Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FD77548643A111F1B0A8CBA1CE1D38B0.roa
File: FD77548643A111F1B0A8CBA1CE1D38B0.roa (raw, json)
Hash identifier: SEdvZdWQiVk8MonMnQ4x2BLNiY/rC7pbEO3FfJ8Vnj4=
Subject key identifier: FB:20:E7:25:9F:8B:25:76:A7:9F:C3:B4:06:EF:C7:A8:D8:CE:F2:AE
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C7CC
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FD77548643A111F1B0A8CBA1CE1D38B0.roa
Signing time: Wed 29 Apr 2026 08:04:05 +0000
ROA not before: Wed 29 Apr 2026 08:03:59 +0000
ROA not after: Wed 27 May 2026 08:03:59 +0000
asID: 147176
IP address blocks: 154.83.25.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 11 May 2026 00:07:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116684 (0x1c7cc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 29 08:03:59 2026 GMT
Not After : May 27 08:03:59 2026 GMT
Subject: CN=69f1bb75-5f28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:9b:4f:3e:2a:73:58:77:4f:31:7b:a7:a6:34:
71:9c:ef:5a:df:24:85:f5:56:0e:f8:7d:51:99:a6:
22:69:53:25:09:61:0c:95:6b:b7:78:f6:d9:4d:00:
60:6c:bf:46:42:08:21:91:cc:2c:c5:1e:10:68:23:
63:a6:fc:36:7b:d2:5b:77:1e:18:c1:9e:1a:70:91:
3c:0e:d5:1e:3b:3b:fe:8e:69:c3:21:d5:15:d2:a4:
64:6e:54:6c:c6:fd:7c:35:5f:01:b5:a0:bf:9d:86:
7c:28:ae:61:b3:d9:74:4c:19:d8:78:ce:9c:93:ab:
7c:b9:4c:3d:97:30:54:1e:ff:5b:3a:67:ea:4d:a0:
47:16:39:3d:ff:61:cf:73:15:10:60:02:ed:45:15:
8a:e4:02:a2:dc:74:28:02:bf:93:48:db:e7:da:76:
f0:3b:ed:be:fa:e5:08:67:6d:68:de:84:00:87:f0:
47:c8:1e:89:0e:a1:85:ef:44:84:29:12:be:6a:68:
5b:cd:62:42:a5:32:e3:c5:70:b3:08:36:80:37:a9:
56:4d:5f:3d:57:4d:57:36:ce:05:44:1e:1f:2d:a6:
d2:d5:15:27:9d:69:8b:72:42:fd:f4:d2:82:50:b1:
a8:90:41:47:ba:12:23:6d:c8:ea:f5:76:16:f4:4f:
77:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:20:E7:25:9F:8B:25:76:A7:9F:C3:B4:06:EF:C7:A8:D8:CE:F2:AE
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FD77548643A111F1B0A8CBA1CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.83.25.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:57:28:e4:99:dd:1a:b4:81:61:f4:89:7c:61:1a:d1:17:ee:
b6:d6:32:5a:b8:d4:6b:33:3d:1b:63:32:fc:48:90:da:61:8b:
11:83:f0:68:0c:e3:e4:34:10:47:65:dc:b5:c5:88:12:e7:f0:
f1:21:71:f2:64:e3:a1:73:f6:8b:70:52:15:82:e0:da:cd:c9:
70:ca:8a:f6:59:11:97:37:da:b4:36:c5:d8:c6:12:86:b5:25:
89:3d:24:f8:3e:45:d3:8a:a2:54:43:ba:aa:65:21:f6:7e:69:
30:18:b1:27:ec:bd:24:81:dc:ae:6f:ef:13:43:39:d7:48:f8:
77:49:c3:fa:e0:e6:8f:77:83:24:e9:66:d0:35:67:8c:5d:9f:
30:33:43:bc:ab:64:d6:31:d7:04:cf:ef:49:52:42:14:39:b2:
b6:d5:fd:cf:11:e8:17:e8:f0:87:92:5d:0d:db:e7:b4:a5:4d:
c1:df:4c:45:82:7c:cc:7f:11:8f:51:de:d2:80:36:11:18:65:
cc:c8:92:d0:04:a5:95:15:cf:72:68:0d:c7:94:ff:32:14:7d:
51:2f:1b:27:4a:4e:37:1b:5a:8f:c2:59:4f:96:79:51:06:44:
1a:6d:c3:39:3b:03:e5:61:21:14:3f:4e:cf:45:fa:c9:3e:79:
ae:ad:f1:5b
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAcfMMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjYwNDI5MDgwMzU5WhcNMjYwNTI3MDgwMzU5WjAYMRYw
FAYDVQQDEw02OWYxYmI3NS01ZjI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA4ptPPipzWHdPMXunpjRxnO9a3ySF9VYO+H1RmaYiaVMlCWEMlWu3ePbZ
TQBgbL9GQgghkcwsxR4QaCNjpvw2e9Jbdx4YwZ4acJE8DtUeOzv+jmnDIdUV0qRk
blRsxv18NV8BtaC/nYZ8KK5hs9l0TBnYeM6ck6t8uUw9lzBUHv9bOmfqTaBHFjk9
/2HPcxUQYALtRRWK5AKi3HQoAr+TSNvn2nbwO+2++uUIZ21o3oQAh/BHyB6JDqGF
70SEKRK+amhbzWJCpTLjxXCzCDaAN6lWTV89V01XNs4FRB4fLabS1RUnnWmLckL9
9NKCULGokEFHuhIjbcjq9XYW9E939wIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFPsg
5yWfiyV2p5/DtAbvx6jYzvKuMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9GRDc3NTQ4NjQzQTExMUYxQjBBOENCQTFDRTFEMzhCMC5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmlMZMA0GCSqGSIb3DQEB
CwUAA4IBAQCnVyjkmd0atIFh9Il8YRrRF+621jJauNRrMz0bYzL8SJDaYYsRg/Bo
DOPkNBBHZdy1xYgS5/DxIXHyZOOhc/aLcFIVguDazclwyor2WRGXN9q0NsXYxhKG
tSWJPST4PkXTiqJUQ7qqZSH2fmkwGLEn7L0kgdyub+8TQznXSPh3ScP64OaPd4Mk
6WbQNWeMXZ8wM0O8q2TWMdcEz+9JUkIUObK21f3PEegX6PCHkl0N2+e0pU3B30xF
gnzMfxGPUd7SgDYRGGXMyJLQBKWVFc9yaA3HlP8yFH1RLxsnSk43G1qPwllPlnlR
BkQabcM5OwPlYSEUP07PRfrJPnmurfFb
-----END CERTIFICATE-----
Generated at Sat May 9 10:59:56 2026 by rpki-client