Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/67CCD344160511F1A3A7ACE2DAE4EC9C.roa
File: 67CCD344160511F1A3A7ACE2DAE4EC9C.roa (raw, json)
Hash identifier: XNTLJO0cTVoJeFP5hxRT8Hjhk8O7ozJYnoERbv418a0=
Subject key identifier: 21:9E:3C:73:84:CF:C7:95:59:53:08:C9:BA:B6:37:FA:74:1D:36:8B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01BCB1
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/67CCD344160511F1A3A7ACE2DAE4EC9C.roa
Signing time: Mon 02 Mar 2026 06:59:50 +0000
ROA not before: Mon 02 Mar 2026 06:59:45 +0000
ROA not after: Fri 02 Mar 2029 06:59:45 +0000
asID: 17561
IP address blocks: 154.81.228.0/24 maxlen: 24
154.81.229.0/24 maxlen: 24
154.81.230.0/24 maxlen: 24
154.81.231.0/24 maxlen: 24
154.81.232.0/24 maxlen: 24
154.81.233.0/24 maxlen: 24
154.81.234.0/24 maxlen: 24
154.81.235.0/24 maxlen: 24
154.81.236.0/24 maxlen: 24
154.81.237.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 26 Mar 2026 08:06:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113841 (0x1bcb1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 2 06:59:45 2026 GMT
Not After : Mar 2 06:59:45 2029 GMT
Subject: CN=69a53566-fb44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:25:1e:a4:0e:da:e5:ed:48:17:25:02:cb:bd:
f0:c8:3d:ab:14:2e:8f:6a:5f:a9:d8:33:2c:23:43:
ec:58:ca:a1:20:01:84:55:2a:2f:b8:40:6a:bb:54:
a3:36:3a:3d:55:33:04:4f:1a:e9:3e:ca:2b:85:e7:
64:91:ba:7c:3f:46:6f:1a:fd:90:a7:f6:92:80:dc:
b5:5e:b5:57:38:13:e0:81:a9:78:64:6c:70:29:1d:
33:06:ac:3b:ef:22:02:1b:45:b0:b4:a2:44:c9:15:
6c:f3:0e:ca:84:39:af:17:27:e6:f5:f0:af:22:46:
91:2f:e3:1e:e4:45:79:15:a1:7c:8e:4e:45:2d:0e:
f8:d0:e0:77:15:15:5a:e2:b1:e7:04:48:b0:d3:70:
13:65:94:f1:e1:8d:90:6f:7e:7f:bf:74:99:d2:d1:
35:45:89:8d:0c:75:1a:c2:de:d0:ef:da:e3:e1:48:
c8:e8:c9:f1:18:42:99:b5:c0:66:02:a8:c0:58:b9:
a9:73:a8:c2:d5:36:b4:87:a6:c8:26:24:d6:f2:7a:
ae:d7:89:0c:4b:24:5b:4f:5b:62:00:23:e1:fe:4e:
8c:a9:08:6e:b9:a4:58:78:15:2b:e4:75:a2:81:5f:
81:4e:2e:b5:ff:ea:2a:db:be:6b:83:a1:da:1a:be:
af:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:9E:3C:73:84:CF:C7:95:59:53:08:C9:BA:B6:37:FA:74:1D:36:8B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/67CCD344160511F1A3A7ACE2DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.81.228.0-154.81.237.255
Signature Algorithm: sha256WithRSAEncryption
77:3c:fd:39:eb:db:22:6a:88:e9:a0:88:03:13:d2:4d:42:ac:
be:2e:ba:4b:60:a2:ca:bd:b8:b9:cd:a1:de:b6:c7:34:64:36:
33:16:01:ac:25:4d:90:ff:7c:c9:a0:91:0b:1a:f3:45:98:02:
2d:f3:88:dc:3d:b3:c4:f8:a0:ea:20:6e:9c:e2:93:23:e1:fc:
cf:c6:60:b0:1f:9d:ae:8a:71:7a:c8:f4:5a:0d:8a:d1:e3:86:
5c:23:c4:55:68:cf:4b:f5:9b:90:2c:5d:94:74:c4:fa:c7:3a:
08:fa:69:b5:35:58:fa:70:63:e6:b9:0d:a1:4d:ec:27:f9:e2:
25:ef:03:34:b4:c1:18:cd:79:c1:04:da:62:63:9a:06:8e:cc:
34:0c:4a:0b:33:9d:6b:08:40:d5:46:35:96:59:11:62:b3:9e:
20:c3:89:4c:12:a7:4c:c8:f8:0c:f6:64:ad:c5:8c:af:a5:ab:
f9:ea:2e:5a:b3:b0:86:b7:f1:42:45:d8:fb:c0:ff:65:08:d1:
73:5e:fb:6b:45:12:6a:92:39:53:e7:40:16:84:bf:7e:5f:f9:
36:a7:e5:e4:be:7d:f8:db:7d:52:99:5d:9e:73:c5:16:0c:4d:
b6:d4:99:3b:4e:9e:87:f4:62:a1:35:13:34:ba:84:34:a8:95:
15:04:ad:dc
-----BEGIN CERTIFICATE-----
MIIFjDCCBHSgAwIBAgIDAbyxMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjYwMzAyMDY1OTQ1WhcNMjkwMzAyMDY1OTQ1WjAYMRYw
FAYDVQQDEw02OWE1MzU2Ni1mYjQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA1SUepA7a5e1IFyUCy73wyD2rFC6Pal+p2DMsI0PsWMqhIAGEVSovuEBq
u1SjNjo9VTMETxrpPsorhedkkbp8P0ZvGv2Qp/aSgNy1XrVXOBPggal4ZGxwKR0z
Bqw77yICG0WwtKJEyRVs8w7KhDmvFyfm9fCvIkaRL+Me5EV5FaF8jk5FLQ740OB3
FRVa4rHnBEiw03ATZZTx4Y2Qb35/v3SZ0tE1RYmNDHUawt7Q79rj4UjI6MnxGEKZ
tcBmAqjAWLmpc6jC1Ta0h6bIJiTW8nqu14kMSyRbT1tiACPh/k6MqQhuuaRYeBUr
5HWigV+BTi61/+oq275rg6HaGr6vZQIDAQABo4ICrTCCAqkwHQYDVR0OBBYEFCGe
PHOEz8eVWVMIybq2N/p0HTaLMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC82N0NDRDM0NDE2MDUxMUYxQTNBN0FDRTJEQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOMAwDBAKaUeQDBAGaUewwDQYJ
KoZIhvcNAQELBQADggEBAHc8/Tnr2yJqiOmgiAMT0k1CrL4uuktgosq9uLnNod62
xzRkNjMWAawlTZD/fMmgkQsa80WYAi3ziNw9s8T4oOogbpzikyPh/M/GYLAfna6K
cXrI9FoNitHjhlwjxFVoz0v1m5AsXZR0xPrHOgj6abU1WPpwY+a5DaFN7Cf54iXv
AzS0wRjNecEE2mJjmgaOzDQMSgsznWsIQNVGNZZZEWKzniDDiUwSp0zI+Az2ZK3F
jK+lq/nqLlqzsIa38UJF2PvA/2UI0XNe+2tFEmqSOVPnQBaEv35f+Tan5eS+ffjb
fVKZXZ5zxRYMTbbUmTtOnof0YqE1EzS6hDSolRUErdw=
-----END CERTIFICATE-----
Generated at Tue Mar 24 16:14:20 2026 by rpki-client