Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/ABB57F621E0111F1AF613DBEDAE4EC9C.roa
File: ABB57F621E0111F1AF613DBEDAE4EC9C.roa (raw, json)
Hash identifier: Cp89gsiWI/4qBHkBmgbH0cvjXubfUYL5yT/z7gFJ5MY=
Subject key identifier: 67:26:3A:28:F3:73:8F:7E:5B:5B:6D:5E:1A:AF:96:8D:10:63:B8:31
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01BF06
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/ABB57F621E0111F1AF613DBEDAE4EC9C.roa
Signing time: Thu 12 Mar 2026 10:53:15 +0000
ROA not before: Thu 12 Mar 2026 10:53:11 +0000
ROA not after: Thu 16 Apr 2026 10:53:11 +0000
asID: 22773
IP address blocks: 154.82.2.0/24 maxlen: 24
154.90.141.0/24 maxlen: 24
154.90.144.0/24 maxlen: 24
154.90.145.0/24 maxlen: 24
154.90.146.0/24 maxlen: 24
154.90.147.0/24 maxlen: 24
154.90.148.0/24 maxlen: 24
154.90.149.0/24 maxlen: 24
154.90.150.0/24 maxlen: 24
154.90.151.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 26 Mar 2026 08:06:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114438 (0x1bf06)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 12 10:53:11 2026 GMT
Not After : Apr 16 10:53:11 2026 GMT
Subject: CN=69b29b1b-ba97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:ff:e1:c0:a5:5c:22:7c:2f:c8:0c:ed:ae:1b:
42:c6:78:3a:09:3b:22:04:bc:19:d5:39:87:0c:32:
49:d0:52:1e:f8:ae:67:50:07:fd:c5:5a:f8:99:28:
33:df:6d:64:c8:ec:ce:d4:74:9e:77:e3:34:75:35:
b9:90:6c:86:08:c0:b9:46:6f:c9:86:0c:c0:10:ba:
29:58:9d:2b:c0:4f:e8:12:6f:f9:80:78:f1:22:f7:
0a:22:a8:d8:b1:2d:e9:88:2a:99:59:b5:56:83:42:
5f:fe:08:a3:af:b4:b3:49:2a:69:35:24:44:61:cc:
8a:af:82:00:95:65:e8:b3:da:91:8b:97:32:65:db:
3e:e0:56:8b:a7:a4:79:dc:15:d9:f3:af:c5:98:1b:
85:2a:b6:6b:f1:ce:1f:68:91:83:e9:8c:28:ca:09:
16:d5:09:19:14:4a:a8:50:48:93:fe:f7:f3:ec:a2:
a3:53:5f:b5:71:1f:5c:3e:b0:58:c0:bc:a3:fd:fc:
f9:6e:29:91:00:4a:84:0c:41:a2:bd:00:6a:8d:92:
c4:0b:79:47:71:e5:a7:6f:e3:60:b6:1f:b5:c3:28:
56:f6:e3:b3:c5:74:f6:fe:2c:4c:8d:d3:fe:36:9a:
73:0a:df:a6:84:33:ee:54:21:a7:aa:95:c3:ef:1c:
c4:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:26:3A:28:F3:73:8F:7E:5B:5B:6D:5E:1A:AF:96:8D:10:63:B8:31
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/ABB57F621E0111F1AF613DBEDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.82.2.0/24
154.90.141.0/24
154.90.144.0/21
Signature Algorithm: sha256WithRSAEncryption
d4:26:14:20:1d:f9:66:50:e0:47:18:e0:05:c4:56:46:07:ba:
94:76:ec:8b:32:89:67:1a:72:f6:c6:be:1a:26:b6:73:2c:74:
f9:6d:1c:18:28:9e:a1:82:5a:ba:44:10:ad:66:38:71:3c:70:
d9:1e:ae:4e:c1:ad:a7:3d:2a:72:7a:ca:cd:7e:ff:3e:ff:15:
fa:f2:18:a3:1f:e7:de:3d:1e:bf:17:19:6c:40:58:f1:69:dd:
ab:3a:a8:e4:fd:cf:a4:37:98:61:4a:f5:41:2b:89:9b:af:ec:
4a:80:2a:7e:ba:30:97:bd:07:c6:63:80:83:aa:12:3a:c7:22:
93:47:2a:50:40:95:94:7c:39:6d:45:47:f2:4e:4f:07:d7:11:
55:8c:e1:33:86:df:07:9b:b4:32:73:a1:5d:dd:de:c0:1b:c1:
11:34:8d:ea:ea:6d:6a:bf:1d:94:a3:b6:95:a8:fc:f3:ed:a4:
40:cf:f4:02:62:75:0b:4b:6c:0f:17:26:6a:c7:a7:63:e0:f9:
3c:f6:0f:87:a7:fd:6b:2f:17:83:1a:34:29:b6:bf:bc:26:9f:
8f:1b:e3:07:37:07:00:c2:bd:6b:76:45:1b:23:a8:8f:b9:0b:
f0:d0:94:68:3c:31:6b:f5:a2:d2:04:1e:77:20:f8:47:9a:29:
f2:4b:50:a5
-----BEGIN CERTIFICATE-----
MIIFkDCCBHigAwIBAgIDAb8GMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjYwMzEyMTA1MzExWhcNMjYwNDE2MTA1MzExWjAYMRYw
FAYDVQQDEw02OWIyOWIxYi1iYTk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAqP/hwKVcInwvyAztrhtCxng6CTsiBLwZ1TmHDDJJ0FIe+K5nUAf9xVr4
mSgz321kyOzO1HSed+M0dTW5kGyGCMC5Rm/JhgzAELopWJ0rwE/oEm/5gHjxIvcK
IqjYsS3piCqZWbVWg0Jf/gijr7SzSSppNSREYcyKr4IAlWXos9qRi5cyZds+4FaL
p6R53BXZ86/FmBuFKrZr8c4faJGD6YwoygkW1QkZFEqoUEiT/vfz7KKjU1+1cR9c
PrBYwLyj/fz5bimRAEqEDEGivQBqjZLEC3lHceWnb+Ngth+1wyhW9uOzxXT2/ixM
jdP+NppzCt+mhDPuVCGnqpXD7xzEowIDAQABo4ICsTCCAq0wHQYDVR0OBBYEFGcm
Oijzc49+W1ttXhqvlo0QY7gxMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9BQkI1N0Y2MjFFMDExMUYxQUY2MTNEQkVEQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQAmlICAwQAmlqNAwQDmlqQ
MA0GCSqGSIb3DQEBCwUAA4IBAQDUJhQgHflmUOBHGOAFxFZGB7qUduyLMolnGnL2
xr4aJrZzLHT5bRwYKJ6hglq6RBCtZjhxPHDZHq5Owa2nPSpyesrNfv8+/xX68hij
H+fePR6/FxlsQFjxad2rOqjk/c+kN5hhSvVBK4mbr+xKgCp+ujCXvQfGY4CDqhI6
xyKTRypQQJWUfDltRUfyTk8H1xFVjOEzht8Hm7Qyc6Fd3d7AG8ERNI3q6m1qvx2U
o7aVqPzz7aRAz/QCYnULS2wPFyZqx6dj4Pk89g+Hp/1rLxeDGjQptr+8Jp+PG+MH
NwcAwr1rdkUbI6iPuQvw0JRoPDFr9aLSBB53IPhHminyS1Cl
-----END CERTIFICATE-----
Generated at Tue Mar 24 16:14:18 2026 by rpki-client