Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A11B4FFA6EEC11F1A46123ABCE1D38B0.roa
File: A11B4FFA6EEC11F1A46123ABCE1D38B0.roa (raw, json)
Hash identifier: 7zpVxBbbf8Ow1AfW+PC4HWQ7Px11+8eT8dF4kGtmh28=
Subject key identifier: 49:6B:DE:36:0B:EF:3F:D2:5E:7F:EF:F4:AB:F2:C9:3F:0A:14:AD:33
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01D488
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A11B4FFA6EEC11F1A46123ABCE1D38B0.roa
Signing time: Tue 23 Jun 2026 10:16:42 +0000
ROA not before: Tue 23 Jun 2026 10:16:37 +0000
ROA not after: Sat 08 Aug 2026 10:16:37 +0000
asID: 395793
IP address blocks: 154.83.9.0/24 maxlen: 24
154.83.10.0/24 maxlen: 24
154.83.11.0/24 maxlen: 24
154.83.24.0/24 maxlen: 24
154.83.104.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 25 Jun 2026 14:14:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119944 (0x1d488)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 23 10:16:37 2026 GMT
Not After : Aug 8 10:16:37 2026 GMT
Subject: CN=6a3a5d0a-51ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:51:ca:9f:61:46:4c:c7:0f:3f:0d:18:d8:ce:
7b:a5:88:47:03:9b:1e:5a:80:7b:19:e4:28:bb:53:
4d:aa:de:d6:a0:c2:f2:db:0e:53:2c:3d:5a:02:5b:
4c:c5:ba:99:f6:d5:63:2b:04:af:5c:49:cc:7a:ac:
3b:0d:75:98:70:ab:65:76:54:c4:84:c1:a8:85:7a:
1d:7f:cb:ce:f8:9b:04:31:60:41:f6:3b:19:ab:15:
33:cd:6a:70:20:23:62:34:9c:e4:97:13:e5:af:c8:
14:ab:1d:df:4b:9f:df:13:c2:03:a4:9e:99:78:66:
27:f4:cb:5c:43:47:63:2f:ad:e9:5b:2e:63:0b:ea:
75:8f:0d:89:a3:56:61:84:b8:fd:56:f3:00:d2:36:
ee:76:23:d7:96:63:91:a0:e8:18:c6:69:5f:21:32:
4f:dc:1a:b4:61:e9:5e:fa:4d:08:7d:ff:46:d4:12:
84:8c:ce:9a:ea:2d:0f:ca:47:44:70:1d:d4:f5:f6:
f3:c0:39:25:25:26:de:ef:ef:7d:9b:f2:aa:34:2b:
47:e1:74:20:98:71:68:e1:85:5a:ef:54:b5:3e:d3:
b0:39:f3:33:ad:22:32:96:ce:90:28:57:19:d5:1b:
e2:8f:74:cf:c8:94:f4:59:14:d0:a2:cf:41:f3:f4:
6a:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:6B:DE:36:0B:EF:3F:D2:5E:7F:EF:F4:AB:F2:C9:3F:0A:14:AD:33
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A11B4FFA6EEC11F1A46123ABCE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.83.9.0-154.83.11.255
154.83.24.0/24
154.83.104.0/21
Signature Algorithm: sha256WithRSAEncryption
57:74:60:51:7f:93:6a:e7:0a:aa:f9:f3:df:5f:11:1f:3a:fd:
ef:c8:71:5f:58:53:21:e4:03:fa:a9:a7:44:4a:cd:81:dd:8c:
ca:fa:98:88:36:2d:9e:00:f0:1f:58:6c:c5:46:bc:70:05:5c:
ea:cb:ff:be:a8:cd:a2:19:ce:82:17:51:ef:a6:53:8a:66:4c:
39:60:4a:56:f3:7b:d7:f9:45:23:24:b1:b2:ef:a5:62:33:98:
85:15:20:84:dd:c9:9a:e9:e3:e4:93:38:7e:87:11:b9:fc:0a:
70:84:98:e3:73:d7:37:b4:9f:23:e1:9b:64:bf:81:39:1d:d0:
75:c6:67:22:19:80:79:81:89:1e:f5:d3:0c:8e:7c:d0:60:63:
fc:93:38:fa:c9:e2:11:2a:a5:62:37:50:9e:39:e0:f1:5b:2f:
25:80:d2:46:0c:58:fb:d6:b1:1d:f2:4d:29:3d:eb:1a:79:ae:
ef:4f:3b:6f:c2:d7:9c:86:50:83:36:07:47:72:76:27:4d:9a:
5c:97:5f:97:08:55:b4:e9:4b:a2:d7:31:fc:d3:db:27:c6:a1:
a4:df:9d:51:00:c7:06:35:ee:e0:fd:0b:08:d0:bc:15:06:e6:
e7:b4:7f:5f:0f:9a:0f:bd:d5:b5:77:f8:f3:93:69:26:f6:40:
c0:05:96:b4
-----BEGIN CERTIFICATE-----
MIIFmDCCBICgAwIBAgIDAdSIMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjYwNjIzMTAxNjM3WhcNMjYwODA4MTAxNjM3WjAYMRYw
FAYDVQQDEw02YTNhNWQwYS01MWNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAwlHKn2FGTMcPPw0Y2M57pYhHA5seWoB7GeQou1NNqt7WoMLy2w5TLD1a
AltMxbqZ9tVjKwSvXEnMeqw7DXWYcKtldlTEhMGohXodf8vO+JsEMWBB9jsZqxUz
zWpwICNiNJzklxPlr8gUqx3fS5/fE8IDpJ6ZeGYn9MtcQ0djL63pWy5jC+p1jw2J
o1ZhhLj9VvMA0jbudiPXlmORoOgYxmlfITJP3Bq0Yele+k0Iff9G1BKEjM6a6i0P
ykdEcB3U9fbzwDklJSbe7+99m/KqNCtH4XQgmHFo4YVa71S1PtOwOfMzrSIyls6Q
KFcZ1Rvij3TPyJT0WRTQos9B8/RqOwIDAQABo4ICuTCCArUwHQYDVR0OBBYEFElr
3jYL7z/SXn/v9KvyyT8KFK0zMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9BMTFCNEZGQTZFRUMxMUYxQTQ2MTIzQUJDRTFEMzhCMC5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMDMGCCsGAQUFBwEHAQH/BCQwIjAgBAIAATAaMAwDBACaUwkDBAKaUwgDBACa
UxgDBAOaU2gwDQYJKoZIhvcNAQELBQADggEBAFd0YFF/k2rnCqr5899fER86/e/I
cV9YUyHkA/qpp0RKzYHdjMr6mIg2LZ4A8B9YbMVGvHAFXOrL/76ozaIZzoIXUe+m
U4pmTDlgSlbze9f5RSMksbLvpWIzmIUVIITdyZrp4+STOH6HEbn8CnCEmONz1ze0
nyPhm2S/gTkd0HXGZyIZgHmBiR710wyOfNBgY/yTOPrJ4hEqpWI3UJ454PFbLyWA
0kYMWPvWsR3yTSk96xp5ru9PO2/C15yGUIM2B0dydidNmlyXX5cIVbTpS6LXMfzT
2yfGoaTfnVEAxwY17uD9CwjQvBUG5ue0f18Pmg+91bV3+POTaSb2QMAFlrQ=
-----END CERTIFICATE-----
Generated at Tue Jun 23 21:53:46 2026 by rpki-client