtmCOenmRtCdAkgI1jeGkt
19CbRrqYJSkC5rP4PQXBomiELOFfq8XUoJnZRLexfzdUuyEUpocIiZwtPJax0Hx6
9qdjXEE704rNfwq62+yXJwgMyUACdsQBpvxbDWIHjO3MfdAu8tTJoigutswlViIG
EZbvry7uyOqvdI+E5E1Dh8iGvc8aFHP6QnFQoOY3LXruFvPGvGem+ioPVRnOOiqT
wopay0udCgr5/uJawme1NCcocpJuHwW4keFxXr5LYGCZmFDn+02R0gCDy+6kkLa5
FodNOAGtMTZ9AYhXsEfrGciUHxQMcQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFMwE
nyRgWSWwVEoUmPOdIm/vFA2uMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC82MzFERUNGODQ1NjExMUYxOUYwNzJDQkRDRTFEMzhCMC5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDmlEgMA0GCSqGSIb3DQEB
CwUAA4IBAQBsRtddJP8ygp/UEr2qckxG77ueqx/c+yy8JPxiGqdKEf/88NBFPm4Q
at2tXT9evadpZW+Tn5ojrOHfitctWp4am0lFwC3t+nJWDuVrBFQM1UXvc0VBlOeK
ZnYXTX8AjolXsLDXQn7/tt8yhE4jEL02ccYkyk9TuIJLqZxo8+X7wq3VNkdJaYCz
SoX0njQt8LlT0eiaKQXrBGdE2oJS1Jnue7C3kEGMrfG26Zgz/EFbXSpsEgxhmInm
qWxtYcXORL/02DynXXmCRBd8oJSKwxgPQgBJGdbeL3NeiQH2h4ijoFGzd4pEXm+t
Qv//sijDcV0Grt0S3Uh1SRHihZqLUSGD
-----END CERTIFICATE-----
Generated at Sat May 9 11:00:23 2026 by rpki-client