Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D34B1EE0698011F1892063EACE1D38B0.roa
File: D34B1EE0698011F1892063EACE1D38B0.roa (raw, json)
Hash identifier: IkzPcA/8uMD13OyZqEtTeavBrogoj1ceQkR3kTcIBbE=
Subject key identifier: 66:4E:70:C8:CE:8E:AE:F9:CA:06:0B:E8:FA:0B:54:D3:46:4E:99:71
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01D341
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D34B1EE0698011F1892063EACE1D38B0.roa
Signing time: Tue 16 Jun 2026 12:42:25 +0000
ROA not before: Tue 16 Jun 2026 12:42:20 +0000
ROA not after: Thu 16 Jul 2026 12:42:20 +0000
asID: 17497
IP address blocks: 154.196.140.0/23 maxlen: 24
154.196.140.0/24 maxlen: 24
154.196.141.0/24 maxlen: 24
154.196.166.0/24 maxlen: 24
154.196.167.0/24 maxlen: 24
154.196.216.0/21 maxlen: 24
154.196.216.0/24 maxlen: 24
154.196.217.0/24 maxlen: 24
154.196.218.0/24 maxlen: 24
154.197.27.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 25 Jun 2026 14:14:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119617 (0x1d341)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 16 12:42:20 2026 GMT
Not After : Jul 16 12:42:20 2026 GMT
Subject: CN=6a3144b1-4ca6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:a7:7e:e8:dc:9f:a1:19:6d:54:da:d4:e8:02:
14:45:bf:dd:07:92:d0:24:03:54:d0:15:b0:e8:d1:
cc:dd:db:0b:8b:28:93:a0:d2:b7:f9:7a:c9:5f:d5:
5e:93:7b:5e:48:34:f2:b1:7b:42:a1:94:43:24:d9:
af:28:8e:fe:2a:47:2d:d8:3f:fe:bc:68:ec:b4:ce:
d5:53:65:bb:c4:26:5d:f8:38:e6:80:43:db:04:1c:
50:f1:73:d3:73:03:c4:84:03:01:c1:4a:9b:42:68:
bc:97:82:b3:f6:a6:af:1f:99:e4:23:76:79:05:27:
64:30:28:7a:8b:68:ab:5d:8f:e5:34:d7:90:91:b3:
6e:df:2a:39:51:ad:1d:47:6b:1e:0f:21:73:7f:a6:
a6:79:92:e3:0a:78:b3:93:77:0b:1f:ae:84:fd:a3:
1f:5e:65:b8:3e:e7:94:56:4e:f0:9a:37:f1:51:74:
90:21:fd:c3:d2:85:74:d9:5c:a1:66:35:ec:61:c3:
ac:9e:67:84:67:6f:c3:d0:2d:dd:60:2d:af:1b:b4:
96:f0:e9:79:df:24:65:26:6f:2c:13:e4:9d:e8:1b:
e8:19:1c:97:9a:67:95:ab:c3:a7:c1:77:8e:a9:00:
5f:07:87:ca:d7:66:59:b0:7c:1c:98:7a:18:e6:7d:
2d:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:4E:70:C8:CE:8E:AE:F9:CA:06:0B:E8:FA:0B:54:D3:46:4E:99:71
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D34B1EE0698011F1892063EACE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.196.140.0/23
154.196.166.0/23
154.196.216.0/21
154.197.27.0/24
Signature Algorithm: sha256WithRSAEncryption
58:5f:ce:00:ce:b3:9b:69:08:8c:54:57:1e:5f:4f:2b:65:eb:
0e:9b:6b:a7:55:4b:40:f9:b7:79:cd:72:79:b1:27:34:25:60:
cd:e8:1b:fb:e3:d1:99:93:f0:8b:e3:5b:66:66:aa:4d:9b:12:
45:89:46:97:be:8e:d2:d0:c7:a7:cf:41:71:96:85:a1:ac:40:
37:f6:26:af:45:2f:69:c7:e8:de:7b:a7:38:bb:b8:e0:de:ba:
07:87:83:04:59:70:db:12:88:b6:43:fa:3a:95:e6:8b:de:e0:
46:25:8d:49:9c:b6:f3:3c:f1:57:4b:76:e1:92:e8:6e:a9:9c:
dc:04:6b:82:8f:6b:1a:b6:3c:66:1d:a4:04:03:ed:45:02:e6:
96:84:8d:ca:88:40:5b:02:b7:e7:a5:35:1d:fd:13:81:fc:f4:
20:49:35:db:e0:cd:ff:e5:26:08:89:75:cd:48:fe:4a:81:e3:
06:b5:34:9b:44:bb:50:30:10:14:e7:07:86:69:97:59:eb:30:
8f:7b:21:46:4d:57:c7:f1:54:92:3c:6e:87:18:dc:1f:7b:95:
3e:ee:55:bb:0e:b7:16:21:02:6a:a6:fd:86:37:da:f6:28:0f:
b1:41:8b:9f:a8:cd:a3:46:b5:b1:11:b6:7b:04:77:41:b5:eb:
b9:6b:a8:10
-----BEGIN CERTIFICATE-----
MIIFljCCBH6gAwIBAgIDAdNBMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjYwNjE2MTI0MjIwWhcNMjYwNzE2MTI0MjIwWjAYMRYw
FAYDVQQDEw02YTMxNDRiMS00Y2E2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA1ad+6NyfoRltVNrU6AIURb/dB5LQJANU0BWw6NHM3dsLiyiToNK3+XrJ
X9Vek3teSDTysXtCoZRDJNmvKI7+Kkct2D/+vGjstM7VU2W7xCZd+DjmgEPbBBxQ
8XPTcwPEhAMBwUqbQmi8l4Kz9qavH5nkI3Z5BSdkMCh6i2irXY/lNNeQkbNu3yo5
Ua0dR2seDyFzf6ameZLjCnizk3cLH66E/aMfXmW4PueUVk7wmjfxUXSQIf3D0oV0
2VyhZjXsYcOsnmeEZ2/D0C3dYC2vG7SW8Ol53yRlJm8sE+Sd6BvoGRyXmmeVq8On
wXeOqQBfB4fK12ZZsHwcmHoY5n0thwIDAQABo4ICtzCCArMwHQYDVR0OBBYEFGZO
cMjOjq75ygYL6PoLVNNGTplxMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9EMzRCMUVFMDY5ODAxMUYxODkyMDYzRUFDRTFEMzhCMC5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMDEGCCsGAQUFBwEHAQH/BCIwIDAeBAIAATAYAwQBmsSMAwQBmsSmAwQDmsTY
AwQAmsUbMA0GCSqGSIb3DQEBCwUAA4IBAQBYX84AzrObaQiMVFceX08rZesOm2un
VUtA+bd5zXJ5sSc0JWDN6Bv749GZk/CL41tmZqpNmxJFiUaXvo7S0Menz0FxloWh
rEA39iavRS9px+jee6c4u7jg3roHh4MEWXDbEoi2Q/o6leaL3uBGJY1JnLbzPPFX
S3bhkuhuqZzcBGuCj2satjxmHaQEA+1FAuaWhI3KiEBbArfnpTUd/ROB/PQgSTXb
4M3/5SYIiXXNSP5KgeMGtTSbRLtQMBAU5weGaZdZ6zCPeyFGTVfH8VSSPG6HGNwf
e5U+7lW7DrcWIQJqpv2GN9r2KA+xQYufqM2jRrWxEbZ7BHdBteu5a6gQ
-----END CERTIFICATE-----
Generated at Tue Jun 23 21:53:15 2026 by rpki-client