Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B709892A528211F1A803DF1BCF1D38B0.roa
File: B709892A528211F1A803DF1BCF1D38B0.roa (raw, json)
Hash identifier: SHwIINaesMazSeEUjWvfL/Jb/k996UiYPTMmE1uBFxI=
Subject key identifier: E7:1F:EF:C7:BA:D4:2E:CA:99:1E:9E:E1:B5:8C:B6:7D:B6:B5:0C:36
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01CC45
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B709892A528211F1A803DF1BCF1D38B0.roa
Signing time: Mon 18 May 2026 06:28:00 +0000
ROA not before: Mon 18 May 2026 06:27:55 +0000
ROA not after: Sat 08 Aug 2026 06:27:55 +0000
asID: 150706
IP address blocks: 154.223.168.0/24 maxlen: 24
154.223.169.0/24 maxlen: 24
154.223.170.0/24 maxlen: 24
154.223.171.0/24 maxlen: 24
154.223.176.0/24 maxlen: 24
154.223.177.0/24 maxlen: 24
154.223.178.0/24 maxlen: 24
154.223.179.0/24 maxlen: 24
154.223.180.0/24 maxlen: 24
154.223.181.0/24 maxlen: 24
154.223.182.0/24 maxlen: 24
154.223.183.0/24 maxlen: 24
154.223.188.0/24 maxlen: 24
154.223.189.0/24 maxlen: 24
154.223.190.0/24 maxlen: 24
154.223.191.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 06 Jun 2026 08:36:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117829 (0x1cc45)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 18 06:27:55 2026 GMT
Not After : Aug 8 06:27:55 2026 GMT
Subject: CN=6a0ab170-fe08
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:dd:ef:ee:1f:70:b6:c5:a3:7b:c8:84:3a:94:
06:80:97:c9:50:b5:41:d2:c7:07:de:11:97:34:4e:
c7:b1:6a:78:77:8a:63:aa:13:72:34:1f:f7:f7:1e:
b1:49:cc:3c:28:97:cb:ce:bd:61:00:7d:96:19:26:
b8:88:fd:c8:6f:6e:e8:e5:4e:23:d1:54:ae:61:5a:
98:3e:38:5d:58:02:fa:8e:48:56:85:f2:52:fc:e2:
d2:92:e0:e6:1f:7d:fc:e4:d6:47:97:87:b5:bb:c5:
17:c2:36:c1:c1:8b:23:96:46:59:0a:09:38:e4:51:
07:d6:f1:61:13:a5:9c:b6:bf:30:81:f6:38:89:bd:
d8:f1:06:59:b7:64:ec:e4:26:2c:1e:19:f9:ad:af:
7f:75:89:78:a6:f5:3b:08:c6:50:e6:0b:f5:4b:a4:
f0:f8:c7:7e:24:08:ef:95:c3:ff:e3:de:66:95:24:
07:09:c6:7d:b9:6a:d8:46:3d:5c:0e:69:e5:e0:4a:
83:07:b6:f1:4a:1a:f5:7e:bd:11:72:82:05:af:b2:
83:10:e7:c2:65:4b:a3:5e:fd:57:68:53:b8:d1:64:
c0:a7:e0:ec:4d:7c:eb:51:7d:7c:d6:c1:32:9b:e4:
9f:4b:57:42:5c:b7:55:1e:58:73:65:7d:e6:7a:a9:
5a:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:1F:EF:C7:BA:D4:2E:CA:99:1E:9E:E1:B5:8C:B6:7D:B6:B5:0C:36
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B709892A528211F1A803DF1BCF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.223.168.0/22
154.223.176.0/21
154.223.188.0/22
Signature Algorithm: sha256WithRSAEncryption
5b:74:d9:a4:6f:da:60:94:f5:4b:aa:13:9b:d9:d9:3c:76:9a:
14:f1:b7:a3:09:54:3c:32:75:b4:a3:08:44:e6:f9:0c:d8:a2:
ab:d8:1f:8d:ea:ee:b6:f1:83:52:3b:6f:a4:94:6c:38:dc:24:
50:27:8f:59:2c:f4:90:9c:c6:b1:4b:63:9d:c3:dd:4c:a5:05:
1d:c3:a4:e8:e5:8d:dc:b3:83:bf:a2:4f:a6:e0:c1:42:fd:76:
64:94:51:2c:cc:92:3d:ba:7a:61:18:80:73:73:2b:b9:75:89:
fb:a4:11:74:d2:a2:44:09:14:2e:bc:40:27:1d:cc:61:b7:83:
04:a9:ca:ec:fe:11:79:b4:0b:d4:e4:34:cd:c5:e4:ec:3d:44:
54:d2:10:96:1b:c0:ad:75:e8:9c:c6:9b:36:36:c5:87:dc:b3:
fb:91:dc:f7:9b:14:32:8b:fb:f5:e4:76:ce:ef:1a:26:a3:14:
8a:e3:d1:c4:af:98:cc:10:66:0c:44:45:db:61:1e:3c:eb:dd:
e6:80:85:1d:f3:93:d9:9c:bc:27:64:3e:f4:6b:03:55:42:64:
9e:28:d2:26:d7:50:4c:41:97:9e:0d:b9:33:a1:ac:0e:4a:04:
5b:2c:8b:3f:5a:01:a6:bb:64:8d:d3:51:4e:e3:61:8b:6c:99:
98:29:53:09
-----BEGIN CERTIFICATE-----
MIIFkDCCBHigAwIBAgIDAcxFMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjYwNTE4MDYyNzU1WhcNMjYwODA4MDYyNzU1WjAYMRYw
FAYDVQQDEw02YTBhYjE3MC1mZTA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAvd3v7h9wtsWje8iEOpQGgJfJULVB0scH3hGXNE7HsWp4d4pjqhNyNB/3
9x6xScw8KJfLzr1hAH2WGSa4iP3Ib27o5U4j0VSuYVqYPjhdWAL6jkhWhfJS/OLS
kuDmH3385NZHl4e1u8UXwjbBwYsjlkZZCgk45FEH1vFhE6Wctr8wgfY4ib3Y8QZZ
t2Ts5CYsHhn5ra9/dYl4pvU7CMZQ5gv1S6Tw+Md+JAjvlcP/495mlSQHCcZ9uWrY
Rj1cDmnl4EqDB7bxShr1fr0RcoIFr7KDEOfCZUujXv1XaFO40WTAp+DsTXzrUX18
1sEym+SfS1dCXLdVHlhzZX3meqlaewIDAQABo4ICsTCCAq0wHQYDVR0OBBYEFOcf
78e61C7KmR6e4bWMtn22tQw2MB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9CNzA5ODkyQTUyODIxMUYxQTgwM0RGMUJDRjFEMzhCMC5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQCmt+oAwQDmt+wAwQCmt+8
MA0GCSqGSIb3DQEBCwUAA4IBAQBbdNmkb9pglPVLqhOb2dk8dpoU8bejCVQ8MnW0
owhE5vkM2KKr2B+N6u628YNSO2+klGw43CRQJ49ZLPSQnMaxS2Odw91MpQUdw6To
5Y3cs4O/ok+m4MFC/XZklFEszJI9unphGIBzcyu5dYn7pBF00qJECRQuvEAnHcxh
t4MEqcrs/hF5tAvU5DTNxeTsPURU0hCWG8Ctdeicxps2NsWH3LP7kdz3mxQyi/v1
5HbO7xomoxSK49HEr5jMEGYMREXbYR48693mgIUd85PZnLwnZD70awNVQmSeKNIm
11BMQZeeDbkzoawOSgRbLIs/WgGmu2SN01FO42GLbJmYKVMJ
-----END CERTIFICATE-----
Generated at Thu Jun 4 16:08:52 2026 by rpki-client