Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CD59EE56161211F19D33DAB4DAE4EC9C.roa
File: CD59EE56161211F19D33DAB4DAE4EC9C.roa (raw, json)
Hash identifier: NCFLwcdi4+ob5cV6sSUiVqzeeuOiJ4xEBZSg3D0pOQM=
Subject key identifier: EF:FC:3C:00:94:35:E4:00:81:6C:28:B8:D3:B7:21:8B:39:42:A4:0E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01BCCA
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CD59EE56161211F19D33DAB4DAE4EC9C.roa
Signing time: Mon 02 Mar 2026 08:35:44 +0000
ROA not before: Mon 02 Mar 2026 08:35:40 +0000
ROA not after: Fri 02 Mar 2029 08:35:40 +0000
asID: 17561
IP address blocks: 154.198.74.0/24 maxlen: 24
154.198.75.0/24 maxlen: 24
154.198.76.0/24 maxlen: 24
154.198.77.0/24 maxlen: 24
154.198.78.0/24 maxlen: 24
154.198.79.0/24 maxlen: 24
154.198.80.0/24 maxlen: 24
154.198.81.0/24 maxlen: 24
154.198.82.0/24 maxlen: 24
154.198.83.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 26 Mar 2026 08:06:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113866 (0x1bcca)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 2 08:35:40 2026 GMT
Not After : Mar 2 08:35:40 2029 GMT
Subject: CN=69a54bdf-c233
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:3f:07:0f:aa:c9:a3:8a:3c:a0:4c:bd:fe:a3:
17:64:a7:5d:36:c5:8d:dd:15:98:50:95:d8:64:4d:
d2:15:c7:e8:f7:a9:c0:30:70:d4:f1:e4:a3:79:3c:
5e:b6:3a:19:1d:e9:bb:55:fd:b5:29:fa:e1:7f:16:
c4:29:8a:85:17:5d:79:7e:5e:c6:c1:55:12:63:2c:
6d:1d:ce:0c:83:4e:01:d7:43:cb:5c:83:06:35:6c:
3a:aa:3a:60:e6:90:cf:60:43:72:5c:a1:1e:0e:43:
99:91:18:7b:04:43:d5:92:8d:0d:02:68:e2:da:ca:
ec:c7:2d:b9:2e:43:a4:14:0f:3e:03:8f:f9:ab:a8:
80:96:ff:66:9c:17:0a:fb:92:5c:b1:2d:d5:ef:fe:
8d:de:d5:4b:98:93:a4:73:28:98:49:b0:9a:0d:0e:
b2:b6:3f:60:56:a2:76:e0:4e:13:d6:80:1c:6c:66:
f7:cb:6c:32:b9:f3:31:9a:9e:bf:d2:89:ca:ab:ba:
fc:85:07:37:83:64:14:be:c1:c3:c0:25:6d:d6:93:
a6:bb:d3:2b:c3:16:22:84:f6:98:52:6f:27:f9:10:
44:2e:e4:ad:d7:f8:5a:ca:7f:7d:e3:24:3a:06:f8:
49:04:f2:25:1a:f8:4f:81:27:0e:1f:86:95:cb:3b:
94:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:FC:3C:00:94:35:E4:00:81:6C:28:B8:D3:B7:21:8B:39:42:A4:0E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CD59EE56161211F19D33DAB4DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.198.74.0-154.198.83.255
Signature Algorithm: sha256WithRSAEncryption
9b:b9:a5:29:12:a8:3a:e9:59:50:3b:f1:62:a6:2f:ee:a7:8a:
98:c1:21:2f:85:3a:3d:3c:7d:f9:de:79:a8:67:5e:7d:e6:c3:
1c:4c:23:58:b6:dc:68:79:62:03:c5:98:ac:82:08:a1:07:9e:
be:7b:22:5c:b1:1a:1c:6d:45:4d:74:4c:e7:cd:36:3b:75:57:
5b:ef:18:46:5c:62:fe:46:68:81:ff:42:a4:f4:c3:26:60:66:
fa:f5:0f:3a:b8:18:f3:e8:59:85:50:ad:5d:08:97:cc:09:81:
66:3e:b9:45:20:43:7e:26:47:1d:6f:39:ee:cf:b9:fd:ae:ae:
1c:0a:f6:d2:80:4b:89:e4:b4:1d:bb:31:b8:17:af:a0:75:98:
63:c2:c0:b8:ff:3f:67:f6:cd:5b:5b:87:4c:c7:6d:a5:d0:b3:
d5:c2:34:74:ce:1c:5f:97:11:2b:30:2a:eb:c2:88:58:52:49:
6f:54:f7:02:98:63:8b:4f:36:61:13:73:a3:d0:1d:24:ee:16:
46:9d:3e:ee:21:14:f9:b9:92:e9:7b:92:c6:3a:ea:ec:9a:9f:
1f:7d:f7:6d:c4:ae:48:68:fd:65:44:65:12:64:0a:c7:07:66:
89:79:a3:a3:1c:5a:37:c9:b6:72:a1:72:a1:e3:87:ba:39:46:
15:f6:38:d0
-----BEGIN CERTIFICATE-----
MIIFjDCCBHSgAwIBAgIDAbzKMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjYwMzAyMDgzNTQwWhcNMjkwMzAyMDgzNTQwWjAYMRYw
FAYDVQQDEw02OWE1NGJkZi1jMjMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAqz8HD6rJo4o8oEy9/qMXZKddNsWN3RWYUJXYZE3SFcfo96nAMHDU8eSj
eTxetjoZHem7Vf21KfrhfxbEKYqFF115fl7GwVUSYyxtHc4Mg04B10PLXIMGNWw6
qjpg5pDPYENyXKEeDkOZkRh7BEPVko0NAmji2srsxy25LkOkFA8+A4/5q6iAlv9m
nBcK+5JcsS3V7/6N3tVLmJOkcyiYSbCaDQ6ytj9gVqJ24E4T1oAcbGb3y2wyufMx
mp6/0onKq7r8hQc3g2QUvsHDwCVt1pOmu9MrwxYihPaYUm8n+RBELuSt1/hayn99
4yQ6BvhJBPIlGvhPgScOH4aVyzuUZQIDAQABo4ICrTCCAqkwHQYDVR0OBBYEFO/8
PACUNeQAgWwouNO3IYs5QqQOMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9DRDU5RUU1NjE2MTIxMUYxOUQzM0RBQjREQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOMAwDBAGaxkoDBAKaxlAwDQYJ
KoZIhvcNAQELBQADggEBAJu5pSkSqDrpWVA78WKmL+6nipjBIS+FOj08ffneeahn
Xn3mwxxMI1i23Gh5YgPFmKyCCKEHnr57IlyxGhxtRU10TOfNNjt1V1vvGEZcYv5G
aIH/QqT0wyZgZvr1Dzq4GPPoWYVQrV0Il8wJgWY+uUUgQ34mRx1vOe7Puf2urhwK
9tKAS4nktB27MbgXr6B1mGPCwLj/P2f2zVtbh0zHbaXQs9XCNHTOHF+XESswKuvC
iFhSSW9U9wKYY4tPNmETc6PQHSTuFkadPu4hFPm5kul7ksY66uyanx99923Erkho
/WVEZRJkCscHZol5o6McWjfJtnKhcqHjh7o5RhX2ONA=
-----END CERTIFICATE-----
Generated at Tue Mar 24 16:14:19 2026 by rpki-client