Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1C5CCADE00D111F191B2D89FDAE4EC9C.roa
File: 1C5CCADE00D111F191B2D89FDAE4EC9C.roa (raw, json)
Hash identifier: UuJxypknvAquHlOD6YjZJ6GgC5doQ80RyG7iEsgBXBQ=
Subject key identifier: F9:73:BA:3C:13:AD:37:CB:F6:06:D3:10:6F:CF:F6:62:E9:4C:BB:44
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01B862
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1C5CCADE00D111F191B2D89FDAE4EC9C.roa
Signing time: Tue 03 Feb 2026 07:22:35 +0000
ROA not before: Tue 03 Feb 2026 07:22:30 +0000
ROA not after: Sun 08 Mar 2026 07:22:30 +0000
asID: 45194
IP address blocks: 154.84.200.0/24 maxlen: 24
154.84.201.0/24 maxlen: 24
154.84.202.0/24 maxlen: 24
154.84.203.0/24 maxlen: 24
154.84.204.0/24 maxlen: 24
154.84.205.0/24 maxlen: 24
154.84.252.0/24 maxlen: 24
154.84.253.0/24 maxlen: 24
154.84.254.0/24 maxlen: 24
154.84.255.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 03 Mar 2026 00:07:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112738 (0x1b862)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 3 07:22:30 2026 GMT
Not After : Mar 8 07:22:30 2026 GMT
Subject: CN=6981a23b-f9a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:83:50:c8:a5:02:8e:dc:6e:d4:da:46:aa:01:
53:4d:fa:9a:bb:da:44:f7:0d:34:a5:e0:be:1f:bc:
80:ce:a3:68:d0:2d:ee:df:6a:1c:a8:d8:4f:92:04:
0f:44:50:8d:77:5b:0b:0d:81:76:06:0c:f8:2f:84:
c7:86:60:77:b3:e7:43:b9:0c:c9:c4:49:b0:49:43:
be:b7:f1:2e:ab:33:f5:60:c0:f8:de:87:87:95:8f:
1e:b6:23:78:a8:6a:0d:ae:02:fe:39:46:33:5d:0f:
31:fb:6a:f3:3c:8d:a8:75:5b:22:81:b0:66:4a:49:
ea:c2:c6:33:5d:4b:8b:50:48:57:64:13:79:58:e1:
1c:19:3c:e6:b7:a9:f9:b2:6c:a9:d4:86:f6:a0:84:
29:a9:d2:d0:f9:65:6b:52:03:1f:dd:77:9e:69:8c:
b2:8e:6c:09:0e:a0:52:f3:c2:dc:66:59:38:2e:ec:
0a:35:c3:bb:2a:b7:bd:3e:b1:cf:be:81:61:49:78:
eb:a9:62:84:bd:d1:2e:0b:66:03:81:58:11:f7:44:
69:3f:d9:f1:de:ee:52:af:69:2b:4e:42:d1:a3:af:
fd:6b:d2:4b:e0:05:27:57:6e:1a:cc:2d:a7:ef:a9:
aa:97:c9:39:1e:66:91:0f:ea:80:c3:39:25:0e:95:
76:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:73:BA:3C:13:AD:37:CB:F6:06:D3:10:6F:CF:F6:62:E9:4C:BB:44
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1C5CCADE00D111F191B2D89FDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.84.200.0-154.84.205.255
154.84.252.0/22
Signature Algorithm: sha256WithRSAEncryption
77:2b:25:8e:7c:64:51:7c:f3:b3:b5:49:03:2d:4c:b8:18:1f:
5c:33:51:1e:35:ec:db:0d:0c:46:f7:8c:55:2b:1a:35:ce:e2:
24:05:86:de:fc:4c:5a:9b:df:84:76:a0:f6:e0:6f:a6:7f:58:
a4:35:10:58:20:a0:f9:c0:bf:49:aa:90:92:19:54:a3:24:5c:
f3:b3:d6:3c:16:96:02:c9:e5:af:88:08:c3:5e:55:79:3f:b1:
ed:e7:e2:d7:0f:00:15:66:7a:2d:27:5b:59:1a:af:bc:fe:2d:
15:80:95:45:66:76:77:7d:c3:55:4e:5e:f9:0c:9a:67:3d:a8:
f8:1f:e1:6a:30:62:6a:30:64:d8:c7:88:b8:5e:39:f1:4b:59:
75:13:1b:ca:74:b3:6c:75:f7:79:96:24:dd:ec:e9:80:bf:cc:
b5:a2:f3:d6:04:32:24:c2:06:67:f6:c5:c9:37:08:6a:fe:db:
33:4f:54:1d:84:39:e5:0d:b7:ce:5c:fd:1e:46:54:39:58:29:
cd:73:26:34:5b:9d:1d:67:fa:6c:45:90:48:03:2f:9a:1b:91:
c3:8a:ed:2f:da:e8:d6:c0:c2:d2:fc:a8:27:6d:52:88:8f:21:
52:d2:75:b2:1e:75:0e:40:38:2e:dd:6a:65:75:2a:fa:ea:ce:
66:51:16:41
-----BEGIN CERTIFICATE-----
MIIFkjCCBHqgAwIBAgIDAbhiMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjYwMjAzMDcyMjMwWhcNMjYwMzA4MDcyMjMwWjAYMRYw
FAYDVQQDEw02OTgxYTIzYi1mOWE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAs4NQyKUCjtxu1NpGqgFTTfqau9pE9w00peC+H7yAzqNo0C3u32ocqNhP
kgQPRFCNd1sLDYF2Bgz4L4THhmB3s+dDuQzJxEmwSUO+t/EuqzP1YMD43oeHlY8e
tiN4qGoNrgL+OUYzXQ8x+2rzPI2odVsigbBmSknqwsYzXUuLUEhXZBN5WOEcGTzm
t6n5smyp1Ib2oIQpqdLQ+WVrUgMf3XeeaYyyjmwJDqBS88LcZlk4LuwKNcO7Kre9
PrHPvoFhSXjrqWKEvdEuC2YDgVgR90RpP9nx3u5Sr2krTkLRo6/9a9JL4AUnV24a
zC2n76mql8k5HmaRD+qAwzklDpV2pwIDAQABo4ICszCCAq8wHQYDVR0OBBYEFPlz
ujwTrTfL9gbTEG/P9mLpTLtEMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8xQzVDQ0FERTAwRDExMUYxOTFCMkQ4OUZEQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMC0GCCsGAQUFBwEHAQH/BB4wHDAaBAIAATAUMAwDBAOaVMgDBAGaVMwDBAKa
VPwwDQYJKoZIhvcNAQELBQADggEBAHcrJY58ZFF887O1SQMtTLgYH1wzUR417NsN
DEb3jFUrGjXO4iQFht78TFqb34R2oPbgb6Z/WKQ1EFggoPnAv0mqkJIZVKMkXPOz
1jwWlgLJ5a+ICMNeVXk/se3n4tcPABVmei0nW1kar7z+LRWAlUVmdnd9w1VOXvkM
mmc9qPgf4WowYmowZNjHiLheOfFLWXUTG8p0s2x193mWJN3s6YC/zLWi89YEMiTC
Bmf2xck3CGr+2zNPVB2EOeUNt85c/R5GVDlYKc1zJjRbnR1n+mxFkEgDL5obkcOK
7S/a6NbAwtL8qCdtUoiPIVLSdbIedQ5AOC7damV1KvrqzmZRFkE=
-----END CERTIFICATE-----
Generated at Sun Mar 1 20:06:31 2026 by rpki-client