Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1FFC056464AF11F1B17FFEAACE1D38B0.roa
File: 1FFC056464AF11F1B17FFEAACE1D38B0.roa (raw, json)
Hash identifier: kHehz8KV1jW9rpYQbMjGzpCy43izeUHBuYj+pUfXiys=
Subject key identifier: D2:B5:82:97:FA:C2:69:51:D3:8A:F2:D0:6F:2D:95:C0:98:70:B1:06
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01D266
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1FFC056464AF11F1B17FFEAACE1D38B0.roa
Signing time: Wed 10 Jun 2026 09:31:15 +0000
ROA not before: Wed 10 Jun 2026 09:31:09 +0000
ROA not after: Fri 10 Jul 2026 09:31:09 +0000
asID: 141883
IP address blocks: 154.86.0.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 15 Jun 2026 00:07:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119398 (0x1d266)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 10 09:31:09 2026 GMT
Not After : Jul 10 09:31:09 2026 GMT
Subject: CN=6a292ee3-4a93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:f9:99:02:46:55:8c:55:fd:2e:0a:54:48:12:
0d:75:77:00:9b:8f:6d:ee:8a:12:a0:86:5d:62:5e:
5e:62:8c:40:5f:20:9b:b3:4a:35:87:40:d3:67:31:
94:82:8c:ab:5c:08:f9:90:df:4a:1a:95:98:9c:79:
3d:8d:47:1a:7f:8b:14:fa:b7:29:89:1c:64:6a:90:
28:c6:9a:e5:91:fe:32:5b:fc:b8:14:36:f0:e5:44:
1f:fc:60:5d:c1:0e:df:95:ec:2b:f5:40:56:ba:c9:
42:c3:e5:c1:bd:fc:e4:6f:14:cb:0d:a3:00:75:93:
ba:70:93:2c:fe:ea:b3:1b:9b:12:87:69:bf:d4:ed:
86:3c:06:6b:50:bc:b5:98:15:d3:17:f9:4b:59:44:
ce:ae:ec:91:36:29:cc:b6:77:7a:9b:ce:5e:75:24:
d9:ec:84:bc:19:ef:ee:06:80:1b:2a:8c:55:76:19:
1d:08:41:a1:17:0c:0e:44:65:72:33:c2:2a:b9:2b:
cb:21:10:4d:84:57:8d:6c:67:8c:29:ce:b2:47:79:
cc:d4:79:1a:a9:60:64:6f:62:2c:8d:52:2b:8a:87:
32:80:d1:4c:12:9e:55:85:a7:01:22:0c:d4:e7:d7:
5e:27:0c:4d:cf:86:5b:8c:1e:6b:ba:30:77:1c:6e:
a8:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:B5:82:97:FA:C2:69:51:D3:8A:F2:D0:6F:2D:95:C0:98:70:B1:06
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1FFC056464AF11F1B17FFEAACE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.86.0.0/24
Signature Algorithm: sha256WithRSAEncryption
18:ef:59:24:d8:44:94:6c:08:82:07:2d:8a:ff:8b:36:e8:a0:
65:23:dd:01:d8:6b:5d:59:42:9d:bb:7f:5b:96:f0:cc:6f:38:
a3:24:76:d0:01:70:dc:1b:42:1c:3c:e5:24:7b:82:1c:b1:fc:
bd:02:96:ad:09:8c:47:aa:c1:ee:16:da:ec:49:89:ca:db:28:
89:be:9e:5f:e1:13:58:e8:c4:e9:b3:fb:b6:09:65:4b:fa:e4:
f1:e2:9c:bb:75:97:f9:1e:f3:a3:e3:c4:84:3e:a3:b3:0c:3c:
b3:91:8e:5c:5b:1b:d6:62:f0:f8:c7:75:66:0e:23:68:37:d9:
df:ca:f7:7a:97:fb:8c:7b:f7:4d:17:9c:ee:e0:96:2c:df:8a:
c6:bc:47:f7:1f:3f:4a:fa:0e:ee:ce:10:d4:f9:50:17:ef:f8:
7e:73:90:8d:4d:c1:e1:08:97:4d:70:b3:fd:30:b8:f1:7a:77:
a8:25:8c:db:cf:da:7b:4e:bf:ea:ea:02:b1:59:07:39:83:d0:
6b:9b:1e:c9:a3:21:10:bf:3a:ac:1d:a7:61:ff:0f:95:00:59:
5b:57:e1:ef:6b:af:bc:d6:a9:5f:d3:97:ce:94:7e:38:00:7a:
5b:e2:1a:fc:db:e3:ea:74:01:00:bc:67:39:7f:70:89:e1:c4:
b5:77:51:0b
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAdJmMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjYwNjEwMDkzMTA5WhcNMjYwNzEwMDkzMTA5WjAYMRYw
FAYDVQQDEw02YTI5MmVlMy00YTkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA3vmZAkZVjFX9LgpUSBINdXcAm49t7ooSoIZdYl5eYoxAXyCbs0o1h0DT
ZzGUgoyrXAj5kN9KGpWYnHk9jUcaf4sU+rcpiRxkapAoxprlkf4yW/y4FDbw5UQf
/GBdwQ7flewr9UBWuslCw+XBvfzkbxTLDaMAdZO6cJMs/uqzG5sSh2m/1O2GPAZr
ULy1mBXTF/lLWUTOruyRNinMtnd6m85edSTZ7IS8Ge/uBoAbKoxVdhkdCEGhFwwO
RGVyM8IquSvLIRBNhFeNbGeMKc6yR3nM1HkaqWBkb2IsjVIriocygNFMEp5VhacB
IgzU59deJwxNz4ZbjB5rujB3HG6oawIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFNK1
gpf6wmlR04ry0G8tlcCYcLEGMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8xRkZDMDU2NDY0QUYxMUYxQjE3RkZFQUFDRTFEMzhCMC5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmlYAMA0GCSqGSIb3DQEB
CwUAA4IBAQAY71kk2ESUbAiCBy2K/4s26KBlI90B2GtdWUKdu39blvDMbzijJHbQ
AXDcG0IcPOUke4Icsfy9ApatCYxHqsHuFtrsSYnK2yiJvp5f4RNY6MTps/u2CWVL
+uTx4py7dZf5HvOj48SEPqOzDDyzkY5cWxvWYvD4x3VmDiNoN9nfyvd6l/uMe/dN
F5zu4JYs34rGvEf3Hz9K+g7uzhDU+VAX7/h+c5CNTcHhCJdNcLP9MLjxeneoJYzb
z9p7Tr/q6gKxWQc5g9Brmx7JoyEQvzqsHadh/w+VAFlbV+Hva6+81qlf05fOlH44
AHpb4hr82+PqdAEAvGc5f3CJ4cS1d1EL
-----END CERTIFICATE-----
Generated at Sat Jun 13 06:51:49 2026 by rpki-client