Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/99BAA67E6CD611F1AE6878A4CE1D38B0.roa
File: 99BAA67E6CD611F1AE6878A4CE1D38B0.roa (raw, json)
Hash identifier: YzV0nkZ9ZkhNoesnGWLqb1E+gih/1NIlxETl08fMVeo=
Subject key identifier: 7D:AB:12:B4:5B:B2:4F:10:99:AA:B7:CB:DB:81:A0:12:A3:E5:AF:B9
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01D43F
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/99BAA67E6CD611F1AE6878A4CE1D38B0.roa
Signing time: Sat 20 Jun 2026 18:33:59 +0000
ROA not before: Sat 20 Jun 2026 18:33:52 +0000
ROA not after: Mon 27 Jul 2026 18:33:52 +0000
asID: 154177
IP address blocks: 154.205.128.0/24 maxlen: 24
154.205.129.0/24 maxlen: 24
154.205.138.0/24 maxlen: 24
154.205.140.0/24 maxlen: 24
154.205.141.0/24 maxlen: 24
154.205.142.0/23 maxlen: 24
154.205.145.0/24 maxlen: 24
154.205.148.0/24 maxlen: 24
154.205.151.0/24 maxlen: 24
154.205.152.0/24 maxlen: 24
154.205.153.0/24 maxlen: 24
154.205.154.0/24 maxlen: 24
154.205.155.0/24 maxlen: 24
154.205.156.0/24 maxlen: 24
154.205.157.0/24 maxlen: 24
154.205.158.0/24 maxlen: 24
154.205.159.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 25 Jun 2026 14:14:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119871 (0x1d43f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 20 18:33:52 2026 GMT
Not After : Jul 27 18:33:52 2026 GMT
Subject: CN=6a36dd16-b6eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:8b:5c:20:18:93:ee:8e:ae:f5:c5:7e:57:a6:
88:40:68:96:65:d5:61:b1:25:18:ef:7c:e0:ed:b8:
10:ec:f4:e9:1d:fe:15:4f:3b:05:9a:a7:1a:fe:6f:
b4:80:35:a9:c9:88:df:4a:d9:46:24:35:79:5f:28:
cb:90:ec:db:53:8c:29:96:98:7b:5c:58:54:6f:81:
f8:11:72:4e:fc:c9:49:55:90:4d:b3:ff:8f:0f:e7:
e2:cd:a1:92:35:1d:4f:7e:07:a5:2f:7f:62:96:84:
6c:c6:d6:d7:11:13:89:8a:ea:45:d3:1a:9f:a5:62:
91:fb:a7:f3:54:46:4d:43:ae:96:5d:c3:b5:01:a4:
9e:38:80:f8:1b:18:81:94:d5:b6:80:3d:45:ee:67:
2d:a3:97:e0:c3:62:da:5b:c9:4f:63:44:3c:9c:47:
cc:28:91:5d:bc:fd:a5:7a:c2:49:0b:85:1c:a8:63:
ef:8a:42:e7:2b:cd:9b:3b:36:57:17:b2:6b:19:ac:
fe:aa:7c:02:e6:97:64:99:f6:b5:a5:ac:01:64:c0:
86:22:92:d8:1a:b2:22:39:d6:d8:f9:2f:7a:87:74:
3f:59:ad:4a:77:e1:af:7a:42:f9:89:22:24:8d:24:
5a:da:15:47:9c:23:d7:24:eb:31:0f:dd:7d:35:5a:
ff:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:AB:12:B4:5B:B2:4F:10:99:AA:B7:CB:DB:81:A0:12:A3:E5:AF:B9
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/99BAA67E6CD611F1AE6878A4CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.128.0/23
154.205.138.0/24
154.205.140.0/22
154.205.145.0/24
154.205.148.0/24
154.205.151.0-154.205.159.255
Signature Algorithm: sha256WithRSAEncryption
a9:39:ce:39:44:df:42:d0:47:13:24:c5:50:41:bc:a6:93:31:
2e:b8:ee:e2:8d:ad:51:dc:6a:f5:a5:29:1c:03:d6:af:3d:36:
d8:5d:fa:3b:32:5d:dc:b3:7d:fc:4d:8d:ee:d9:ee:b0:c3:6d:
99:0c:95:67:aa:1f:48:bf:0c:28:ce:a5:f2:ed:51:7f:0f:8a:
c8:20:71:e5:49:e9:45:d4:7b:01:a5:a7:38:a5:e6:f7:0f:65:
c2:4d:56:01:89:d4:62:d0:23:37:70:10:bc:15:30:75:46:70:
b8:d7:c1:ac:eb:f8:c6:5d:28:17:6a:e8:8c:be:24:e6:46:d9:
03:d8:f8:30:7e:7a:12:1b:cb:2d:59:fc:d2:3d:eb:5c:62:28:
e0:82:b1:5d:f7:b0:9b:a5:ee:bd:3d:ce:d7:f9:cb:f0:f0:31:
f6:b1:85:dc:1d:11:63:fa:25:b9:1f:0b:3b:cf:8d:1c:00:a4:
26:c7:3e:7c:7c:09:c9:d5:c2:54:32:70:03:13:29:1f:e2:b5:
52:bf:a2:12:84:6a:70:ae:4a:6f:77:76:ed:72:c7:31:9b:01:
7b:7e:aa:00:9c:52:a5:b9:dc:81:42:7f:6b:a5:a0:f7:31:08:
fa:d4:be:d9:f7:d8:b4:c6:de:c1:57:dd:10:cb:26:e2:ec:42:
00:d8:ca:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 23 21:53:32 2026 by rpki-client