Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/66FE1B68205411F1B8FD0BD0DAE4EC9C.roa
File: 66FE1B68205411F1B8FD0BD0DAE4EC9C.roa (raw, json)
Hash identifier: VNYtly32kTBQHqGNwKz6oGkDEifPbH4OYLXy6QpaqLI=
Subject key identifier: 6C:C1:90:6A:6E:26:9B:04:9C:E9:2E:CF:92:85:59:2F:E2:B4:48:D6
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01BF77
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/66FE1B68205411F1B8FD0BD0DAE4EC9C.roa
Signing time: Sun 15 Mar 2026 09:50:30 +0000
ROA not before: Sun 15 Mar 2026 09:50:26 +0000
ROA not after: Tue 14 Apr 2026 09:50:26 +0000
asID: 147176
IP address blocks: 154.84.153.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 26 Mar 2026 08:06:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114551 (0x1bf77)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 15 09:50:26 2026 GMT
Not After : Apr 14 09:50:26 2026 GMT
Subject: CN=69b680e6-0175
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:d1:40:8d:db:2a:89:fb:1b:d7:67:f3:42:24:
0e:3f:7b:e8:92:a3:0f:2a:13:c5:2b:0d:37:6c:98:
81:ef:4b:b9:cc:16:6e:c1:48:cf:c7:e7:11:a7:b9:
9a:11:7d:67:e3:65:ee:8b:af:86:b2:a8:de:46:72:
3f:74:de:9f:b6:96:0a:e8:4f:65:cf:93:0b:3e:8b:
4d:48:b8:5f:d0:6b:e8:92:8b:33:31:6f:80:7a:17:
81:35:8e:dc:1b:b3:83:80:87:91:46:31:57:81:b6:
cd:08:f9:ff:9d:94:e1:b2:f4:3b:df:cf:7d:39:57:
25:d9:97:39:5c:7f:96:0d:8b:b2:46:38:b4:79:e3:
e2:be:87:c8:4b:84:4b:e8:2f:af:ad:c9:8d:f4:40:
c8:64:f5:9a:f9:ad:ce:fc:67:04:04:9b:ba:26:d2:
a0:85:e9:a3:cf:7e:6e:ff:6f:a6:09:b6:3a:a1:df:
0e:19:f9:16:2e:9b:fb:76:2d:a5:f7:d2:ea:75:3c:
34:ff:73:9e:00:0c:50:87:7a:48:a5:ac:af:04:55:
e2:55:f6:30:74:cf:4e:fb:a7:6b:df:dc:75:f0:71:
d9:2b:9b:8c:01:da:da:9f:ae:53:13:3f:c4:5c:e6:
a3:c1:5f:0e:7a:0c:e2:ae:48:ea:5d:e9:d1:fb:8a:
01:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:C1:90:6A:6E:26:9B:04:9C:E9:2E:CF:92:85:59:2F:E2:B4:48:D6
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/66FE1B68205411F1B8FD0BD0DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.84.153.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:2b:e1:c2:b5:87:bd:47:26:03:42:7c:e4:eb:0d:de:e3:28:
81:36:ce:91:7b:3e:75:3a:94:f9:e0:7e:67:6e:97:95:1f:93:
64:f5:27:d6:16:60:0e:34:5e:89:01:9c:8e:76:e4:2f:e8:bd:
3d:5e:53:a8:dd:93:c4:bf:13:2b:3c:53:44:50:2c:f4:85:5e:
c8:92:2a:d9:38:4a:d5:7d:ee:81:83:73:c1:29:25:0a:a6:fd:
f1:6e:7d:29:c2:38:42:84:cb:c3:34:cf:dc:22:8e:e7:8d:bc:
d7:31:8b:8a:93:94:c8:67:48:3b:0e:af:46:44:d4:d8:e7:ea:
a3:1c:34:37:9e:9a:e3:2f:d9:a2:b1:16:d2:e0:a7:32:b3:2d:
ec:25:d6:a6:39:fb:3b:ce:3a:49:b5:39:3b:b1:11:d4:be:8f:
ec:81:d1:9a:1d:e2:16:39:8f:f7:b4:20:ab:2c:ed:19:6c:e8:
bd:4a:18:a6:69:63:38:4b:bf:0b:99:58:58:45:7e:ae:fa:7f:
b3:d3:27:89:9f:b0:3e:89:d3:1d:36:0e:07:1b:73:15:15:d2:
45:e2:c8:8a:0e:1a:5f:90:3b:d9:f8:0e:f2:76:d7:04:bd:cb:
6e:9f:84:aa:9c:21:c4:f6:aa:55:24:54:31:f0:34:33:ac:77:
5a:32:42:b1
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAb93MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjYwMzE1MDk1MDI2WhcNMjYwNDE0MDk1MDI2WjAYMRYw
FAYDVQQDEw02OWI2ODBlNi0wMTc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA1NFAjdsqifsb12fzQiQOP3vokqMPKhPFKw03bJiB70u5zBZuwUjPx+cR
p7maEX1n42Xui6+GsqjeRnI/dN6ftpYK6E9lz5MLPotNSLhf0GvokoszMW+AeheB
NY7cG7ODgIeRRjFXgbbNCPn/nZThsvQ73899OVcl2Zc5XH+WDYuyRji0eePivofI
S4RL6C+vrcmN9EDIZPWa+a3O/GcEBJu6JtKghemjz35u/2+mCbY6od8OGfkWLpv7
di2l99LqdTw0/3OeAAxQh3pIpayvBFXiVfYwdM9O+6dr39x18HHZK5uMAdran65T
Ez/EXOajwV8OegzirkjqXenR+4oBjwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFGzB
kGpuJpsEnOkuz5KFWS/itEjWMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC82NkZFMUI2ODIwNTQxMUYxQjhGRDBCRDBEQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmlSZMA0GCSqGSIb3DQEB
CwUAA4IBAQB8K+HCtYe9RyYDQnzk6w3e4yiBNs6Rez51OpT54H5nbpeVH5Nk9SfW
FmAONF6JAZyOduQv6L09XlOo3ZPEvxMrPFNEUCz0hV7IkirZOErVfe6Bg3PBKSUK
pv3xbn0pwjhChMvDNM/cIo7njbzXMYuKk5TIZ0g7Dq9GRNTY5+qjHDQ3nprjL9mi
sRbS4Kcysy3sJdamOfs7zjpJtTk7sRHUvo/sgdGaHeIWOY/3tCCrLO0ZbOi9Shim
aWM4S78LmVhYRX6u+n+z0yeJn7A+idMdNg4HG3MVFdJF4siKDhpfkDvZ+A7ydtcE
vctun4SqnCHE9qpVJFQx8DQzrHdaMkKx
-----END CERTIFICATE-----
Generated at Tue Mar 24 16:15:57 2026 by rpki-client