Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D8E75BCC513711F1923B4CBACE1D38B0.roa
File: D8E75BCC513711F1923B4CBACE1D38B0.roa (raw, json)
Hash identifier: z5ASH44UCQwVsjJQ+Vrx2+mSzpY0A6sL2JXQ+HOTrSU=
Subject key identifier: ED:3A:51:A9:C9:3B:73:17:5E:07:14:B6:74:9B:A8:FF:13:DB:83:9A
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01CBF1
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D8E75BCC513711F1923B4CBACE1D38B0.roa
Signing time: Sat 16 May 2026 14:59:33 +0000
ROA not before: Sat 16 May 2026 14:59:28 +0000
ROA not after: Mon 25 May 2026 14:59:28 +0000
asID: 153517
IP address blocks: 154.86.21.0/24 maxlen: 24
154.86.22.0/24 maxlen: 24
154.86.23.0/24 maxlen: 24
154.86.24.0/24 maxlen: 24
154.86.25.0/24 maxlen: 24
154.86.26.0/24 maxlen: 24
154.86.27.0/24 maxlen: 24
154.86.28.0/24 maxlen: 24
154.86.29.0/24 maxlen: 24
154.86.30.0/24 maxlen: 24
154.86.31.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 May 2026 00:07:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117745 (0x1cbf1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 16 14:59:28 2026 GMT
Not After : May 25 14:59:28 2026 GMT
Subject: CN=6a088655-176b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:89:37:1e:69:bf:06:3a:29:6c:18:37:59:d0:
66:99:47:56:dd:bc:d4:b9:64:a1:81:1e:13:fd:11:
82:93:21:51:06:21:d2:b7:1c:2e:98:3e:31:05:a2:
d7:23:11:6f:30:85:d7:7b:27:11:99:4c:1d:ac:2e:
d5:88:32:39:5e:38:40:a7:0b:48:a4:65:f1:2b:62:
72:5c:3d:21:9c:2c:75:3b:bc:f6:04:0e:4f:5c:de:
09:16:03:1a:31:1a:89:62:c4:75:3e:3e:eb:6e:ed:
9e:a4:8b:34:8b:5c:3c:d8:bd:10:58:44:88:63:ff:
1e:4e:39:d0:f7:95:d0:44:70:90:25:58:ff:91:e1:
b0:05:4d:0d:de:5f:ce:71:ca:73:55:b5:23:3f:c4:
02:ef:ed:38:a9:b7:17:29:4a:d0:0f:ab:15:b1:5c:
f8:1a:65:18:6f:29:54:9a:96:e0:d0:9d:d1:8c:d0:
de:9e:04:5c:32:02:e9:a8:3d:4b:16:bb:39:15:e0:
23:a7:93:1e:38:fe:79:52:8f:d2:11:a8:84:75:23:
c4:2a:d6:c9:4a:b8:a7:98:0f:ad:23:f5:3e:11:d6:
f4:32:c4:4d:c4:06:47:cf:30:8d:33:4a:36:d1:2a:
b0:29:d2:1c:a3:dd:fe:af:07:bb:f1:bf:14:f0:89:
a2:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:3A:51:A9:C9:3B:73:17:5E:07:14:B6:74:9B:A8:FF:13:DB:83:9A
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D8E75BCC513711F1923B4CBACE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.86.21.0-154.86.31.255
Signature Algorithm: sha256WithRSAEncryption
10:b4:d7:ba:61:97:ad:2d:6b:ac:45:7f:bc:a2:04:8e:22:ae:
09:82:d7:bd:2f:48:c7:0d:2f:a2:ee:da:43:1d:67:92:14:9c:
a9:1a:c2:3c:13:ab:8b:e2:30:2c:fa:47:46:b5:41:19:e5:c2:
e4:f4:9d:c5:8b:28:ef:70:cd:68:05:b5:04:bc:b7:b1:b9:56:
43:a7:84:1c:7e:3b:35:7f:52:95:7b:d2:de:f6:96:02:39:02:
f1:93:a8:39:cd:aa:36:3f:88:04:58:02:e2:f5:b8:7e:a8:34:
41:ce:a3:5d:56:04:42:23:30:be:2d:5d:11:13:48:5a:64:73:
ae:94:c8:b4:70:8a:8f:3a:f6:4a:5a:19:aa:50:6e:22:b0:62:
4c:90:77:fd:83:05:f8:13:f8:5c:42:a2:34:1d:61:bf:18:04:
44:fe:bc:e1:04:30:9c:05:5d:0d:d8:49:76:86:96:f5:1e:b4:
e5:38:07:31:9b:ad:8b:e2:8e:c3:15:e7:c8:b5:5f:f7:7a:09:
0b:33:9b:99:e2:2b:97:21:75:7f:5e:f0:48:b9:87:b2:43:36:
4b:e5:7a:1b:df:45:b4:bd:4e:e2:a0:6d:0f:91:eb:9a:cd:b4:
52:46:a7:c5:4d:2a:68:ed:e7:04:07:19:25:08:59:d8:ca:0a:
82:70:d7:5a
-----BEGIN CERTIFICATE-----
MIIFjDCCBHSgAwIBAgIDAcvxMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjYwNTE2MTQ1OTI4WhcNMjYwNTI1MTQ1OTI4WjAYMRYw
FAYDVQQDEw02YTA4ODY1NS0xNzZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA1Ik3Hmm/BjopbBg3WdBmmUdW3bzUuWShgR4T/RGCkyFRBiHStxwumD4x
BaLXIxFvMIXXeycRmUwdrC7ViDI5XjhApwtIpGXxK2JyXD0hnCx1O7z2BA5PXN4J
FgMaMRqJYsR1Pj7rbu2epIs0i1w82L0QWESIY/8eTjnQ95XQRHCQJVj/keGwBU0N
3l/OccpzVbUjP8QC7+04qbcXKUrQD6sVsVz4GmUYbylUmpbg0J3RjNDengRcMgLp
qD1LFrs5FeAjp5MeOP55Uo/SEaiEdSPEKtbJSrinmA+tI/U+Edb0MsRNxAZHzzCN
M0o20SqwKdIco93+rwe78b8U8Imi6QIDAQABo4ICrTCCAqkwHQYDVR0OBBYEFO06
UanJO3MXXgcUtnSbqP8T24OaMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9EOEU3NUJDQzUxMzcxMUYxOTIzQjRDQkFDRTFEMzhCMC5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOMAwDBACaVhUDBAWaVgAwDQYJ
KoZIhvcNAQELBQADggEBABC017phl60ta6xFf7yiBI4irgmC170vSMcNL6Lu2kMd
Z5IUnKkawjwTq4viMCz6R0a1QRnlwuT0ncWLKO9wzWgFtQS8t7G5VkOnhBx+OzV/
UpV70t72lgI5AvGTqDnNqjY/iARYAuL1uH6oNEHOo11WBEIjML4tXRETSFpkc66U
yLRwio869kpaGapQbiKwYkyQd/2DBfgT+FxCojQdYb8YBET+vOEEMJwFXQ3YSXaG
lvUetOU4BzGbrYvijsMV58i1X/d6CQszm5niK5chdX9e8Ei5h7JDNkvlehvfRbS9
TuKgbQ+R65rNtFJGp8VNKmjt5wQHGSUIWdjKCoJw11o=
-----END CERTIFICATE-----
Generated at Thu May 21 12:32:55 2026 by rpki-client