Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E5099FEC688311F18DB681EDCE1D38B0.roa
File: E5099FEC688311F18DB681EDCE1D38B0.roa (raw, json)
Hash identifier: 4C8ekIrvzyplMVDHLFC1tSG7826l4JmOsvTKeyVLQ9U=
Subject key identifier: 04:CD:D6:9B:86:0D:B8:3B:DC:83:EE:91:54:DB:65:96:A9:40:3C:37
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01D2B3
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E5099FEC688311F18DB681EDCE1D38B0.roa
Signing time: Mon 15 Jun 2026 06:31:52 +0000
ROA not before: Mon 15 Jun 2026 06:30:21 +0000
ROA not after: Fri 04 Sep 2026 06:30:21 +0000
asID: 142403
IP address blocks: 154.83.12.0/22 maxlen: 24
154.83.16.0/23 maxlen: 24
154.92.14.0/23 maxlen: 24
154.92.16.0/22 maxlen: 24
154.94.5.0/24 maxlen: 24
154.209.4.0/23 maxlen: 24
154.211.12.0/24 maxlen: 24
154.211.13.0/24 maxlen: 24
154.211.14.0/24 maxlen: 24
154.221.16.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 25 Jun 2026 14:14:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119475 (0x1d2b3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 15 06:30:21 2026 GMT
Not After : Sep 4 06:30:21 2026 GMT
Subject: CN=6a2f9c58-21c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:6d:3e:97:3f:e7:ed:97:29:f3:23:37:82:e2:
00:05:92:21:b5:08:a2:3d:cd:7b:27:e6:91:5e:fc:
37:26:d0:aa:c3:46:d6:ab:ea:45:9f:3e:ed:f3:0c:
5d:51:c7:27:34:1b:6d:60:98:99:72:25:88:bc:0a:
06:22:7e:8c:6b:fb:91:b5:2c:1d:6b:e9:57:be:42:
4a:4d:30:78:8b:44:d1:a6:fe:96:55:6d:fe:cd:0b:
cf:7c:23:18:c2:4b:15:b9:1e:96:17:68:d6:97:53:
71:7e:bd:49:b0:2b:21:31:ab:60:da:75:68:86:ae:
7a:3d:34:bf:eb:53:97:3f:5d:d6:76:86:f8:c9:9e:
c5:32:78:68:76:35:26:5e:0c:74:c9:a2:31:8a:47:
31:25:98:85:89:ec:cf:85:ec:f7:ef:3e:71:52:d6:
d1:f2:93:f0:f7:c2:4f:08:2d:db:de:82:4e:24:08:
df:7c:8d:3f:fa:e3:48:df:c5:a2:76:e2:8b:8a:a2:
cd:a4:2e:5a:41:b2:dd:ef:f8:4c:e0:9d:86:52:f8:
48:6f:ce:eb:ec:f8:57:07:60:d0:10:32:5f:6b:4b:
ae:2d:10:ed:50:f0:a6:b4:d0:5d:5f:08:0d:9a:3b:
3f:86:7b:9e:00:01:a4:f2:c6:55:8c:65:7d:c3:6a:
a4:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:CD:D6:9B:86:0D:B8:3B:DC:83:EE:91:54:DB:65:96:A9:40:3C:37
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E5099FEC688311F18DB681EDCE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.83.12.0-154.83.17.255
154.92.14.0-154.92.19.255
154.94.5.0/24
154.209.4.0/23
154.211.12.0-154.211.14.255
154.221.16.0/20
Signature Algorithm: sha256WithRSAEncryption
2b:36:e8:35:cf:9c:a6:b6:71:21:2b:bc:63:35:13:40:11:c0:
a5:de:24:83:07:4d:90:d8:41:f1:63:52:73:b0:2e:2f:cc:5a:
76:b3:7f:99:ef:5e:57:d9:b5:10:fa:72:62:90:93:80:22:17:
de:78:df:19:16:d6:bc:82:0c:6b:ae:e4:05:47:4d:3e:c5:5f:
86:63:9b:33:8d:9b:51:bc:cb:74:8f:45:d7:1c:92:55:d5:52:
1c:35:36:b7:d5:c6:bc:d0:6a:37:27:6d:44:3b:da:46:f5:c3:
76:10:2d:2a:1d:5a:3b:d9:30:fe:de:99:ac:8a:03:45:63:7d:
37:eb:ca:87:0d:04:b8:c7:ad:d9:c8:66:33:b8:b3:69:6e:22:
c5:55:ba:fe:8e:12:a9:78:d3:70:29:ef:b2:dc:c4:f7:7c:01:
fd:ab:7f:ae:8d:e2:de:38:7e:b0:0b:80:10:0d:f7:c5:f3:74:
3e:97:ed:a6:9b:1d:e8:51:89:8f:3f:98:a6:6d:c8:7a:0a:b2:
c6:6f:6c:43:47:45:6c:ea:7c:51:ed:d5:0f:e3:14:0d:a4:ba:
db:b0:d0:b8:9e:55:05:49:fa:b0:c8:61:ef:f7:89:ad:2c:fe:
34:51:4d:c6:93:f4:4b:fd:f7:42:26:ef:a7:e1:46:37:49:03:
4b:30:15:db
-----BEGIN CERTIFICATE-----
MIIFujCCBKKgAwIBAgIDAdKzMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjYwNjE1MDYzMDIxWhcNMjYwOTA0MDYzMDIxWjAYMRYw
FAYDVQQDEw02YTJmOWM1OC0yMWM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEApm0+lz/n7Zcp8yM3guIABZIhtQiiPc17J+aRXvw3JtCqw0bWq+pFnz7t
8wxdUccnNBttYJiZciWIvAoGIn6Ma/uRtSwda+lXvkJKTTB4i0TRpv6WVW3+zQvP
fCMYwksVuR6WF2jWl1Nxfr1JsCshMatg2nVohq56PTS/61OXP13Wdob4yZ7FMnho
djUmXgx0yaIxikcxJZiFiezPhez37z5xUtbR8pPw98JPCC3b3oJOJAjffI0/+uNI
38WiduKLiqLNpC5aQbLd7/hM4J2GUvhIb87r7PhXB2DQEDJfa0uuLRDtUPCmtNBd
XwgNmjs/hnueAAGk8sZVjGV9w2qkYQIDAQABo4IC2zCCAtcwHQYDVR0OBBYEFATN
1puGDbg73IPukVTbZZapQDw3MB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9FNTA5OUZFQzY4ODMxMUYxOERCNjgxRURDRTFEMzhCMC5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMFUGCCsGAQUFBwEHAQH/BEYwRDBCBAIAATA8MAwDBAKaUwwDBAGaUxAwDAME
AZpcDgMEAppcEAMEAJpeBQMEAZrRBDAMAwQCmtMMAwQAmtMOAwQEmt0QMA0GCSqG
SIb3DQEBCwUAA4IBAQArNug1z5ymtnEhK7xjNRNAEcCl3iSDB02Q2EHxY1JzsC4v
zFp2s3+Z715X2bUQ+nJikJOAIhfeeN8ZFta8ggxrruQFR00+xV+GY5szjZtRvMt0
j0XXHJJV1VIcNTa31ca80Go3J21EO9pG9cN2EC0qHVo72TD+3pmsigNFY30368qH
DQS4x63ZyGYzuLNpbiLFVbr+jhKpeNNwKe+y3MT3fAH9q3+ujeLeOH6wC4AQDffF
83Q+l+2mmx3oUYmPP5imbch6CrLGb2xDR0Vs6nxR7dUP4xQNpLrbsNC4nlUFSfqw
yGHv94mtLP40UU3Gk/RL/fdCJu+n4UY3SQNLMBXb
-----END CERTIFICATE-----
Generated at Tue Jun 23 21:51:04 2026 by rpki-client