Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AC949202492011F1A445050DCF1D38B0.roa
File: AC949202492011F1A445050DCF1D38B0.roa (raw, json)
Hash identifier: BdujKcfZT/tq50LgYwFAZYQMIw2kuvvjXOzC2eDkOE8=
Subject key identifier: 3B:98:FA:A9:E7:D2:27:9C:1F:65:7B:FA:2E:9D:76:02:E8:CD:F9:77
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C981
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AC949202492011F1A445050DCF1D38B0.roa
Signing time: Wed 06 May 2026 07:53:31 +0000
ROA not before: Wed 06 May 2026 07:53:24 +0000
ROA not after: Wed 13 May 2026 07:53:24 +0000
asID: 9294
IP address blocks: 154.88.96.0/19 maxlen: 24
154.195.64.0/19 maxlen: 24
154.203.96.0/19 maxlen: 24
154.205.64.0/18 maxlen: 24
154.206.192.0/19 maxlen: 24
154.218.32.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 11 May 2026 00:07:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117121 (0x1c981)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 6 07:53:24 2026 GMT
Not After : May 13 07:53:24 2026 GMT
Subject: CN=69faf37b-90eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:18:85:f4:07:d9:77:ee:83:66:67:85:aa:ac:
1e:76:b6:ef:29:05:e5:8f:b8:77:d5:81:c2:a7:18:
b3:18:f5:2c:ca:9c:48:f3:8b:70:96:c4:c4:52:37:
61:a2:f7:bd:a7:ab:63:4d:30:5b:ea:96:31:08:e8:
c9:46:66:fd:64:3d:fb:da:11:a5:2e:db:9e:a0:ca:
80:c3:1a:c7:6a:b0:fe:51:66:1b:f6:6c:de:d6:31:
b1:27:ac:02:3f:4c:4c:46:7f:99:bc:d2:ee:4c:10:
8c:1c:ea:9d:31:4b:be:bc:98:89:c6:4c:fc:19:c7:
c2:14:f8:10:f6:b1:fa:7a:d4:8e:1c:83:04:82:07:
3e:3b:c9:a5:26:f7:55:46:98:74:14:02:4c:74:2f:
35:6a:c7:a6:dc:9b:bd:09:f4:8e:00:67:4f:6f:c6:
c4:26:cd:79:a8:9f:36:78:0d:05:10:2f:77:e7:a7:
d3:c7:92:1f:86:d4:f4:ef:27:9f:37:2d:86:cd:b8:
05:a5:9c:64:2d:e5:8b:7a:b6:3f:95:8d:0b:a7:ea:
8f:12:95:97:8e:86:80:66:b5:15:47:9f:71:06:67:
4d:a2:fa:52:e3:90:ed:be:c0:0a:35:01:f5:4c:28:
83:79:97:1b:af:fd:6b:6a:b3:f4:36:e5:04:c1:68:
17:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:98:FA:A9:E7:D2:27:9C:1F:65:7B:FA:2E:9D:76:02:E8:CD:F9:77
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AC949202492011F1A445050DCF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.88.96.0/19
154.195.64.0/19
154.203.96.0/19
154.205.64.0/18
154.206.192.0/19
154.218.32.0/19
Signature Algorithm: sha256WithRSAEncryption
88:ca:87:55:86:99:b9:6e:c1:f8:31:1f:ec:42:41:7b:26:2e:
2a:21:70:05:33:ea:38:1b:56:44:6b:10:4c:49:fc:18:30:c2:
e7:69:b4:cb:c0:c7:e6:52:b9:95:65:bf:ae:f3:aa:05:16:47:
a5:01:36:c3:7e:5d:4a:86:11:a9:cb:27:57:d9:1f:61:83:85:
94:f5:6c:68:e5:a0:7e:cf:23:11:90:a1:21:4a:17:c0:7f:bc:
8b:72:82:c6:85:65:52:6e:c5:28:6a:80:f5:76:63:85:6f:76:
7b:33:09:ee:85:a0:eb:67:66:87:be:9b:74:17:1e:65:f0:db:
7b:7e:ed:75:b9:25:57:bb:e9:23:63:cb:fa:b4:17:e2:8c:93:
19:9e:2c:d5:4f:a7:de:7b:3c:f8:d1:f6:af:14:39:e7:6b:a5:
d8:0e:e6:49:37:9a:9e:fa:9c:5a:c2:a9:a2:8d:77:a2:9f:17:
4f:a4:89:c7:80:31:7f:b2:ce:e4:ec:d3:3f:5f:91:ad:04:99:
88:21:b1:55:05:38:1c:f9:a5:31:01:67:b9:82:66:32:8b:34:
97:0f:75:a5:50:5c:cc:bd:a4:05:e1:7b:92:56:88:bd:7c:05:
72:bb:2e:ff:1a:50:0e:c7:52:ee:48:44:de:76:fb:0a:88:e0:
0d:fb:c5:04
-----BEGIN CERTIFICATE-----
MIIFojCCBIqgAwIBAgIDAcmBMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjYwNTA2MDc1MzI0WhcNMjYwNTEzMDc1MzI0WjAYMRYw
FAYDVQQDEw02OWZhZjM3Yi05MGViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAvRiF9AfZd+6DZmeFqqwedrbvKQXlj7h31YHCpxizGPUsypxI84twlsTE
Ujdhove9p6tjTTBb6pYxCOjJRmb9ZD372hGlLtueoMqAwxrHarD+UWYb9mze1jGx
J6wCP0xMRn+ZvNLuTBCMHOqdMUu+vJiJxkz8GcfCFPgQ9rH6etSOHIMEggc+O8ml
JvdVRph0FAJMdC81asem3Ju9CfSOAGdPb8bEJs15qJ82eA0FEC9356fTx5IfhtT0
7yefNy2GzbgFpZxkLeWLerY/lY0Lp+qPEpWXjoaAZrUVR59xBmdNovpS45DtvsAK
NQH1TCiDeZcbr/1rarP0NuUEwWgX8QIDAQABo4ICwzCCAr8wHQYDVR0OBBYEFDuY
+qnn0iecH2V7+i6ddgLozfl3MB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9BQzk0OTIwMjQ5MjAxMUYxQTQ0NTA1MERDRjFEMzhCMC5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMD0GCCsGAQUFBwEHAQH/BC4wLDAqBAIAATAkAwQFmlhgAwQFmsNAAwQFmstg
AwQGms1AAwQFms7AAwQFmtogMA0GCSqGSIb3DQEBCwUAA4IBAQCIyodVhpm5bsH4
MR/sQkF7Ji4qIXAFM+o4G1ZEaxBMSfwYMMLnabTLwMfmUrmVZb+u86oFFkelATbD
fl1KhhGpyydX2R9hg4WU9Wxo5aB+zyMRkKEhShfAf7yLcoLGhWVSbsUoaoD1dmOF
b3Z7MwnuhaDrZ2aHvpt0Fx5l8Nt7fu11uSVXu+kjY8v6tBfijJMZnizVT6feezz4
0favFDnna6XYDuZJN5qe+pxawqmijXeinxdPpInHgDF/ss7k7NM/X5GtBJmIIbFV
BTgc+aUxAWe5gmYyizSXD3WlUFzMvaQF4XuSVoi9fAVyuy7/GlAOx1LuSETedvsK
iOAN+8UE
-----END CERTIFICATE-----
Generated at Sat May 9 10:59:58 2026 by rpki-client