Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DBD1FDEA243411F1BD5276E9DAE4EC9C.roa
File: DBD1FDEA243411F1BD5276E9DAE4EC9C.roa (raw, json)
Hash identifier: weXW3qh1dew6qkzA2sv387AqGZXGf045FRR4mSt+fjA=
Subject key identifier: EC:21:5A:F4:5B:F5:9C:68:C7:19:B2:6D:02:1B:87:69:EB:DA:A0:E5
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C000
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DBD1FDEA243411F1BD5276E9DAE4EC9C.roa
Signing time: Fri 20 Mar 2026 08:14:47 +0000
ROA not before: Fri 20 Mar 2026 08:14:42 +0000
ROA not after: Sun 26 Apr 2026 08:14:42 +0000
asID: 63139
IP address blocks: 154.81.1.0/24 maxlen: 24
154.94.64.0/24 maxlen: 24
154.94.65.0/24 maxlen: 24
154.94.66.0/23 maxlen: 24
154.94.79.0/24 maxlen: 24
154.94.80.0/24 maxlen: 24
154.94.81.0/24 maxlen: 24
154.94.83.0/24 maxlen: 24
154.94.84.0/24 maxlen: 24
154.94.85.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 26 Mar 2026 08:06:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114688 (0x1c000)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 20 08:14:42 2026 GMT
Not After : Apr 26 08:14:42 2026 GMT
Subject: CN=69bd01f7-26e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:28:af:eb:21:6c:c4:8d:99:bc:cc:09:24:94:
51:a7:81:b3:bc:50:8b:6c:96:5f:dc:be:e2:c9:c4:
65:85:70:85:04:5e:9a:d0:68:3b:ab:22:ba:de:e1:
a5:f3:b4:78:03:6b:76:f1:34:f1:69:8b:0f:79:28:
cb:ff:15:0c:04:61:fa:ce:a0:26:87:52:04:e0:b0:
a0:32:33:14:34:39:d7:6b:92:5a:24:c2:c6:54:1b:
ab:48:a8:3c:f2:73:9f:3d:78:a1:f8:b3:14:ec:1b:
b2:4f:2d:f3:77:19:8d:62:3c:28:80:7c:08:18:19:
b5:7c:9d:23:c4:81:fd:ad:74:f2:45:99:d2:d7:9c:
b8:77:43:5d:06:58:c8:22:11:48:e6:45:0b:41:73:
37:6d:1c:76:d2:62:c5:62:28:38:6f:81:58:00:69:
3b:ec:0e:e4:ad:5c:79:73:37:6a:9b:db:4f:58:8f:
bd:39:12:57:d1:0d:aa:e1:81:4e:3d:86:f0:34:e5:
84:20:a5:aa:0b:86:eb:36:ca:11:d4:d0:5f:c7:57:
ad:38:5b:29:0a:a3:ac:50:60:3f:9e:05:40:f9:68:
9a:ce:d4:6a:68:d8:7a:2f:08:40:95:fb:0b:39:8d:
90:65:68:5f:e1:34:bf:df:45:46:04:a2:42:e2:28:
cb:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:21:5A:F4:5B:F5:9C:68:C7:19:B2:6D:02:1B:87:69:EB:DA:A0:E5
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DBD1FDEA243411F1BD5276E9DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.81.1.0/24
154.94.64.0/22
154.94.79.0-154.94.81.255
154.94.83.0-154.94.85.255
Signature Algorithm: sha256WithRSAEncryption
ad:8b:1a:9c:bf:29:59:72:2f:d0:96:90:e1:07:c3:bb:49:e5:
be:66:0d:2d:7e:03:83:38:c7:f8:c6:c0:a6:ed:b1:7b:61:c6:
f4:53:6b:a9:2e:63:da:a5:7f:f8:a6:fd:88:b3:b8:3a:99:ab:
3e:05:89:80:0e:c2:4e:7f:51:0d:dd:1e:34:da:c0:73:c0:20:
0e:ea:bc:77:01:33:23:02:f2:58:43:45:06:59:e9:97:f1:dd:
9d:4c:e4:e9:fb:9d:a5:c5:c1:26:82:6b:f3:c2:be:42:b8:45:
be:46:74:9b:06:68:dc:a2:15:dc:94:88:1b:16:bd:96:6c:6c:
f8:68:11:bf:d0:9b:fa:73:a6:ba:0a:ba:3d:63:82:41:d9:2b:
14:bf:5a:bf:56:46:2f:92:c1:9d:9c:5a:33:62:0e:f7:d8:5a:
61:9a:b0:31:8a:3b:87:09:b8:bd:a7:bd:bc:a3:d3:7e:60:0e:
a3:7e:69:50:96:c1:19:ff:4d:80:11:ad:5a:45:62:95:98:50:
48:67:8d:59:d9:de:57:8f:0a:5e:2f:cb:73:86:ac:d2:f4:5c:
b8:77:0d:5b:a8:11:ae:0a:96:fd:fe:b7:96:ad:7c:98:5b:51:
af:c3:00:9c:0b:7a:dc:c1:47:a1:7d:77:94:62:9a:85:81:37:
a5:49:ee:18
-----BEGIN CERTIFICATE-----
MIIFpjCCBI6gAwIBAgIDAcAAMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjYwMzIwMDgxNDQyWhcNMjYwNDI2MDgxNDQyWjAYMRYw
FAYDVQQDEw02OWJkMDFmNy0yNmU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAtCiv6yFsxI2ZvMwJJJRRp4GzvFCLbJZf3L7iycRlhXCFBF6a0Gg7qyK6
3uGl87R4A2t28TTxaYsPeSjL/xUMBGH6zqAmh1IE4LCgMjMUNDnXa5JaJMLGVBur
SKg88nOfPXih+LMU7BuyTy3zdxmNYjwogHwIGBm1fJ0jxIH9rXTyRZnS15y4d0Nd
BljIIhFI5kULQXM3bRx20mLFYig4b4FYAGk77A7krVx5czdqm9tPWI+9ORJX0Q2q
4YFOPYbwNOWEIKWqC4brNsoR1NBfx1etOFspCqOsUGA/ngVA+WiaztRqaNh6LwhA
lfsLOY2QZWhf4TS/30VGBKJC4ijLkwIDAQABo4ICxzCCAsMwHQYDVR0OBBYEFOwh
WvRb9ZxoxxmybQIbh2nr2qDlMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9EQkQxRkRFQTI0MzQxMUYxQkQ1Mjc2RTlEQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMEEGCCsGAQUFBwEHAQH/BDIwMDAuBAIAATAoAwQAmlEBAwQCml5AMAwDBACa
Xk8DBAGaXlAwDAMEAJpeUwMEAZpeVDANBgkqhkiG9w0BAQsFAAOCAQEArYsanL8p
WXIv0JaQ4QfDu0nlvmYNLX4DgzjH+MbApu2xe2HG9FNrqS5j2qV/+Kb9iLO4Opmr
PgWJgA7CTn9RDd0eNNrAc8AgDuq8dwEzIwLyWENFBlnpl/HdnUzk6fudpcXBJoJr
88K+QrhFvkZ0mwZo3KIV3JSIGxa9lmxs+GgRv9Cb+nOmugq6PWOCQdkrFL9av1ZG
L5LBnZxaM2IO99haYZqwMYo7hwm4vae9vKPTfmAOo35pUJbBGf9NgBGtWkVilZhQ
SGeNWdneV48KXi/Lc4as0vRcuHcNW6gRrgqW/f63lq18mFtRr8MAnAt63MFHoX13
lGKahYE3pUnuGA==
-----END CERTIFICATE-----
Generated at Tue Mar 24 16:19:12 2026 by rpki-client