Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EAD697FA59B411F186314FF1CE1D38B0.roa
File: EAD697FA59B411F186314FF1CE1D38B0.roa (raw, json)
Hash identifier: KxFlviVRD3eCGzGbahgiRruuHqj5pUXZy2czIuTbJlo=
Subject key identifier: 42:F8:34:6D:81:E3:90:A8:D8:B4:C9:97:FD:A8:6D:EA:35:6A:14:39
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01D009
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EAD697FA59B411F186314FF1CE1D38B0.roa
Signing time: Wed 27 May 2026 10:15:00 +0000
ROA not before: Wed 27 May 2026 10:14:55 +0000
ROA not after: Fri 04 Sep 2026 10:14:55 +0000
asID: 6453
IP address blocks: 154.210.222.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 08 Jun 2026 00:08:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118793 (0x1d009)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 27 10:14:55 2026 GMT
Not After : Sep 4 10:14:55 2026 GMT
Subject: CN=6a16c424-5d60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:28:32:5b:cc:dd:df:66:25:f4:b4:11:c8:88:
35:96:7b:ff:e9:73:19:74:80:33:55:25:01:12:ae:
c8:09:be:4e:6e:48:11:66:dc:66:de:d2:12:54:31:
38:ab:18:43:3f:45:40:de:9d:67:4f:e7:8f:7e:ca:
87:fc:38:bd:01:c4:50:bf:04:96:12:e3:04:86:5c:
63:e3:61:c9:fe:94:cd:18:9e:7a:a7:51:cd:7b:02:
3b:e1:d1:9e:fd:f3:2e:c4:6a:d4:5a:ba:0a:37:7b:
95:32:66:d0:3c:84:e3:43:a1:c2:3b:c0:53:a9:68:
03:0b:a7:7f:20:fc:8a:76:83:29:61:15:a6:5c:d0:
22:71:8a:a1:89:7c:de:62:4d:0e:c8:3d:30:45:75:
25:eb:b7:bb:14:a1:95:c7:8a:b6:c9:0f:4f:4f:73:
8d:33:14:03:1c:b0:ed:64:4f:df:10:5d:0c:1c:66:
e2:00:77:ad:ab:de:08:25:3a:e2:42:18:43:d2:e7:
5c:74:5b:99:72:f0:0c:e9:51:b8:5e:4c:f6:f6:7a:
18:93:7e:46:cc:47:0f:ab:1b:6d:c9:f5:d4:df:d8:
19:0f:64:07:5e:6d:bd:3d:bb:ef:80:c2:a5:01:19:
78:06:71:6d:a0:33:62:d8:6e:5a:d5:cd:ef:c4:3c:
9e:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:F8:34:6D:81:E3:90:A8:D8:B4:C9:97:FD:A8:6D:EA:35:6A:14:39
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EAD697FA59B411F186314FF1CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.210.222.0/24
Signature Algorithm: sha256WithRSAEncryption
24:59:c7:10:85:b7:d2:dd:9c:f9:78:55:00:2b:ed:90:04:b1:
61:2e:41:d7:01:2e:f3:bb:23:5b:71:db:f3:17:ba:c3:7b:60:
b4:93:75:57:4b:10:87:c4:e2:f6:39:d7:7f:7c:21:8e:a1:14:
d2:2f:ce:71:7a:4e:4f:aa:57:62:7d:68:aa:7e:fc:58:9a:9d:
8b:b0:5b:97:d1:e8:4d:5f:60:c9:1d:28:62:22:74:b8:de:2f:
57:6f:09:20:8e:60:12:94:3d:52:4f:fb:8d:b7:e7:57:23:5b:
39:a2:9f:41:28:5a:a1:ac:34:f1:5d:61:2c:8a:b9:ae:cc:9c:
ec:14:29:53:7a:fd:ce:f7:6d:45:74:f3:20:ab:c3:bd:3d:27:
e1:3e:55:08:32:24:12:83:31:b1:ba:c1:49:75:22:06:a2:af:
4b:f5:0a:5b:67:2e:cf:5a:f9:33:d4:e8:73:c3:4b:df:cc:c6:
d0:ff:a1:f5:68:f7:55:07:d2:17:09:55:41:aa:c9:f9:c4:3e:
32:f1:b5:20:5c:26:f2:4d:5f:6c:97:48:5d:d0:c5:4e:f3:ea:
55:08:bc:52:f5:aa:f5:6f:c9:54:21:e1:b0:64:49:b6:be:f8:
61:ab:59:6a:b5:af:1f:7e:10:35:fb:84:78:a6:98:8f:8b:02:
86:a6:f1:75
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAdAJMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjYwNTI3MTAxNDU1WhcNMjYwOTA0MTAxNDU1WjAYMRYw
FAYDVQQDEw02YTE2YzQyNC01ZDYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAkSgyW8zd32Yl9LQRyIg1lnv/6XMZdIAzVSUBEq7ICb5ObkgRZtxm3tIS
VDE4qxhDP0VA3p1nT+ePfsqH/Di9AcRQvwSWEuMEhlxj42HJ/pTNGJ56p1HNewI7
4dGe/fMuxGrUWroKN3uVMmbQPITjQ6HCO8BTqWgDC6d/IPyKdoMpYRWmXNAicYqh
iXzeYk0OyD0wRXUl67e7FKGVx4q2yQ9PT3ONMxQDHLDtZE/fEF0MHGbiAHetq94I
JTriQhhD0udcdFuZcvAM6VG4Xkz29noYk35GzEcPqxttyfXU39gZD2QHXm29Pbvv
gMKlARl4BnFtoDNi2G5a1c3vxDye/wIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFEL4
NG2B45Co2LTJl/2obeo1ahQ5MB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9FQUQ2OTdGQTU5QjQxMUYxODYzMTRGRjFDRTFEMzhCMC5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmtLeMA0GCSqGSIb3DQEB
CwUAA4IBAQAkWccQhbfS3Zz5eFUAK+2QBLFhLkHXAS7zuyNbcdvzF7rDe2C0k3VX
SxCHxOL2Odd/fCGOoRTSL85xek5PqldifWiqfvxYmp2LsFuX0ehNX2DJHShiInS4
3i9XbwkgjmASlD1ST/uNt+dXI1s5op9BKFqhrDTxXWEsirmuzJzsFClTev3O921F
dPMgq8O9PSfhPlUIMiQSgzGxusFJdSIGoq9L9QpbZy7PWvkz1Ohzw0vfzMbQ/6H1
aPdVB9IXCVVBqsn5xD4y8bUgXCbyTV9sl0hd0MVO8+pVCLxS9ar1b8lUIeGwZEm2
vvhhq1lqta8ffhA1+4R4ppiPiwKGpvF1
-----END CERTIFICATE-----
Generated at Sat Jun 6 05:33:39 2026 by rpki-client