Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/99CA5E2A546211F1AB6CDAF8CE1D38B0.roa
File: 99CA5E2A546211F1AB6CDAF8CE1D38B0.roa (raw, json)
Hash identifier: TRc8BP3ODea+IjOF9R9LkD18Tzk+jsNYuyPE+CBufew=
Subject key identifier: 5D:A4:25:2B:9C:D7:37:D8:59:DB:BC:4D:E2:B9:7A:AD:86:50:4A:40
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01CCF6
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/99CA5E2A546211F1AB6CDAF8CE1D38B0.roa
Signing time: Wed 20 May 2026 15:43:09 +0000
ROA not before: Wed 20 May 2026 15:43:04 +0000
ROA not after: Fri 26 Jun 2026 15:43:04 +0000
asID: 138915
IP address blocks: 154.205.128.0/24 maxlen: 24
154.205.129.0/24 maxlen: 24
154.205.130.0/24 maxlen: 24
154.205.131.0/24 maxlen: 24
154.205.132.0/24 maxlen: 24
154.205.133.0/24 maxlen: 24
154.205.134.0/24 maxlen: 24
154.205.135.0/24 maxlen: 24
154.205.136.0/23 maxlen: 24
154.205.138.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 06 Jun 2026 06:56:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118006 (0x1ccf6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 20 15:43:04 2026 GMT
Not After : Jun 26 15:43:04 2026 GMT
Subject: CN=6a0dd68d-49bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:a2:6e:4a:02:ab:57:b0:9e:50:90:46:6e:cc:
d2:be:e9:09:dd:e3:cb:52:d8:f9:21:21:4d:fc:7a:
2a:f4:62:93:b0:b3:77:d7:e3:dd:2a:35:a8:93:86:
7e:c7:90:47:53:d3:37:1a:d0:22:6d:8c:96:a7:b4:
2c:4f:26:20:f1:3c:aa:4b:97:79:d0:d7:87:f8:36:
d0:1d:71:12:0c:be:42:e5:21:ed:d3:05:f8:ff:03:
94:8a:f2:ee:42:f5:8e:93:b0:8d:a0:01:06:00:77:
90:d5:42:03:86:97:5f:17:cd:86:48:19:25:f2:ae:
e8:34:0c:55:a7:8c:71:a9:78:49:42:76:38:75:dd:
b6:a5:10:8e:44:e4:f7:19:84:3a:4e:d6:ec:b9:08:
d9:43:a7:54:67:61:ca:76:da:23:1b:0e:7a:6f:ef:
a6:53:9e:f3:e9:f4:e5:a8:0c:7c:cc:71:fe:bd:3d:
65:f3:a4:33:b2:74:5d:77:8e:b1:08:04:42:67:5c:
a5:41:4a:35:fa:b3:80:65:ee:4c:6a:da:f8:02:78:
a9:09:42:46:bf:b3:11:6e:bd:81:2f:e1:39:f2:d5:
1e:fb:e5:2c:2d:45:ce:05:c0:bc:f2:1f:39:8c:de:
cb:79:22:fb:3d:b9:5f:1c:de:08:97:54:1c:f8:4d:
55:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:A4:25:2B:9C:D7:37:D8:59:DB:BC:4D:E2:B9:7A:AD:86:50:4A:40
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/99CA5E2A546211F1AB6CDAF8CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.128.0-154.205.138.255
Signature Algorithm: sha256WithRSAEncryption
38:58:58:c9:79:2f:a6:60:ab:61:5c:01:80:8b:67:fc:f9:8a:
35:b0:a7:67:89:2b:3b:03:ba:4a:e1:22:76:45:a7:14:e9:05:
42:0e:66:cf:3e:e9:57:af:90:52:27:f4:35:06:c0:9b:73:15:
f6:0b:08:0e:9b:f8:21:da:67:6a:16:41:12:de:a4:14:cf:9b:
67:82:54:1f:2d:22:22:6f:4d:38:da:27:88:c8:54:56:83:ca:
da:9f:67:16:0b:6f:d7:72:a4:93:fc:02:24:bd:1d:8b:41:73:
57:a1:e1:58:8c:d1:53:75:f7:2e:2d:52:69:6e:2f:89:4f:ad:
b4:37:fa:13:8e:32:65:55:5d:ca:a6:62:61:20:6d:2f:a7:36:
5a:5f:9a:f0:4f:c2:1d:1c:fc:18:34:9e:8a:3b:69:90:4e:6f:
20:3f:1d:0e:de:d3:12:62:6e:2c:45:47:fc:cd:ba:93:2a:0b:
0f:42:22:43:6f:b5:2e:dc:85:1c:3a:67:b5:ab:3f:ac:a4:81:
2e:a2:51:31:01:38:f1:74:5f:7e:28:4a:64:d3:f9:14:21:bc:
18:de:c4:75:60:45:7f:9f:23:f6:9f:d2:a9:63:54:35:47:33:
b5:d9:3b:8e:be:df:42:01:a8:cc:0d:29:93:70:4f:62:56:9e:
5e:c6:c9:66
-----BEGIN CERTIFICATE-----
MIIFjDCCBHSgAwIBAgIDAcz2MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjYwNTIwMTU0MzA0WhcNMjYwNjI2MTU0MzA0WjAYMRYw
FAYDVQQDEw02YTBkZDY4ZC00OWJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAw6JuSgKrV7CeUJBGbszSvukJ3ePLUtj5ISFN/Hoq9GKTsLN31+PdKjWo
k4Z+x5BHU9M3GtAibYyWp7QsTyYg8TyqS5d50NeH+DbQHXESDL5C5SHt0wX4/wOU
ivLuQvWOk7CNoAEGAHeQ1UIDhpdfF82GSBkl8q7oNAxVp4xxqXhJQnY4dd22pRCO
ROT3GYQ6TtbsuQjZQ6dUZ2HKdtojGw56b++mU57z6fTlqAx8zHH+vT1l86QzsnRd
d46xCARCZ1ylQUo1+rOAZe5Matr4AnipCUJGv7MRbr2BL+E58tUe++UsLUXOBcC8
8h85jN7LeSL7PblfHN4Il1Qc+E1VGwIDAQABo4ICrTCCAqkwHQYDVR0OBBYEFF2k
JSuc1zfYWdu8TeK5eq2GUEpAMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC85OUNBNUUyQTU0NjIxMUYxQUI2Q0RBRjhDRTFEMzhCMC5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOMAwDBAeazYADBACazYowDQYJ
KoZIhvcNAQELBQADggEBADhYWMl5L6Zgq2FcAYCLZ/z5ijWwp2eJKzsDukrhInZF
pxTpBUIOZs8+6VevkFIn9DUGwJtzFfYLCA6b+CHaZ2oWQRLepBTPm2eCVB8tIiJv
TTjaJ4jIVFaDytqfZxYLb9dypJP8AiS9HYtBc1eh4ViM0VN19y4tUmluL4lPrbQ3
+hOOMmVVXcqmYmEgbS+nNlpfmvBPwh0c/Bg0noo7aZBObyA/HQ7e0xJibixFR/zN
upMqCw9CIkNvtS7chRw6Z7WrP6ykgS6iUTEBOPF0X34oSmTT+RQhvBjexHVgRX+f
I/af0qljVDVHM7XZO46+30IBqMwNKZNwT2JWnl7GyWY=
-----END CERTIFICATE-----
Generated at Thu Jun 4 11:12:42 2026 by rpki-client