Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/767E0B58498411F1B34E57DECE1D38B0.roa
File: 767E0B58498411F1B34E57DECE1D38B0.roa (raw, json)
Hash identifier: QRZNi1g364bVwXXeizsl/gFsszmpMU5Lu97XN2IUJus=
Subject key identifier: 4E:62:65:50:5D:78:3C:32:92:86:14:DC:12:05:E8:FE:C6:FA:CE:17
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C9B1
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/767E0B58498411F1B34E57DECE1D38B0.roa
Signing time: Wed 06 May 2026 19:47:50 +0000
ROA not before: Wed 06 May 2026 19:47:45 +0000
ROA not after: Sun 06 May 2029 19:47:45 +0000
asID: 17561
IP address blocks: 154.85.188.0/24 maxlen: 24
154.85.189.0/24 maxlen: 24
154.85.190.0/24 maxlen: 24
154.85.191.0/24 maxlen: 24
154.85.192.0/24 maxlen: 24
154.85.193.0/24 maxlen: 24
154.85.194.0/24 maxlen: 24
154.85.195.0/24 maxlen: 24
154.85.196.0/24 maxlen: 24
154.85.197.0/24 maxlen: 24
154.85.248.0/24 maxlen: 24
154.85.249.0/24 maxlen: 24
154.85.250.0/24 maxlen: 24
154.85.251.0/24 maxlen: 24
154.85.252.0/24 maxlen: 24
154.85.253.0/24 maxlen: 24
154.85.254.0/24 maxlen: 24
154.85.255.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 11 May 2026 00:07:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117169 (0x1c9b1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 6 19:47:45 2026 GMT
Not After : May 6 19:47:45 2029 GMT
Subject: CN=69fb9ae6-89b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:9b:bd:a2:e1:9b:af:a3:7a:79:8b:15:00:c4:
bc:7f:48:f6:54:07:68:ad:2d:da:cf:86:fc:73:e2:
68:0a:b6:b8:4a:0c:e6:1b:32:3f:a9:5e:5d:1d:53:
83:00:a1:2f:1c:3e:da:2a:54:37:15:09:c5:f9:3c:
89:91:d8:19:76:fb:cc:61:9d:a2:68:b7:4c:26:c1:
4d:de:b3:ac:11:ab:76:26:1e:be:1a:f6:b2:16:61:
23:55:a5:8f:fa:13:73:ca:8c:90:92:94:46:37:65:
e1:a5:53:db:a3:c3:25:32:ea:09:6e:24:8a:b7:83:
67:f3:9f:7f:e6:95:88:cf:df:3c:7b:34:d0:73:8a:
83:16:ef:2c:51:93:99:a4:f0:b1:69:17:08:05:57:
6c:e8:dd:f0:95:b7:a7:e2:61:fc:e8:7b:57:97:30:
19:21:c8:48:38:ef:d0:50:38:26:3b:ed:65:1e:8d:
41:b9:7f:bf:d5:3c:41:29:9b:04:70:45:bb:25:07:
9d:27:50:4b:d7:1b:df:99:0c:c3:dc:ea:02:8f:75:
d1:9a:8f:03:32:43:9a:f0:11:68:ce:fb:d9:98:72:
f5:01:2e:1c:bc:7f:f6:c6:e2:29:ca:58:e1:a8:e4:
46:f1:79:6d:e0:7d:61:eb:54:16:66:2b:74:89:55:
f1:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:62:65:50:5D:78:3C:32:92:86:14:DC:12:05:E8:FE:C6:FA:CE:17
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/767E0B58498411F1B34E57DECE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.85.188.0-154.85.197.255
154.85.248.0/21
Signature Algorithm: sha256WithRSAEncryption
a3:40:4f:c7:de:f4:be:ef:c8:b9:35:d7:38:42:56:a6:14:c0:
49:d2:ca:a2:0a:a5:9b:6b:57:2d:ff:0f:f8:af:20:cb:d0:24:
0c:cd:46:ae:b0:1e:c2:f8:9b:08:8a:ce:ad:16:3a:e0:d5:64:
dd:a5:54:09:77:4e:68:85:21:d1:79:3b:b0:79:94:d8:09:e1:
84:38:c0:a0:3f:60:60:7d:cf:9e:a3:9f:77:63:e6:31:f5:85:
54:d4:78:d8:e1:d4:62:8f:a1:96:60:5e:f1:ef:5b:c4:fe:23:
36:d5:93:80:bf:80:e1:11:29:8e:f6:15:8e:72:c8:c0:bd:02:
a8:9e:dd:d8:bf:88:43:0c:42:25:75:b2:e6:18:10:2e:94:78:
36:67:53:40:94:4a:a1:c7:3a:c9:70:62:f5:7c:6b:87:ba:67:
bc:eb:67:de:bd:da:38:08:53:36:ba:03:f4:78:b2:c4:1a:53:
b5:80:ac:5f:5f:37:57:02:41:c2:34:73:47:99:2d:d9:49:10:
48:ac:6e:6a:07:5e:e5:4b:59:ec:0f:2a:c7:a3:d2:11:83:ef:
ae:67:80:98:b7:ae:db:4c:40:af:52:9e:81:3f:b5:52:79:1b:
cf:6c:92:b0:16:c8:64:c8:71:a4:84:e8:e9:6a:ec:33:e8:79:
dc:ed:5c:52
-----BEGIN CERTIFICATE-----
MIIFkjCCBHqgAwIBAgIDAcmxMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjYwNTA2MTk0NzQ1WhcNMjkwNTA2MTk0NzQ1WjAYMRYw
FAYDVQQDEw02OWZiOWFlNi04OWI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAypu9ouGbr6N6eYsVAMS8f0j2VAdorS3az4b8c+JoCra4SgzmGzI/qV5d
HVODAKEvHD7aKlQ3FQnF+TyJkdgZdvvMYZ2iaLdMJsFN3rOsEat2Jh6+GvayFmEj
VaWP+hNzyoyQkpRGN2XhpVPbo8MlMuoJbiSKt4Nn859/5pWIz988ezTQc4qDFu8s
UZOZpPCxaRcIBVds6N3wlben4mH86HtXlzAZIchIOO/QUDgmO+1lHo1BuX+/1TxB
KZsEcEW7JQedJ1BL1xvfmQzD3OoCj3XRmo8DMkOa8BFozvvZmHL1AS4cvH/2xuIp
yljhqORG8Xlt4H1h61QWZit0iVXxBwIDAQABo4ICszCCAq8wHQYDVR0OBBYEFE5i
ZVBdeDwykoYU3BIF6P7G+s4XMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC83NjdFMEI1ODQ5ODQxMUYxQjM0RTU3REVDRTFEMzhCMC5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMC0GCCsGAQUFBwEHAQH/BB4wHDAaBAIAATAUMAwDBAKaVbwDBAGaVcQDBAOa
VfgwDQYJKoZIhvcNAQELBQADggEBAKNAT8fe9L7vyLk11zhCVqYUwEnSyqIKpZtr
Vy3/D/ivIMvQJAzNRq6wHsL4mwiKzq0WOuDVZN2lVAl3TmiFIdF5O7B5lNgJ4YQ4
wKA/YGB9z56jn3dj5jH1hVTUeNjh1GKPoZZgXvHvW8T+IzbVk4C/gOERKY72FY5y
yMC9Aqie3di/iEMMQiV1suYYEC6UeDZnU0CUSqHHOslwYvV8a4e6Z7zrZ9692jgI
Uza6A/R4ssQaU7WArF9fN1cCQcI0c0eZLdlJEEisbmoHXuVLWewPKsej0hGD765n
gJi3rttMQK9SnoE/tVJ5G89skrAWyGTIcaSE6Olq7DPoedztXFI=
-----END CERTIFICATE-----
Generated at Sat May 9 11:04:00 2026 by rpki-client