Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/75D87CB6244411F19C3F7BC2DAE4EC9C.roa
File: 75D87CB6244411F19C3F7BC2DAE4EC9C.roa (raw, json)
Hash identifier: dbCSxuFzVY+NGmXnwOIDJmhu+tonrdrtbW0IFAbQ7c8=
Subject key identifier: 20:31:E5:B4:08:01:E6:35:F1:00:65:98:24:5A:78:3F:37:A1:22:16
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C010
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/75D87CB6244411F19C3F7BC2DAE4EC9C.roa
Signing time: Fri 20 Mar 2026 10:06:28 +0000
ROA not before: Fri 20 Mar 2026 10:06:23 +0000
ROA not after: Sun 26 Apr 2026 10:06:23 +0000
asID: 138915
IP address blocks: 154.205.145.0/24 maxlen: 24
154.205.148.0/24 maxlen: 24
154.205.149.0/24 maxlen: 24
154.205.150.0/24 maxlen: 24
154.205.151.0/24 maxlen: 24
154.205.152.0/24 maxlen: 24
154.205.153.0/24 maxlen: 24
154.205.154.0/24 maxlen: 24
154.205.155.0/24 maxlen: 24
154.205.156.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 26 Mar 2026 08:06:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114704 (0x1c010)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 20 10:06:23 2026 GMT
Not After : Apr 26 10:06:23 2026 GMT
Subject: CN=69bd1c24-5396
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:d7:70:14:b2:51:fa:29:f6:fb:7a:f3:11:e2:
39:84:5a:40:13:58:d2:84:1b:83:8b:35:94:77:57:
5d:47:b5:96:f3:ed:06:26:c8:a4:1e:5f:ae:70:39:
ab:54:ad:b1:7b:62:b6:f0:cc:30:24:4c:95:e1:5a:
be:7f:c2:13:14:6c:76:b9:96:55:82:49:fd:fd:fe:
24:0f:b5:31:b4:c0:89:f0:a2:f1:1f:e8:b3:15:ec:
4a:f8:8b:65:5e:63:39:b1:17:dd:4d:08:8a:01:12:
76:8b:e8:a9:d7:c2:bc:f8:d7:34:96:dc:b0:c2:4c:
16:86:a8:87:1f:fa:d1:33:f8:54:06:49:fe:8d:e6:
a3:84:8a:a6:91:a4:f3:55:0b:a6:72:bb:95:b7:13:
18:f7:99:35:83:77:84:55:bb:0e:97:a9:22:8c:00:
86:1a:3f:c8:ee:47:d1:f6:6c:7a:b8:82:6a:7e:65:
ce:4a:38:60:4e:87:cb:bf:e3:76:6c:95:50:51:1d:
90:47:5e:76:db:4b:75:df:62:20:b7:e0:65:c9:73:
cc:5f:a7:ef:cc:4e:7b:12:49:4d:50:44:5c:77:b2:
b4:4f:cc:81:be:7c:ae:22:2b:1c:56:45:86:79:5c:
5b:c5:33:b2:21:20:2f:51:55:7e:6d:86:87:96:1f:
3e:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:31:E5:B4:08:01:E6:35:F1:00:65:98:24:5A:78:3F:37:A1:22:16
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/75D87CB6244411F19C3F7BC2DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.145.0/24
154.205.148.0-154.205.156.255
Signature Algorithm: sha256WithRSAEncryption
63:49:71:86:3d:9f:00:f0:25:07:76:20:72:1d:26:88:97:b1:
24:3c:20:76:cd:3f:c9:a3:41:0b:2b:e4:d9:cb:38:56:7d:02:
39:15:98:83:3d:1b:b4:b3:66:2e:7a:65:68:f0:d5:1a:65:af:
e4:4b:21:d0:8f:9e:4e:a7:f3:57:bc:88:a8:8a:f3:d4:ca:d4:
57:03:f2:df:31:84:be:55:1b:d3:e6:03:4f:e2:fe:5e:77:5d:
42:91:3b:cf:0d:03:f9:d9:46:5d:89:ae:df:03:59:87:c0:a4:
df:f7:6c:67:ba:4f:22:47:86:bc:5d:fb:cc:91:f1:8f:21:7e:
ba:1a:a9:32:45:53:20:d6:75:9c:40:d8:c7:93:6b:90:94:d9:
af:c4:e7:6b:85:7c:3c:cd:97:02:31:b9:00:08:1f:14:c2:df:
51:88:f2:a6:96:5d:39:6d:52:cf:99:f6:f7:94:a7:68:4c:a6:
33:ec:9f:2b:c0:7b:62:96:28:a6:13:71:90:5d:33:f9:5b:8c:
6b:13:99:05:c1:cb:00:d3:d7:b2:c0:c0:2e:ab:6c:1a:83:d2:
04:ff:63:76:7c:10:43:cc:ce:fb:67:36:aa:d6:52:17:77:22:
4f:19:f2:eb:fd:3d:a2:45:99:aa:0b:f3:8c:ad:36:d4:59:b8:
a7:03:23:1e
-----BEGIN CERTIFICATE-----
MIIFkjCCBHqgAwIBAgIDAcAQMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjYwMzIwMTAwNjIzWhcNMjYwNDI2MTAwNjIzWjAYMRYw
FAYDVQQDEw02OWJkMWMyNC01Mzk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAu9dwFLJR+in2+3rzEeI5hFpAE1jShBuDizWUd1ddR7WW8+0GJsikHl+u
cDmrVK2xe2K28MwwJEyV4Vq+f8ITFGx2uZZVgkn9/f4kD7UxtMCJ8KLxH+izFexK
+ItlXmM5sRfdTQiKARJ2i+ip18K8+Nc0ltywwkwWhqiHH/rRM/hUBkn+jeajhIqm
kaTzVQumcruVtxMY95k1g3eEVbsOl6kijACGGj/I7kfR9mx6uIJqfmXOSjhgTofL
v+N2bJVQUR2QR15220t132Igt+BlyXPMX6fvzE57EklNUERcd7K0T8yBvnyuIisc
VkWGeVxbxTOyISAvUVV+bYaHlh8+owIDAQABo4ICszCCAq8wHQYDVR0OBBYEFCAx
5bQIAeY18QBlmCRaeD83oSIWMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC83NUQ4N0NCNjI0NDQxMUYxOUMzRjdCQzJEQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMC0GCCsGAQUFBwEHAQH/BB4wHDAaBAIAATAUAwQAms2RMAwDBAKazZQDBACa
zZwwDQYJKoZIhvcNAQELBQADggEBAGNJcYY9nwDwJQd2IHIdJoiXsSQ8IHbNP8mj
QQsr5NnLOFZ9AjkVmIM9G7SzZi56ZWjw1Rplr+RLIdCPnk6n81e8iKiK89TK1FcD
8t8xhL5VG9PmA0/i/l53XUKRO88NA/nZRl2Jrt8DWYfApN/3bGe6TyJHhrxd+8yR
8Y8hfroaqTJFUyDWdZxA2MeTa5CU2a/E52uFfDzNlwIxuQAIHxTC31GI8qaWXTlt
Us+Z9veUp2hMpjPsnyvAe2KWKKYTcZBdM/lbjGsTmQXBywDT17LAwC6rbBqD0gT/
Y3Z8EEPMzvtnNqrWUhd3Ik8Z8uv9PaJFmaoL84ytNtRZuKcDIx4=
-----END CERTIFICATE-----
Generated at Tue Mar 24 16:20:36 2026 by rpki-client