Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/714DC64C6EF911F1828D18F6CE1D38B0.roa
File: 714DC64C6EF911F1828D18F6CE1D38B0.roa (raw, json)
Hash identifier: fjemviDqbMwhHzRzg0IaA0hHmp2/SQyhrT6YCv/nZ1U=
Subject key identifier: 55:3C:8B:37:5F:A2:95:7B:E9:2A:79:D3:A0:85:71:E2:1B:75:EC:04
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01D49C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/714DC64C6EF911F1828D18F6CE1D38B0.roa
Signing time: Tue 23 Jun 2026 11:48:26 +0000
ROA not before: Tue 23 Jun 2026 11:48:21 +0000
ROA not after: Sat 08 Aug 2026 11:48:21 +0000
asID: 214143
IP address blocks: 154.194.208.0/22 maxlen: 24
154.194.212.0/23 maxlen: 24
154.197.60.0/23 maxlen: 24
154.197.86.0/23 maxlen: 24
154.223.248.0/21 maxlen: 24
154.223.248.0/22 maxlen: 24
154.223.252.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 25 Jun 2026 14:14:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119964 (0x1d49c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 23 11:48:21 2026 GMT
Not After : Aug 8 11:48:21 2026 GMT
Subject: CN=6a3a7289-15e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:28:8d:35:df:a9:f9:fb:0c:c8:7b:6c:81:cc:
2c:8d:e2:6d:9f:05:5c:17:40:23:7a:c8:f5:b7:af:
c9:0c:9e:2c:fa:6a:7f:cc:1d:b5:84:95:09:1d:10:
ae:f6:36:4e:89:15:57:25:f7:5e:01:2e:96:b9:4e:
10:a1:05:87:48:3b:d9:70:ba:12:a9:cc:87:3a:82:
4b:05:91:c4:a2:e1:fa:7b:d7:29:8c:8f:33:83:ef:
9e:7f:c0:01:54:ac:0a:0a:b7:f6:fe:a0:fe:f1:64:
4e:66:a1:7a:fc:3f:54:1b:15:26:62:bf:40:e2:9d:
5a:5a:d3:89:d1:3d:c7:1c:4c:7f:da:8d:a0:8c:13:
26:05:9b:96:9f:6e:e8:ef:6a:9e:ee:5c:9e:ea:c8:
6b:7d:1d:81:d4:e3:dd:70:bf:78:cd:25:25:66:f1:
1e:2c:a4:47:9d:ca:2f:23:18:80:33:2b:89:ce:ab:
70:e9:85:c9:0f:68:00:21:9a:50:ad:c8:cc:a6:c1:
46:64:d5:05:d7:4c:21:d1:51:25:21:fb:71:f3:b7:
01:75:54:c3:e5:0e:3d:d8:bb:ba:c5:95:4f:93:bd:
26:86:dd:44:a5:42:e2:f9:54:cd:72:1e:7e:07:2a:
97:72:73:02:2b:84:5b:f1:c5:49:cb:5c:20:0b:67:
d2:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:3C:8B:37:5F:A2:95:7B:E9:2A:79:D3:A0:85:71:E2:1B:75:EC:04
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/714DC64C6EF911F1828D18F6CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.208.0-154.194.213.255
154.197.60.0/23
154.197.86.0/23
154.223.248.0/21
Signature Algorithm: sha256WithRSAEncryption
bf:f7:e0:4e:41:ed:36:4c:e8:60:86:fe:c9:8f:f4:d0:32:71:
aa:51:34:b3:6c:05:1c:b7:18:9b:15:16:b8:f9:1c:45:3b:1f:
25:b9:6c:6c:7a:e1:19:bd:23:0d:96:0f:d4:04:86:ae:6a:ef:
00:9b:4a:ca:d4:6f:f6:8a:52:3b:48:89:49:48:48:65:6a:94:
d4:39:32:0b:65:2f:03:61:94:65:06:0c:f8:6d:21:95:e2:d1:
4e:13:6b:57:5d:ad:10:c5:9e:24:36:1f:a8:32:22:cf:3a:25:
26:ae:81:49:72:f2:ad:07:6c:c0:2c:0f:32:9e:0e:19:79:26:
a8:d4:57:a2:c6:75:40:82:dd:b7:8b:07:b0:9a:10:53:c6:5f:
ba:7c:f2:fb:72:00:7f:2f:33:b3:6e:ac:84:ef:5e:52:59:4f:
e1:fe:eb:09:44:40:0f:b5:1b:42:ac:78:57:55:01:cb:52:c8:
42:7e:d4:16:a8:12:d3:73:c9:c7:a8:fc:ff:ff:74:7a:a9:f7:
5a:87:64:0f:75:68:4f:1e:d3:1d:71:77:71:53:46:7a:19:b5:
a6:2b:56:bb:25:49:9b:78:61:fd:09:a6:58:5a:b3:56:de:06:
5e:62:5d:ce:b2:40:97:91:be:c3:ba:b9:99:82:20:05:a6:3f:
96:b8:d9:ec
-----BEGIN CERTIFICATE-----
MIIFnjCCBIagAwIBAgIDAdScMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjYwNjIzMTE0ODIxWhcNMjYwODA4MTE0ODIxWjAYMRYw
FAYDVQQDEw02YTNhNzI4OS0xNWUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA7CiNNd+p+fsMyHtsgcwsjeJtnwVcF0Ajesj1t6/JDJ4s+mp/zB21hJUJ
HRCu9jZOiRVXJfdeAS6WuU4QoQWHSDvZcLoSqcyHOoJLBZHEouH6e9cpjI8zg++e
f8ABVKwKCrf2/qD+8WROZqF6/D9UGxUmYr9A4p1aWtOJ0T3HHEx/2o2gjBMmBZuW
n27o72qe7lye6shrfR2B1OPdcL94zSUlZvEeLKRHncovIxiAMyuJzqtw6YXJD2gA
IZpQrcjMpsFGZNUF10wh0VElIftx87cBdVTD5Q492Lu6xZVPk70mht1EpULi+VTN
ch5+ByqXcnMCK4Rb8cVJy1wgC2fSMwIDAQABo4ICvzCCArswHQYDVR0OBBYEFFU8
izdfopV76Sp506CFceIbdewEMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC83MTREQzY0QzZFRjkxMUYxODI4RDE4RjZDRTFEMzhCMC5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMDkGCCsGAQUFBwEHAQH/BCowKDAmBAIAATAgMAwDBASawtADBAGawtQDBAGa
xTwDBAGaxVYDBAOa3/gwDQYJKoZIhvcNAQELBQADggEBAL/34E5B7TZM6GCG/smP
9NAycapRNLNsBRy3GJsVFrj5HEU7HyW5bGx64Rm9Iw2WD9QEhq5q7wCbSsrUb/aK
UjtIiUlISGVqlNQ5MgtlLwNhlGUGDPhtIZXi0U4Ta1ddrRDFniQ2H6gyIs86JSau
gUly8q0HbMAsDzKeDhl5JqjUV6LGdUCC3beLB7CaEFPGX7p88vtyAH8vM7NurITv
XlJZT+H+6wlEQA+1G0KseFdVActSyEJ+1BaoEtNzyceo/P//dHqp91qHZA91aE8e
0x1xd3FTRnoZtaYrVrslSZt4Yf0Jplhas1beBl5iXc6yQJeRvsO6uZmCIAWmP5a4
2ew=
-----END CERTIFICATE-----
Generated at Tue Jun 23 21:51:52 2026 by rpki-client