Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F5009C82457B11F19DF571DBCE1D38B0.roa
File: F5009C82457B11F19DF571DBCE1D38B0.roa (raw, json)
Hash identifier: QDaNAZhMw+WxGqj1ltlLq0nYKKPMLIT6um08+p8uLfk=
Subject key identifier: BA:25:C1:BA:0C:99:23:55:ED:88:00:03:81:B3:78:08:12:8F:A8:FC
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C8BD
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F5009C82457B11F19DF571DBCE1D38B0.roa
Signing time: Fri 01 May 2026 16:36:52 +0000
ROA not before: Fri 01 May 2026 16:36:48 +0000
ROA not after: Tue 09 Jun 2026 16:36:48 +0000
asID: 44559
IP address blocks: 154.219.64.0/24 maxlen: 24
154.219.65.0/24 maxlen: 24
154.219.66.0/24 maxlen: 24
154.219.67.0/24 maxlen: 24
154.219.68.0/24 maxlen: 24
154.219.69.0/24 maxlen: 24
154.219.70.0/24 maxlen: 24
154.219.71.0/24 maxlen: 24
154.219.92.0/24 maxlen: 24
154.219.93.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 11 May 2026 00:07:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116925 (0x1c8bd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 1 16:36:48 2026 GMT
Not After : Jun 9 16:36:48 2026 GMT
Subject: CN=69f4d6a4-5852
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:a2:1f:d0:5b:ef:ae:63:84:68:e2:9a:85:ba:
2e:bb:89:3e:a5:3c:5b:06:65:a5:b7:ab:f9:fe:e1:
1a:39:38:1f:62:63:9f:18:ad:56:64:5f:51:01:6e:
1f:b2:75:11:17:9e:50:72:a2:3f:07:2d:d8:fd:b5:
a2:2b:32:1d:e2:08:b0:6c:70:2a:da:4a:a4:fe:1a:
4a:ad:8c:a0:99:a6:be:a5:25:35:29:dd:22:5c:5a:
8d:db:e5:a7:2f:c3:6c:5a:85:ef:34:ad:16:46:a7:
25:6c:3d:27:0e:3e:b6:c0:50:d9:b9:ad:45:77:1d:
8d:27:ac:89:3f:eb:9a:de:75:73:ad:0e:38:ac:c8:
1f:52:6d:62:41:6b:9f:0a:b0:63:61:3a:b9:d3:3d:
da:87:0c:ac:ca:ec:94:a7:58:d0:47:bd:15:ad:08:
5f:74:58:94:df:fc:f4:fe:14:66:9e:63:69:ba:45:
92:f6:81:71:cf:0e:e5:82:86:c9:b3:47:02:1c:83:
b8:c8:8a:f4:3e:85:ae:0a:fd:e3:cc:28:76:c5:3a:
c0:53:da:0e:73:b5:fe:a0:b1:95:4b:cb:8f:28:95:
b9:9b:6f:cb:cd:26:a3:f3:17:6c:3a:0c:25:1b:ec:
5a:02:70:63:8a:2b:65:76:33:de:9a:f1:58:56:89:
e8:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:25:C1:BA:0C:99:23:55:ED:88:00:03:81:B3:78:08:12:8F:A8:FC
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F5009C82457B11F19DF571DBCE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.219.64.0/21
154.219.92.0/23
Signature Algorithm: sha256WithRSAEncryption
b1:fd:fa:16:01:fa:32:84:65:3d:08:2e:08:74:c9:1e:1f:c1:
72:32:b0:d0:69:24:3a:2a:84:4c:28:c5:51:66:0c:b7:d6:28:
60:75:4b:33:cd:af:8d:8f:99:61:97:47:db:2d:01:88:ff:1a:
be:d2:36:e6:a8:b9:54:3a:33:9a:39:0c:bf:f3:a8:24:f5:94:
38:4c:be:6b:27:0d:99:52:a1:7b:af:50:96:b2:55:0c:f1:98:
76:3f:de:ba:fa:f8:49:46:14:5f:3b:a0:f0:80:da:12:67:e4:
0c:e5:64:fc:39:f4:e1:6a:55:5d:ce:eb:bb:fe:af:6f:3b:98:
5e:a8:e7:42:22:56:9e:d1:77:0d:8a:f9:29:e7:21:e1:86:4a:
5d:c1:f8:37:cf:92:ba:33:51:a6:06:73:ea:1b:6c:16:ac:31:
b6:e3:58:19:32:76:36:79:b9:ed:23:41:9a:c9:b9:53:cd:28:
11:34:1b:1d:cf:03:08:09:a9:c9:5e:c4:d9:82:83:09:6c:23:
e7:e4:79:73:d0:fb:51:74:93:44:80:e3:0d:84:5e:ff:db:a4:
d6:40:2e:63:13:a5:8f:22:ec:bd:83:9f:89:45:33:fb:27:86:
e0:2c:75:93:60:a3:b2:28:a5:64:e6:14:94:04:71:e9:95:2e:
46:07:44:cf
-----BEGIN CERTIFICATE-----
MIIFijCCBHKgAwIBAgIDAci9MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjYwNTAxMTYzNjQ4WhcNMjYwNjA5MTYzNjQ4WjAYMRYw
FAYDVQQDEw02OWY0ZDZhNC01ODUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEArKIf0FvvrmOEaOKahbouu4k+pTxbBmWlt6v5/uEaOTgfYmOfGK1WZF9R
AW4fsnURF55QcqI/By3Y/bWiKzId4giwbHAq2kqk/hpKrYygmaa+pSU1Kd0iXFqN
2+WnL8NsWoXvNK0WRqclbD0nDj62wFDZua1Fdx2NJ6yJP+ua3nVzrQ44rMgfUm1i
QWufCrBjYTq50z3ahwysyuyUp1jQR70VrQhfdFiU3/z0/hRmnmNpukWS9oFxzw7l
gobJs0cCHIO4yIr0PoWuCv3jzCh2xTrAU9oOc7X+oLGVS8uPKJW5m2/LzSaj8xds
OgwlG+xaAnBjiitldjPemvFYVono5QIDAQABo4ICqzCCAqcwHQYDVR0OBBYEFLol
wboMmSNV7YgAA4GzeAgSj6j8MB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9GNTAwOUM4MjQ1N0IxMUYxOURGNTcxREJDRTFEMzhCMC5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQDmttAAwQBmttcMA0GCSqG
SIb3DQEBCwUAA4IBAQCx/foWAfoyhGU9CC4IdMkeH8FyMrDQaSQ6KoRMKMVRZgy3
1ihgdUszza+Nj5lhl0fbLQGI/xq+0jbmqLlUOjOaOQy/86gk9ZQ4TL5rJw2ZUqF7
r1CWslUM8Zh2P966+vhJRhRfO6DwgNoSZ+QM5WT8OfThalVdzuu7/q9vO5heqOdC
Ilae0XcNivkp5yHhhkpdwfg3z5K6M1GmBnPqG2wWrDG241gZMnY2ebntI0GayblT
zSgRNBsdzwMICanJXsTZgoMJbCPn5Hlz0PtRdJNEgOMNhF7/26TWQC5jE6WPIuy9
g5+JRTP7J4bgLHWTYKOyKKVk5hSUBHHplS5GB0TP
-----END CERTIFICATE-----
Generated at Sat May 9 11:02:05 2026 by rpki-client