Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/76DEB60C578411F1B32C3019CF1D38B0.roa
File: 76DEB60C578411F1B32C3019CF1D38B0.roa (raw, json)
Hash identifier: unGnL5OsLk/RZjvCitEUzOUc+YTX+t4wXxbEcMQP3aE=
Subject key identifier: 3A:A7:A4:C2:68:76:7D:2B:DF:CF:F8:36:A4:D7:9B:CF:36:3A:BD:DF
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01CEEB
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/76DEB60C578411F1B32C3019CF1D38B0.roa
Signing time: Sun 24 May 2026 15:23:07 +0000
ROA not before: Sun 24 May 2026 15:23:02 +0000
ROA not after: Thu 02 Jul 2026 15:23:02 +0000
asID: 11427
IP address blocks: 154.85.124.0/22 maxlen: 24
154.88.32.0/22 maxlen: 24
154.88.44.0/22 maxlen: 24
154.88.48.0/22 maxlen: 24
154.88.60.0/22 maxlen: 24
154.90.160.0/21 maxlen: 24
154.90.176.0/21 maxlen: 24
154.90.192.0/19 maxlen: 24
154.94.16.0/20 maxlen: 24
154.94.240.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 07 Jun 2026 13:04:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118507 (0x1ceeb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 24 15:23:02 2026 GMT
Not After : Jul 2 15:23:02 2026 GMT
Subject: CN=6a1317db-5efb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:54:0b:d9:2c:dd:36:f9:fa:25:6c:ac:b8:96:
fe:02:c1:96:b9:fc:12:a6:58:e1:a5:95:0a:3f:34:
b5:b3:83:42:b2:15:98:b2:7c:71:6e:e0:74:1d:a5:
40:54:df:f3:43:51:16:bd:cb:d0:a7:ee:09:a6:03:
5a:0a:01:83:68:9b:0a:67:d5:15:7f:aa:df:ac:63:
29:0b:5c:0d:89:78:f5:39:a4:66:ba:f0:54:06:21:
78:5d:3a:b3:f5:68:e6:56:04:cf:58:67:e7:38:37:
17:44:a6:61:fa:48:74:94:87:2b:fe:81:eb:6c:0a:
ef:04:67:64:14:2f:0b:37:e2:d5:9e:80:f5:ed:3d:
dd:90:e9:2c:dd:11:41:20:ad:9b:e1:28:07:bb:c8:
23:44:6c:4d:49:56:ab:5e:7c:0b:2d:77:55:36:e3:
20:9f:0f:fd:21:92:a1:f0:55:4d:e0:ea:aa:99:0d:
55:94:6c:1c:80:03:8c:c1:de:9f:c3:dc:85:a7:93:
a7:5f:c3:c7:c4:90:3a:3b:97:6f:6e:6d:3a:8b:1b:
16:08:49:fb:ea:f8:c8:55:55:ba:3f:4f:8b:d8:13:
7a:c9:33:15:c9:c8:47:9e:96:56:0d:17:32:ce:f9:
9b:e3:cc:48:fb:92:5e:d5:fc:18:fd:f5:80:3a:92:
3c:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:A7:A4:C2:68:76:7D:2B:DF:CF:F8:36:A4:D7:9B:CF:36:3A:BD:DF
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/76DEB60C578411F1B32C3019CF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.85.124.0/22
154.88.32.0/22
154.88.44.0-154.88.51.255
154.88.60.0/22
154.90.160.0/21
154.90.176.0/21
154.90.192.0/19
154.94.16.0/20
154.94.240.0/20
Signature Algorithm: sha256WithRSAEncryption
bc:27:9b:00:ad:34:ac:d1:a4:6d:0f:3a:7f:06:a1:68:62:6f:
c8:63:c9:bd:09:d1:c4:66:24:8f:f9:e1:06:3a:4b:62:e5:8b:
bb:80:7e:f0:c7:ab:de:5d:b1:58:95:24:f2:04:22:32:a8:58:
b7:84:46:7e:1d:e8:9d:93:03:78:66:9b:a4:a5:79:b7:7c:7a:
4b:34:d9:3e:59:27:70:11:44:41:85:76:52:0a:ba:44:8e:40:
13:f3:56:ec:16:a2:03:6a:37:cf:df:97:4b:e6:72:70:40:5f:
73:35:6b:19:ba:e5:ef:cf:6d:1f:fd:75:c1:93:76:89:7f:e0:
35:f1:5b:af:3a:28:7c:b5:9f:22:54:bd:0f:26:eb:ee:a6:72:
e8:be:be:dc:7c:47:96:d3:d6:84:4e:f9:ac:4b:9b:40:0d:dd:
3c:ff:45:e0:9b:04:3c:d5:9a:c0:97:2b:41:0d:7c:1f:e3:f1:
cd:86:3a:a5:d8:2f:c6:6e:e1:ae:e8:df:88:45:3f:5e:3b:27:
b2:6b:d7:d5:9b:47:93:04:2d:3a:be:d6:46:49:82:38:9d:8d:
b0:d6:21:7a:e0:b7:90:53:70:00:83:09:d8:7e:ab:f2:b0:df:
00:31:a0:ea:95:17:fd:bd:aa:df:1f:d7:ad:74:55:9c:0e:88:
38:da:24:28
-----BEGIN CERTIFICATE-----
MIIFvDCCBKSgAwIBAgIDAc7rMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjYwNTI0MTUyMzAyWhcNMjYwNzAyMTUyMzAyWjAYMRYw
FAYDVQQDEw02YTEzMTdkYi01ZWZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAuFQL2SzdNvn6JWysuJb+AsGWufwSpljhpZUKPzS1s4NCshWYsnxxbuB0
HaVAVN/zQ1EWvcvQp+4JpgNaCgGDaJsKZ9UVf6rfrGMpC1wNiXj1OaRmuvBUBiF4
XTqz9WjmVgTPWGfnODcXRKZh+kh0lIcr/oHrbArvBGdkFC8LN+LVnoD17T3dkOks
3RFBIK2b4SgHu8gjRGxNSVarXnwLLXdVNuMgnw/9IZKh8FVN4OqqmQ1VlGwcgAOM
wd6fw9yFp5OnX8PHxJA6O5dvbm06ixsWCEn76vjIVVW6P0+L2BN6yTMVychHnpZW
DRcyzvmb48xI+5Je1fwY/fWAOpI8OQIDAQABo4IC3TCCAtkwHQYDVR0OBBYEFDqn
pMJodn0r38/4NqTXm882Or3fMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC83NkRFQjYwQzU3ODQxMUYxQjMyQzMwMTlDRjFEMzhCMC5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMFcGCCsGAQUFBwEHAQH/BEgwRjBEBAIAATA+AwQCmlV8AwQCmlggMAwDBAKa
WCwDBAKaWDADBAKaWDwDBAOaWqADBAOaWrADBAWaWsADBASaXhADBASaXvAwDQYJ
KoZIhvcNAQELBQADggEBALwnmwCtNKzRpG0POn8GoWhib8hjyb0J0cRmJI/54QY6
S2Lli7uAfvDHq95dsViVJPIEIjKoWLeERn4d6J2TA3hmm6Slebd8eks02T5ZJ3AR
REGFdlIKukSOQBPzVuwWogNqN8/fl0vmcnBAX3M1axm65e/PbR/9dcGTdol/4DXx
W686KHy1nyJUvQ8m6+6mcui+vtx8R5bT1oRO+axLm0AN3Tz/ReCbBDzVmsCXK0EN
fB/j8c2GOqXYL8Zu4a7o34hFP147J7Jr19WbR5MELTq+1kZJgjidjbDWIXrgt5BT
cACDCdh+q/Kw3wAxoOqVF/29qt8f1610VZwOiDjaJCg=
-----END CERTIFICATE-----
Generated at Fri Jun 5 17:26:05 2026 by rpki-client