Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/87A73738554611F1BB1969EACE1D38B0.roa
File: 87A73738554611F1BB1969EACE1D38B0.roa (raw, json)
Hash identifier: Z/UYKzIeaSwIWiNjyBLTy41/iqvb+K4xAAEWAzo4N5E=
Subject key identifier: C5:AD:52:3C:9C:B4:90:4E:4A:17:E9:3E:D9:8E:76:5C:51:A5:97:72
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01CDB5
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/87A73738554611F1BB1969EACE1D38B0.roa
Signing time: Thu 21 May 2026 18:54:44 +0000
ROA not before: Thu 21 May 2026 18:54:39 +0000
ROA not after: Fri 26 Jun 2026 18:54:39 +0000
asID: 63139
IP address blocks: 154.93.77.0/24 maxlen: 24
154.93.78.0/24 maxlen: 24
154.93.79.0/24 maxlen: 24
154.93.80.0/24 maxlen: 24
154.93.81.0/24 maxlen: 24
154.93.82.0/24 maxlen: 24
154.93.83.0/24 maxlen: 24
154.93.95.0/24 maxlen: 24
154.93.123.0/24 maxlen: 24
154.94.111.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 04 Jun 2026 00:07:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118197 (0x1cdb5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 21 18:54:39 2026 GMT
Not After : Jun 26 18:54:39 2026 GMT
Subject: CN=6a0f54f4-07ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:c7:8e:e8:0b:7b:43:5c:1d:24:e4:e8:88:84:
ab:85:e9:4a:97:62:66:00:0f:34:a7:28:c2:54:70:
10:9d:81:a1:68:4e:29:67:6c:a4:af:20:f9:f9:c5:
74:19:16:0f:f6:eb:0b:9e:62:2b:77:93:ba:89:11:
17:cf:20:1a:95:c6:4e:6e:98:a0:39:f9:5e:1b:27:
40:e1:e4:f6:dc:a6:9e:8d:94:b1:89:e1:3f:2b:62:
f5:19:f2:11:9b:1e:8f:5d:5c:53:57:e8:d8:8f:12:
dd:99:91:fa:cb:2b:79:1e:47:bc:cd:91:85:40:88:
a1:05:af:fa:b9:20:27:c2:41:40:8a:fe:90:46:2b:
06:93:f1:26:a2:4c:82:91:96:d7:3d:33:5e:54:7e:
f8:9b:d5:b7:8c:46:a1:73:4c:d6:f5:42:b5:37:7d:
02:82:2a:82:11:59:0f:f4:34:8a:a9:41:57:a6:f6:
ae:9b:8d:ff:5f:32:72:d3:7a:72:85:d5:0c:94:0c:
87:32:c8:ea:c5:31:8f:e4:bc:94:cf:f1:2b:50:36:
32:3a:85:5a:79:b2:19:e4:f7:45:d8:88:7a:f9:c0:
32:61:a1:c2:e1:b0:d4:e2:e6:3e:96:cd:8d:5b:68:
c6:b4:66:35:62:b7:24:12:37:00:b4:c4:0e:5f:23:
2f:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:AD:52:3C:9C:B4:90:4E:4A:17:E9:3E:D9:8E:76:5C:51:A5:97:72
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/87A73738554611F1BB1969EACE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.93.77.0-154.93.83.255
154.93.95.0/24
154.93.123.0/24
154.94.111.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:08:27:45:be:4c:d6:f5:3f:6c:76:57:81:df:0f:b5:b0:fb:
e7:e4:db:ef:d7:50:4b:ba:63:86:a0:98:be:e5:9b:26:ed:d1:
bd:ef:43:b5:de:b7:f1:5e:23:ee:18:f0:04:dc:b3:68:63:4f:
5a:57:a7:5d:9a:90:63:56:d5:d5:fe:a2:1d:b6:55:53:c5:fe:
43:7f:eb:17:d8:3f:bd:ce:d9:77:6e:eb:65:ab:c1:99:4e:d5:
71:58:67:b3:fd:50:2e:04:bb:f8:a2:26:b6:6f:4d:11:08:e4:
1a:08:71:13:c3:d2:41:12:ef:74:e3:fa:55:0a:59:4b:2b:73:
05:c5:39:cd:46:db:58:bb:4e:71:06:ff:9e:84:b7:4d:8b:87:
46:96:33:4c:37:04:4d:1d:a8:5b:9f:a5:53:de:aa:2d:19:58:
db:c9:a3:74:e1:d3:90:0e:ee:91:f3:25:22:dc:f4:6b:71:23:
01:06:c7:22:1d:03:2d:6e:10:49:9e:8d:6a:13:8c:e7:87:c9:
d5:b7:94:aa:bc:b3:01:37:44:06:27:03:08:34:2d:e2:e8:d8:
d1:75:80:0a:25:0b:7d:f1:ca:fa:17:52:71:f0:29:3b:c1:54:
06:b6:11:ef:57:b3:2e:ba:a6:b5:de:ee:0c:14:b8:2c:d9:dc:
92:91:bc:c2
-----BEGIN CERTIFICATE-----
MIIFnjCCBIagAwIBAgIDAc21MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjYwNTIxMTg1NDM5WhcNMjYwNjI2MTg1NDM5WjAYMRYw
FAYDVQQDEw02YTBmNTRmNC0wN2VlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEArMeO6At7Q1wdJOToiISrhelKl2JmAA80pyjCVHAQnYGhaE4pZ2ykryD5
+cV0GRYP9usLnmIrd5O6iREXzyAalcZObpigOfleGydA4eT23KaejZSxieE/K2L1
GfIRmx6PXVxTV+jYjxLdmZH6yyt5Hke8zZGFQIihBa/6uSAnwkFAiv6QRisGk/Em
okyCkZbXPTNeVH74m9W3jEahc0zW9UK1N30CgiqCEVkP9DSKqUFXpvaum43/XzJy
03pyhdUMlAyHMsjqxTGP5LyUz/ErUDYyOoVaebIZ5PdF2Ih6+cAyYaHC4bDU4uY+
ls2NW2jGtGY1YrckEjcAtMQOXyMvkQIDAQABo4ICvzCCArswHQYDVR0OBBYEFMWt
UjyctJBOShfpPtmOdlxRpZdyMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC84N0E3MzczODU1NDYxMUYxQkIxOTY5RUFDRTFEMzhCMC5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMDkGCCsGAQUFBwEHAQH/BCowKDAmBAIAATAgMAwDBACaXU0DBAKaXVADBACa
XV8DBACaXXsDBACaXm8wDQYJKoZIhvcNAQELBQADggEBAGsIJ0W+TNb1P2x2V4Hf
D7Ww++fk2+/XUEu6Y4agmL7lmybt0b3vQ7Xet/FeI+4Y8ATcs2hjT1pXp12akGNW
1dX+oh22VVPF/kN/6xfYP73O2Xdu62WrwZlO1XFYZ7P9UC4Eu/iiJrZvTREI5BoI
cRPD0kES73Tj+lUKWUsrcwXFOc1G21i7TnEG/56Et02Lh0aWM0w3BE0dqFufpVPe
qi0ZWNvJo3Th05AO7pHzJSLc9GtxIwEGxyIdAy1uEEmejWoTjOeHydW3lKq8swE3
RAYnAwg0LeLo2NF1gAolC33xyvoXUnHwKTvBVAa2Ee9Xsy66prXe7gwUuCzZ3JKR
vMI=
-----END CERTIFICATE-----
Generated at Tue Jun 2 21:30:55 2026 by rpki-client