Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F5C20DA46FB511F19A3442EFCE1D38B0.roa
File: F5C20DA46FB511F19A3442EFCE1D38B0.roa (raw, json)
Hash identifier: SsOdnRi90+8Obpfh93lELrEZTEy20yP+eN08UJ1QVUA=
Subject key identifier: BB:F7:9B:8F:0D:70:D2:9D:E7:A2:91:13:D2:2F:9B:3C:5F:33:01:1E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01D4C3
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F5C20DA46FB511F19A3442EFCE1D38B0.roa
Signing time: Wed 24 Jun 2026 10:17:53 +0000
ROA not before: Wed 24 Jun 2026 10:17:48 +0000
ROA not after: Fri 31 Jul 2026 10:17:48 +0000
asID: 62240
IP address blocks: 154.194.4.0/24 maxlen: 24
154.194.81.0/24 maxlen: 24
154.196.43.0/24 maxlen: 24
154.196.44.0/24 maxlen: 24
154.196.45.0/24 maxlen: 24
154.196.46.0/24 maxlen: 24
154.196.82.0/24 maxlen: 24
154.196.86.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 29 Jun 2026 00:07:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 120003 (0x1d4c3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 24 10:17:48 2026 GMT
Not After : Jul 31 10:17:48 2026 GMT
Subject: CN=6a3baed1-ed5d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:82:c0:4d:6f:63:91:84:53:c3:7f:b9:8b:a4:
08:9f:74:76:bf:b8:e0:85:09:40:8c:dc:e7:3e:ab:
3f:b3:6b:39:35:70:50:d5:a7:fc:40:d8:75:79:32:
36:56:d7:bc:51:81:93:99:29:19:58:ef:69:c2:87:
3e:a3:9f:56:4a:2e:7f:e1:97:2b:d2:e8:88:c8:84:
86:e3:c8:35:1d:c4:af:b0:21:da:d5:5d:5b:73:78:
32:fe:cf:07:ec:2a:ab:51:f5:b3:5f:00:a5:4f:b9:
50:ee:e0:15:bf:17:2b:2c:a1:bc:54:61:bd:78:27:
4f:96:22:6e:91:4b:2d:81:8b:84:dc:61:43:9f:bb:
7b:5c:e1:52:ab:a9:e0:f3:49:ef:97:35:8a:18:df:
8c:ac:76:e8:4e:91:da:de:6e:b4:6b:61:0a:a6:99:
3e:02:a4:13:35:43:ca:dc:b1:cb:c1:64:d3:32:1f:
e0:27:6f:70:42:4b:28:3a:76:16:1a:d2:00:61:a9:
1b:c2:07:b7:57:7f:0d:4a:86:81:4d:ed:90:9f:77:
97:d4:1a:89:65:b9:d3:23:92:dd:d1:c3:c5:ce:77:
14:03:7d:51:7c:eb:69:05:b7:fc:b0:29:22:ae:51:
2c:95:55:4d:03:db:cc:7c:45:33:43:f6:74:41:95:
97:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:F7:9B:8F:0D:70:D2:9D:E7:A2:91:13:D2:2F:9B:3C:5F:33:01:1E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F5C20DA46FB511F19A3442EFCE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.4.0/24
154.194.81.0/24
154.196.43.0-154.196.46.255
154.196.82.0/24
154.196.86.0/24
Signature Algorithm: sha256WithRSAEncryption
91:33:91:42:ac:52:a6:d5:9c:10:fc:9e:9b:8d:cc:80:3b:09:
8e:17:a3:4d:b4:cb:bc:1f:02:8e:af:f5:e7:89:a6:85:ed:dc:
17:df:d8:73:db:70:b8:57:6a:52:ed:5b:43:77:89:80:50:f8:
26:9c:9c:cc:6b:1c:32:16:52:ff:58:c6:54:81:fc:42:68:65:
0c:25:ab:03:f5:e6:f5:b4:72:44:2b:dd:49:45:7f:45:f6:0f:
3c:34:21:29:8c:ff:61:79:9f:28:c7:df:32:43:97:e5:e1:3c:
45:10:a3:6b:36:0f:41:52:36:36:2c:f6:55:cb:0a:4b:86:b4:
88:20:31:c4:0c:ec:f3:7f:53:8f:7b:24:ea:4d:9b:ea:e6:f2:
b8:bb:e9:44:6e:60:e0:8e:73:7c:70:d7:5c:52:0e:0c:7c:55:
8c:3e:b8:8f:97:eb:ff:98:f3:b4:69:1d:06:0f:27:5a:eb:32:
aa:c8:88:37:ab:2f:43:7a:e3:6b:cb:11:2c:87:19:20:6e:33:
6c:68:c6:30:a8:2c:06:72:0b:7e:34:fc:81:2a:c8:e1:17:0f:
c9:54:8a:b2:c5:b9:c4:a5:97:db:bf:e3:dc:d3:76:f2:e7:6a:
bb:89:47:98:bc:7e:3e:a0:49:7a:2c:4b:e9:34:8b:32:93:89:
3a:18:b6:c2
-----BEGIN CERTIFICATE-----
MIIFpDCCBIygAwIBAgIDAdTDMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjYwNjI0MTAxNzQ4WhcNMjYwNzMxMTAxNzQ4WjAYMRYw
FAYDVQQDEw02YTNiYWVkMS1lZDVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAyILATW9jkYRTw3+5i6QIn3R2v7jghQlAjNznPqs/s2s5NXBQ1af8QNh1
eTI2Vte8UYGTmSkZWO9pwoc+o59WSi5/4Zcr0uiIyISG48g1HcSvsCHa1V1bc3gy
/s8H7CqrUfWzXwClT7lQ7uAVvxcrLKG8VGG9eCdPliJukUstgYuE3GFDn7t7XOFS
q6ng80nvlzWKGN+MrHboTpHa3m60a2EKppk+AqQTNUPK3LHLwWTTMh/gJ29wQkso
OnYWGtIAYakbwge3V38NSoaBTe2Qn3eX1BqJZbnTI5Ld0cPFzncUA31RfOtpBbf8
sCkirlEslVVNA9vMfEUzQ/Z0QZWXQQIDAQABo4ICxTCCAsEwHQYDVR0OBBYEFLv3
m48NcNKd56KRE9IvmzxfMwEeMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9GNUMyMERBNDZGQjUxMUYxOUEzNDQyRUZDRTFEMzhCMC5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMD8GCCsGAQUFBwEHAQH/BDAwLjAsBAIAATAmAwQAmsIEAwQAmsJRMAwDBACa
xCsDBACaxC4DBACaxFIDBACaxFYwDQYJKoZIhvcNAQELBQADggEBAJEzkUKsUqbV
nBD8npuNzIA7CY4Xo020y7wfAo6v9eeJpoXt3Bff2HPbcLhXalLtW0N3iYBQ+Cac
nMxrHDIWUv9YxlSB/EJoZQwlqwP15vW0ckQr3UlFf0X2Dzw0ISmM/2F5nyjH3zJD
l+XhPEUQo2s2D0FSNjYs9lXLCkuGtIggMcQM7PN/U497JOpNm+rm8ri76URuYOCO
c3xw11xSDgx8VYw+uI+X6/+Y87RpHQYPJ1rrMqrIiDerL0N642vLESyHGSBuM2xo
xjCoLAZyC340/IEqyOEXD8lUirLFucSll9u/49zTdvLnaruJR5i8fj6gSXosS+k0
izKTiToYtsI=
-----END CERTIFICATE-----
Generated at Sat Jun 27 17:40:22 2026 by rpki-client