Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/71AFF20855F011F18481C3FBCE1D38B0.roa
File: 71AFF20855F011F18481C3FBCE1D38B0.roa (raw, json)
Hash identifier: tQVQ0Bjl65Ulzaa2x9Lm6Ivw2HJnT++l7c98JQAehE0=
Subject key identifier: 0B:0A:09:91:8D:B0:F4:50:49:7E:CF:5B:E5:3F:C5:2A:03:BB:40:10
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01CE22
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/71AFF20855F011F18481C3FBCE1D38B0.roa
Signing time: Fri 22 May 2026 15:11:02 +0000
ROA not before: Fri 22 May 2026 15:10:56 +0000
ROA not after: Fri 26 Jun 2026 15:10:56 +0000
asID: 63139
IP address blocks: 154.94.69.0/24 maxlen: 24
154.94.70.0/24 maxlen: 24
154.94.71.0/24 maxlen: 24
154.94.72.0/24 maxlen: 24
154.94.73.0/24 maxlen: 24
154.94.74.0/24 maxlen: 24
154.94.75.0/24 maxlen: 24
154.94.76.0/24 maxlen: 24
154.94.77.0/24 maxlen: 24
154.94.78.0/24 maxlen: 24
154.94.82.0/24 maxlen: 24
154.94.102.0/24 maxlen: 24
154.94.103.0/24 maxlen: 24
154.94.104.0/24 maxlen: 24
154.94.105.0/24 maxlen: 24
154.94.106.0/24 maxlen: 24
154.94.107.0/24 maxlen: 24
154.94.108.0/24 maxlen: 24
154.94.109.0/24 maxlen: 24
154.94.110.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 04 Jun 2026 00:07:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118306 (0x1ce22)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 22 15:10:56 2026 GMT
Not After : Jun 26 15:10:56 2026 GMT
Subject: CN=6a107205-c61c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:7b:ab:f2:28:55:1f:41:49:a0:d4:c1:08:9c:
44:85:f0:96:5f:2c:d9:7c:df:e2:f8:5d:67:0c:db:
86:e4:a5:f2:04:a9:fc:d6:9a:8c:de:5d:ae:67:c2:
69:fb:af:36:61:6f:39:3a:94:b1:62:37:3d:8e:a6:
c6:de:52:64:11:a5:5b:ac:55:34:c4:cd:8b:33:96:
71:45:d7:c9:17:f3:03:21:3f:8e:e1:8a:ec:9c:b2:
0f:31:e3:99:f1:e2:9c:5b:e2:2c:f1:dd:0b:3a:3a:
0c:8f:63:40:3f:c1:8d:41:b5:10:47:08:3a:8a:d7:
ac:0b:0a:71:c5:52:75:af:ab:77:db:00:03:3b:16:
4e:cd:ba:0d:61:1e:98:af:98:c3:87:c5:c9:c3:52:
df:4e:98:3e:48:28:ea:ea:14:8e:5a:6c:ec:14:4c:
e1:ef:e8:00:7a:a3:3e:6f:a4:c0:15:19:e1:a4:ce:
c7:09:6c:1b:c0:56:16:57:97:34:99:3a:41:34:df:
bf:fc:41:cd:44:6d:2c:51:b3:3d:ff:32:f9:4a:40:
d1:a4:54:18:b4:cb:d3:80:59:ff:26:64:a3:df:99:
0b:41:f7:aa:7e:f7:20:e8:55:b0:f5:33:06:78:83:
37:23:cc:04:26:5b:7d:77:7d:41:26:15:9d:91:51:
ff:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:0A:09:91:8D:B0:F4:50:49:7E:CF:5B:E5:3F:C5:2A:03:BB:40:10
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/71AFF20855F011F18481C3FBCE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.69.0-154.94.78.255
154.94.82.0/24
154.94.102.0-154.94.110.255
Signature Algorithm: sha256WithRSAEncryption
11:f9:6e:43:18:df:f0:ce:e7:a4:5f:43:44:83:5c:72:7c:70:
73:1d:1b:f4:bd:56:f6:78:c8:05:e9:44:93:c9:a1:74:ce:8d:
7b:fe:99:82:04:0c:3b:46:63:64:19:6e:40:5e:83:4e:63:85:
b3:4b:0e:04:25:73:ac:ce:2b:0b:ee:1d:82:e6:c0:63:47:2a:
4f:21:aa:c6:34:42:55:7f:7c:ad:ef:ae:d4:07:f1:0e:90:f1:
36:cb:a1:bb:2a:99:84:88:65:12:8e:69:fc:8d:8d:1d:4f:70:
63:61:a5:af:58:78:2d:92:cd:aa:b1:80:0a:e0:2b:eb:c0:1f:
1c:f4:18:a8:85:e6:5d:5d:91:24:9b:69:41:25:8c:aa:9f:0b:
f5:20:41:85:02:42:c3:7f:c8:04:44:0a:64:99:b6:5c:91:45:
ba:15:87:68:29:06:05:da:05:e2:9b:c3:df:61:54:f2:02:33:
ea:e5:6a:f5:59:d0:25:fb:03:bc:fe:f6:cd:9f:ff:2a:b1:09:
0c:07:3d:4e:fa:f0:57:b6:74:df:41:70:b7:c3:81:c0:89:e9:
db:c1:57:fa:b3:ad:72:cb:f6:f5:a7:ad:df:15:d9:18:f7:9e:
06:2f:d7:bc:df:eb:12:0c:51:15:fd:b4:b1:96:92:d6:81:fe:
5e:47:68:b9
-----BEGIN CERTIFICATE-----
MIIFoDCCBIigAwIBAgIDAc4iMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjYwNTIyMTUxMDU2WhcNMjYwNjI2MTUxMDU2WjAYMRYw
FAYDVQQDEw02YTEwNzIwNS1jNjFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAxHur8ihVH0FJoNTBCJxEhfCWXyzZfN/i+F1nDNuG5KXyBKn81pqM3l2u
Z8Jp+682YW85OpSxYjc9jqbG3lJkEaVbrFU0xM2LM5ZxRdfJF/MDIT+O4YrsnLIP
MeOZ8eKcW+Is8d0LOjoMj2NAP8GNQbUQRwg6itesCwpxxVJ1r6t32wADOxZOzboN
YR6Yr5jDh8XJw1LfTpg+SCjq6hSOWmzsFEzh7+gAeqM+b6TAFRnhpM7HCWwbwFYW
V5c0mTpBNN+//EHNRG0sUbM9/zL5SkDRpFQYtMvTgFn/JmSj35kLQfeqfvcg6FWw
9TMGeIM3I8wEJlt9d31BJhWdkVH/HwIDAQABo4ICwTCCAr0wHQYDVR0OBBYEFAsK
CZGNsPRQSX7PW+U/xSoDu0AQMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC83MUFGRjIwODU1RjAxMUYxODQ4MUMzRkJDRTFEMzhCMC5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMDsGCCsGAQUFBwEHAQH/BCwwKjAoBAIAATAiMAwDBACaXkUDBACaXk4DBACa
XlIwDAMEAZpeZgMEAJpebjANBgkqhkiG9w0BAQsFAAOCAQEAEfluQxjf8M7npF9D
RINccnxwcx0b9L1W9njIBelEk8mhdM6Ne/6ZggQMO0ZjZBluQF6DTmOFs0sOBCVz
rM4rC+4dgubAY0cqTyGqxjRCVX98re+u1AfxDpDxNsuhuyqZhIhlEo5p/I2NHU9w
Y2Glr1h4LZLNqrGACuAr68AfHPQYqIXmXV2RJJtpQSWMqp8L9SBBhQJCw3/IBEQK
ZJm2XJFFuhWHaCkGBdoF4pvD32FU8gIz6uVq9VnQJfsDvP72zZ//KrEJDAc9Tvrw
V7Z030Fwt8OBwInp28FX+rOtcsv29aet3xXZGPeeBi/XvN/rEgxRFf20sZaS1oH+
XkdouQ==
-----END CERTIFICATE-----
Generated at Tue Jun 2 21:28:42 2026 by rpki-client