Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AD2967FC448D11F199AE67B6CE1D38B0.roa
File: AD2967FC448D11F199AE67B6CE1D38B0.roa (raw, json)
Hash identifier: +b/u18U8cpmmmDP+sDJtDNmBx2/GU7NXWlNivnnaBSQ=
Subject key identifier: 0B:BE:C0:A7:0F:CB:B8:E0:8A:C6:0E:B6:6F:02:C7:9C:E6:21:15:23
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C82D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AD2967FC448D11F199AE67B6CE1D38B0.roa
Signing time: Thu 30 Apr 2026 12:11:11 +0000
ROA not before: Thu 30 Apr 2026 12:11:07 +0000
ROA not after: Fri 05 Jun 2026 12:11:07 +0000
asID: 49505
IP address blocks: 154.209.208.0/24 maxlen: 24
154.209.209.0/24 maxlen: 24
154.209.210.0/24 maxlen: 24
154.209.211.0/24 maxlen: 24
154.209.212.0/24 maxlen: 24
154.209.213.0/24 maxlen: 24
154.209.214.0/24 maxlen: 24
154.209.215.0/24 maxlen: 24
154.209.216.0/24 maxlen: 24
154.209.217.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 15 May 2026 06:17:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116781 (0x1c82d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 30 12:11:07 2026 GMT
Not After : Jun 5 12:11:07 2026 GMT
Subject: CN=69f346df-ef3a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:24:58:6a:59:5e:4f:85:45:f8:36:5b:46:67:
c7:18:91:93:23:2d:f1:ce:b7:56:29:44:33:b7:56:
30:eb:2a:d1:38:f8:3f:99:bd:a4:83:3c:b5:a7:08:
43:a8:79:f9:d7:86:2e:e7:a8:c6:36:f5:45:0c:d7:
6f:51:78:33:b2:c9:13:39:c1:af:a2:fd:3f:03:59:
08:4d:c2:02:90:8d:cf:15:79:bf:01:2b:4d:22:4c:
39:94:16:93:4e:e6:31:ca:5a:da:d6:ab:82:f5:bd:
b6:e0:3f:9f:4b:41:6c:a0:c4:35:10:5e:8d:1a:e0:
58:07:3e:36:72:15:a6:88:00:55:53:f6:27:9e:c7:
ff:d8:fa:eb:61:34:14:b4:64:5e:c8:a1:f8:2a:f3:
27:ae:56:fe:68:8d:e9:87:fd:22:ee:e1:36:d3:6c:
4c:1d:a9:c4:03:b9:a2:a9:05:ff:7e:b1:e0:90:59:
c2:eb:1e:c9:4c:f9:54:90:db:23:ae:6f:51:92:b2:
85:b6:d2:62:5b:d0:d9:9e:36:fe:fa:e9:3a:8d:0d:
de:f8:b1:b9:19:9f:34:1d:58:08:13:46:a9:73:65:
be:11:5b:e0:6b:a0:73:49:c9:cb:cc:a3:5e:04:7a:
3d:a0:fd:af:a8:0c:f9:de:85:bb:c2:d1:20:67:6d:
4d:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:BE:C0:A7:0F:CB:B8:E0:8A:C6:0E:B6:6F:02:C7:9C:E6:21:15:23
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AD2967FC448D11F199AE67B6CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.209.208.0-154.209.217.255
Signature Algorithm: sha256WithRSAEncryption
72:f8:a6:9a:a8:05:51:d2:68:b5:b6:24:0e:67:00:2e:30:10:
04:72:ee:af:b5:46:1c:e1:b3:d1:96:c0:0d:3c:28:e4:a5:4a:
cc:6e:cf:73:39:98:1b:ee:43:f0:60:e9:a7:cc:f5:12:f0:ed:
96:da:6c:25:61:a0:dd:8c:7a:f0:db:61:68:c1:39:2a:9f:2b:
7c:6a:c6:09:51:ee:32:1d:9f:34:14:a6:a2:9b:03:25:40:10:
f1:b4:58:c7:be:10:fb:8f:cc:6b:cd:81:f6:3d:07:b7:ce:00:
01:56:9c:60:2a:2c:4b:0f:db:60:a0:92:9d:57:80:7a:99:57:
2a:92:36:82:ca:b0:a5:a2:9c:f3:4a:ad:03:3f:14:35:11:86:
bb:96:6d:fb:0f:49:76:85:0f:4a:04:9d:e8:4c:12:99:c4:1b:
e1:31:dc:9d:6b:f1:7d:53:16:5b:e3:c9:cf:fc:58:ff:87:32:
56:9e:64:cd:b1:9e:25:ae:af:5b:3c:5c:05:e5:c7:e0:f6:74:
3e:3d:b5:df:2b:3b:ad:9c:bf:49:40:72:86:1f:02:dd:72:5d:
0c:65:d1:f3:a6:2b:5e:f4:01:a1:e5:d0:ba:b9:c7:e7:50:fe:
72:55:9b:d4:75:1e:da:91:53:16:42:13:07:90:64:e8:1e:1c:
fd:7b:87:de
-----BEGIN CERTIFICATE-----
MIIFjDCCBHSgAwIBAgIDAcgtMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjYwNDMwMTIxMTA3WhcNMjYwNjA1MTIxMTA3WjAYMRYw
FAYDVQQDEw02OWYzNDZkZi1lZjNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA9SRYalleT4VF+DZbRmfHGJGTIy3xzrdWKUQzt1Yw6yrROPg/mb2kgzy1
pwhDqHn514Yu56jGNvVFDNdvUXgzsskTOcGvov0/A1kITcICkI3PFXm/AStNIkw5
lBaTTuYxylra1quC9b224D+fS0FsoMQ1EF6NGuBYBz42chWmiABVU/Ynnsf/2Prr
YTQUtGReyKH4KvMnrlb+aI3ph/0i7uE202xMHanEA7miqQX/frHgkFnC6x7JTPlU
kNsjrm9RkrKFttJiW9DZnjb++uk6jQ3e+LG5GZ80HVgIE0apc2W+EVvga6BzScnL
zKNeBHo9oP2vqAz53oW7wtEgZ21NTwIDAQABo4ICrTCCAqkwHQYDVR0OBBYEFAu+
wKcPy7jgisYOtm8Cx5zmIRUjMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9BRDI5NjdGQzQ0OEQxMUYxOTlBRTY3QjZDRTFEMzhCMC5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOMAwDBASa0dADBAGa0dgwDQYJ
KoZIhvcNAQELBQADggEBAHL4ppqoBVHSaLW2JA5nAC4wEARy7q+1Rhzhs9GWwA08
KOSlSsxuz3M5mBvuQ/Bg6afM9RLw7ZbabCVhoN2MevDbYWjBOSqfK3xqxglR7jId
nzQUpqKbAyVAEPG0WMe+EPuPzGvNgfY9B7fOAAFWnGAqLEsP22Cgkp1XgHqZVyqS
NoLKsKWinPNKrQM/FDURhruWbfsPSXaFD0oEnehMEpnEG+Ex3J1r8X1TFlvjyc/8
WP+HMlaeZM2xniWur1s8XAXlx+D2dD49td8rO62cv0lAcoYfAt1yXQxl0fOmK170
AaHl0Lq5x+dQ/nJVm9R1HtqRUxZCEweQZOgeHP17h94=
-----END CERTIFICATE-----
Generated at Wed May 13 16:49:17 2026 by rpki-client