Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7E210DD85B3611F183814517CF1D38B0.roa
File: 7E210DD85B3611F183814517CF1D38B0.roa (raw, json)
Hash identifier: QQJyNxD71Jr9S5o1UZblTQDSJ1LQJ8SKbvlQylEWb9Q=
Subject key identifier: 7A:59:E8:AF:78:9C:ED:72:DF:C5:1E:6F:E9:E9:EF:66:0A:86:56:70
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01D048
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7E210DD85B3611F183814517CF1D38B0.roa
Signing time: Fri 29 May 2026 08:15:03 +0000
ROA not before: Fri 29 May 2026 08:14:58 +0000
ROA not after: Tue 07 Jul 2026 08:14:58 +0000
asID: 214238
IP address blocks: 154.219.23.0/24 maxlen: 24
154.219.25.0/24 maxlen: 24
154.219.30.0/24 maxlen: 24
154.219.31.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 13 Jun 2026 15:58:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118856 (0x1d048)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 29 08:14:58 2026 GMT
Not After : Jul 7 08:14:58 2026 GMT
Subject: CN=6a194b07-984f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:e7:e8:60:28:9b:83:89:b2:34:f7:72:0a:eb:
22:73:9f:58:e8:3a:19:74:df:49:01:48:98:c2:43:
73:81:0c:e2:14:66:1a:73:c0:2a:2d:ae:55:f9:6f:
ba:3d:9a:71:50:c2:e4:b9:68:23:ee:2c:72:44:41:
20:c3:f5:c0:f7:ee:c3:3f:89:31:3d:cf:7c:d7:c4:
7f:d1:be:b6:a3:eb:e5:80:4f:04:fc:f8:68:25:5c:
14:b1:c0:f5:d5:b7:a4:a4:6e:66:81:9e:07:ae:c4:
97:7b:96:c9:6a:a3:bc:10:6a:4a:31:2b:12:84:bc:
6b:80:f9:f4:37:2d:b8:f3:65:1a:91:18:e7:31:7a:
8d:c1:4b:ec:63:d6:07:8b:54:b1:da:5d:c2:53:c4:
f1:78:9d:72:7a:23:63:c5:10:6e:26:4b:d7:f6:c5:
7b:fb:30:0a:f7:b4:d5:43:19:db:64:6a:19:06:9a:
81:f3:75:ef:dc:69:39:0c:9f:8d:cb:f4:0a:2a:a7:
37:74:04:1e:d2:f6:bb:27:5c:7d:6e:e6:11:28:fa:
fd:ea:ea:27:de:2a:a9:d4:31:a2:45:28:3e:7c:bc:
92:67:3a:97:84:a9:e9:b9:f8:f4:6b:a4:3c:0a:ca:
73:3d:67:70:77:92:04:12:53:1e:cb:a4:5c:fe:ba:
03:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:59:E8:AF:78:9C:ED:72:DF:C5:1E:6F:E9:E9:EF:66:0A:86:56:70
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7E210DD85B3611F183814517CF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.219.23.0/24
154.219.25.0/24
154.219.30.0/23
Signature Algorithm: sha256WithRSAEncryption
96:36:4f:c1:6e:32:9b:b7:d8:26:2c:9f:ba:59:39:8f:16:08:
c7:36:2d:ed:cd:d6:b9:75:3e:3a:e6:65:a9:d5:c8:56:b0:0f:
42:b7:b1:55:e4:cf:3e:77:ab:42:33:5c:53:13:1e:29:b9:d6:
60:05:6f:91:f1:99:a9:12:72:a4:af:44:05:11:37:fa:a9:b0:
8c:1f:1a:ac:b4:e0:cc:c0:13:3a:e3:92:9b:ae:99:b1:b9:e9:
d7:cf:af:7b:f5:f4:57:35:d7:2b:33:9f:02:c9:8e:ae:28:b8:
1c:d1:64:2f:32:94:67:e8:59:44:8c:37:fc:1e:f5:66:cb:af:
a9:2d:fc:fe:b4:36:88:76:cd:d2:8f:6f:ef:2a:44:1f:13:f1:
0c:b9:38:97:1c:13:5d:56:26:3d:28:6d:20:dc:13:6f:be:5c:
e2:8a:d7:fb:b1:95:c7:52:51:b3:82:7c:25:25:b8:02:9e:e8:
e4:c1:a4:5a:26:59:09:9d:4a:c9:ea:79:b3:94:0d:48:d8:e4:
e5:a3:2c:ad:85:4e:fd:f5:e5:6c:c1:ab:57:c7:f5:50:ad:09:
89:a2:dd:e3:13:9b:f0:d0:7d:b6:65:ff:b3:a8:12:09:aa:01:
61:a1:f4:c5:2f:7f:a2:de:bf:94:f3:20:f6:db:b2:b4:8a:da:
51:28:8d:96
-----BEGIN CERTIFICATE-----
MIIFkDCCBHigAwIBAgIDAdBIMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjYwNTI5MDgxNDU4WhcNMjYwNzA3MDgxNDU4WjAYMRYw
FAYDVQQDEw02YTE5NGIwNy05ODRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAzufoYCibg4myNPdyCusic59Y6DoZdN9JAUiYwkNzgQziFGYac8AqLa5V
+W+6PZpxUMLkuWgj7ixyREEgw/XA9+7DP4kxPc9818R/0b62o+vlgE8E/PhoJVwU
scD11bekpG5mgZ4HrsSXe5bJaqO8EGpKMSsShLxrgPn0Ny2482UakRjnMXqNwUvs
Y9YHi1Sx2l3CU8TxeJ1yeiNjxRBuJkvX9sV7+zAK97TVQxnbZGoZBpqB83Xv3Gk5
DJ+Ny/QKKqc3dAQe0va7J1x9buYRKPr96uon3iqp1DGiRSg+fLySZzqXhKnpufj0
a6Q8CspzPWdwd5IEElMey6Rc/roDcQIDAQABo4ICsTCCAq0wHQYDVR0OBBYEFHpZ
6K94nO1y38Ueb+np72YKhlZwMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC83RTIxMEREODVCMzYxMUYxODM4MTQ1MTdDRjFEMzhCMC5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQAmtsXAwQAmtsZAwQBmtse
MA0GCSqGSIb3DQEBCwUAA4IBAQCWNk/BbjKbt9gmLJ+6WTmPFgjHNi3tzda5dT46
5mWp1chWsA9Ct7FV5M8+d6tCM1xTEx4pudZgBW+R8ZmpEnKkr0QFETf6qbCMHxqs
tODMwBM645KbrpmxuenXz6979fRXNdcrM58CyY6uKLgc0WQvMpRn6FlEjDf8HvVm
y6+pLfz+tDaIds3Sj2/vKkQfE/EMuTiXHBNdViY9KG0g3BNvvlziitf7sZXHUlGz
gnwlJbgCnujkwaRaJlkJnUrJ6nmzlA1I2OTloyythU799eVswatXx/VQrQmJot3j
E5vw0H22Zf+zqBIJqgFhofTFL3+i3r+U8yD227K0itpRKI2W
-----END CERTIFICATE-----
Generated at Fri Jun 12 02:49:37 2026 by rpki-client