Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F1977934560711F19B221D0ACF1D38B0.roa
File: F1977934560711F19B221D0ACF1D38B0.roa (raw, json)
Hash identifier: mIB0ohRh5IjW9FdmyNEbe0J/eNtfMq+DPuPpqMetL8s=
Subject key identifier: 91:D7:EC:2A:BC:CB:65:FA:30:8C:71:CF:A8:AA:A8:6A:8B:34:49:0F
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01CE48
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F1977934560711F19B221D0ACF1D38B0.roa
Signing time: Fri 22 May 2026 17:59:15 +0000
ROA not before: Fri 22 May 2026 17:59:10 +0000
ROA not after: Thu 09 Jul 2026 17:59:10 +0000
asID: 32043
IP address blocks: 154.195.8.0/24 maxlen: 24
154.195.9.0/24 maxlen: 24
154.195.10.0/24 maxlen: 24
154.195.11.0/24 maxlen: 24
154.195.12.0/24 maxlen: 24
154.195.13.0/24 maxlen: 24
154.195.14.0/23 maxlen: 24
154.200.8.0/22 maxlen: 24
154.200.12.0/22 maxlen: 24
154.200.16.0/23 maxlen: 24
154.200.80.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 11 Jun 2026 00:07:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118344 (0x1ce48)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 22 17:59:10 2026 GMT
Not After : Jul 9 17:59:10 2026 GMT
Subject: CN=6a109972-98ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:98:ba:74:11:bd:30:1a:e4:6a:ec:11:e6:7a:
4b:93:71:0f:e7:49:d4:3f:91:74:4e:c2:60:7a:be:
4e:f4:79:6a:62:5b:cc:1c:64:a9:59:2e:70:ce:55:
ed:45:b7:20:60:74:68:ec:e9:f0:66:3c:4d:a7:5c:
57:b7:c8:ae:14:cc:2e:e5:e4:f3:43:3a:69:6b:76:
b9:bf:b4:79:76:fe:4c:d3:e9:3d:22:53:a9:c7:91:
9b:fe:45:6e:98:b1:27:24:d0:07:fd:e4:8f:ab:a5:
94:d3:f3:2f:70:1c:42:da:d2:2c:41:1f:05:e0:8b:
2f:72:57:b1:55:8a:28:1f:b6:53:d1:ff:01:32:0e:
c3:d0:0c:e6:2b:65:d9:fd:4d:bf:81:58:5a:cc:f0:
13:39:af:d1:f2:80:09:d2:c6:80:ab:3c:7e:e3:e4:
f4:ac:83:7a:7f:ee:eb:d5:b7:bc:f6:63:ca:c5:d4:
fb:1e:37:37:00:d1:11:a2:ff:e5:99:d8:31:86:88:
4d:9a:e9:a5:6b:91:75:ca:06:35:35:52:29:d2:e5:
f6:f3:44:d9:2d:71:6e:36:17:ef:03:70:ad:2b:12:
81:6d:43:a5:a5:76:23:d5:8c:a7:43:17:4e:71:82:
0b:ae:81:6b:86:9f:4c:1d:0c:fb:8c:44:eb:87:9a:
03:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:D7:EC:2A:BC:CB:65:FA:30:8C:71:CF:A8:AA:A8:6A:8B:34:49:0F
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F1977934560711F19B221D0ACF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.195.8.0/21
154.200.8.0-154.200.17.255
154.200.80.0/21
Signature Algorithm: sha256WithRSAEncryption
c2:c3:04:e1:55:56:2d:f5:45:17:90:65:d1:42:08:05:74:71:
08:24:f9:4f:90:4a:d8:a6:6d:5b:00:cc:69:5e:bf:ef:a5:a6:
d2:10:aa:22:27:5b:ec:cb:59:e4:93:5c:b2:d2:4f:ac:58:34:
2f:af:36:8e:16:13:db:db:59:e6:f5:20:9a:1e:11:e4:5b:d6:
f0:b5:77:03:19:2e:eb:26:31:49:cb:bf:ec:62:fd:d3:3c:a9:
53:e6:ec:f7:3d:d1:f9:04:b6:b4:27:a8:ba:0d:3e:a1:5e:d0:
e8:6b:c8:e9:bf:58:b4:54:8d:96:e9:7a:e6:5c:9e:d7:ba:c4:
bd:1a:d6:db:95:71:87:bc:1d:e3:d4:aa:d3:35:f6:5e:1d:42:
95:ff:50:90:c3:6a:dd:3a:61:d1:06:17:89:f5:e5:f3:22:cd:
a4:4e:18:9a:e3:fc:51:82:15:f4:28:19:fe:a1:ae:cb:8e:c3:
91:54:70:a3:0c:a0:dc:71:d0:be:a4:69:7f:2b:42:da:a9:4d:
06:bd:55:b1:7c:33:9f:98:48:8a:64:d4:12:8d:b5:a1:27:2f:
5c:45:de:32:cf:c9:64:08:00:ed:cf:58:aa:cb:33:a0:e7:44:
88:85:4c:56:a4:d6:c0:39:94:98:1d:08:69:75:fb:02:03:71:
dc:01:fb:fb
-----BEGIN CERTIFICATE-----
MIIFmDCCBICgAwIBAgIDAc5IMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjYwNTIyMTc1OTEwWhcNMjYwNzA5MTc1OTEwWjAYMRYw
FAYDVQQDEw02YTEwOTk3Mi05OGFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAs5i6dBG9MBrkauwR5npLk3EP50nUP5F0TsJger5O9HlqYlvMHGSpWS5w
zlXtRbcgYHRo7OnwZjxNp1xXt8iuFMwu5eTzQzppa3a5v7R5dv5M0+k9IlOpx5Gb
/kVumLEnJNAH/eSPq6WU0/MvcBxC2tIsQR8F4IsvclexVYooH7ZT0f8BMg7D0Azm
K2XZ/U2/gVhazPATOa/R8oAJ0saAqzx+4+T0rIN6f+7r1be89mPKxdT7Hjc3ANER
ov/lmdgxhohNmumla5F1ygY1NVIp0uX280TZLXFuNhfvA3CtKxKBbUOlpXYj1Yyn
QxdOcYILroFrhp9MHQz7jETrh5oDjQIDAQABo4ICuTCCArUwHQYDVR0OBBYEFJHX
7Cq8y2X6MIxxz6iqqGqLNEkPMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9GMTk3NzkzNDU2MDcxMUYxOUIyMjFEMEFDRjFEMzhCMC5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMDMGCCsGAQUFBwEHAQH/BCQwIjAgBAIAATAaAwQDmsMIMAwDBAOayAgDBAGa
yBADBAOayFAwDQYJKoZIhvcNAQELBQADggEBAMLDBOFVVi31RReQZdFCCAV0cQgk
+U+QStimbVsAzGlev++lptIQqiInW+zLWeSTXLLST6xYNC+vNo4WE9vbWeb1IJoe
EeRb1vC1dwMZLusmMUnLv+xi/dM8qVPm7Pc90fkEtrQnqLoNPqFe0OhryOm/WLRU
jZbpeuZcnte6xL0a1tuVcYe8HePUqtM19l4dQpX/UJDDat06YdEGF4n15fMizaRO
GJrj/FGCFfQoGf6hrsuOw5FUcKMMoNxx0L6kaX8rQtqpTQa9VbF8M5+YSIpk1BKN
taEnL1xF3jLPyWQIAO3PWKrLM6DnRIiFTFak1sA5lJgdCGl1+wIDcdwB+/s=
-----END CERTIFICATE-----
Generated at Tue Jun 9 08:07:49 2026 by rpki-client