Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/386F2B9E582511F1A48CAEF3CE1D38B0.roa
File: 386F2B9E582511F1A48CAEF3CE1D38B0.roa (raw, json)
Hash identifier: pYPNms08ilX30aseg72wBhVi9qYXp8NIisCOeThdLes=
Subject key identifier: 13:7A:12:B1:B6:A2:F9:A9:E8:02:AE:BF:EA:90:FB:F4:D6:8F:4B:05
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01CF6C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/386F2B9E582511F1A48CAEF3CE1D38B0.roa
Signing time: Mon 25 May 2026 10:33:51 +0000
ROA not before: Mon 25 May 2026 10:33:46 +0000
ROA not after: Wed 19 May 2027 10:33:46 +0000
asID: 328608
IP address blocks: 154.200.207.0/24 maxlen: 24
154.200.208.0/24 maxlen: 24
154.200.209.0/24 maxlen: 24
154.200.210.0/24 maxlen: 24
154.200.211.0/24 maxlen: 24
154.200.212.0/24 maxlen: 24
154.200.213.0/24 maxlen: 24
154.200.214.0/24 maxlen: 24
154.200.215.0/24 maxlen: 24
154.200.216.0/24 maxlen: 24
154.200.217.0/24 maxlen: 24
154.200.218.0/24 maxlen: 24
154.200.219.0/24 maxlen: 24
154.200.220.0/24 maxlen: 24
154.200.221.0/24 maxlen: 24
154.200.222.0/24 maxlen: 24
154.200.223.0/24 maxlen: 24
154.200.224.0/24 maxlen: 24
154.200.225.0/24 maxlen: 24
154.200.226.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 15 Jun 2026 00:07:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118636 (0x1cf6c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 25 10:33:46 2026 GMT
Not After : May 19 10:33:46 2027 GMT
Subject: CN=6a14258f-2922
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:63:07:69:09:b5:fe:17:0e:d4:0e:63:93:4a:
64:67:fc:59:70:71:52:4c:05:c6:da:54:89:ca:ba:
a9:bc:9c:85:82:b3:ac:86:b0:ae:64:cd:b2:13:96:
74:f7:b9:b6:db:a6:32:e7:13:a4:49:be:e3:a3:84:
34:01:b1:3a:bc:f8:ff:db:a5:b9:f3:03:91:48:06:
98:60:3e:08:30:af:a3:b3:4f:73:ea:11:40:f6:a3:
5a:6b:95:b0:eb:e6:ae:ab:92:0f:e1:f2:05:b2:93:
b9:d0:a9:b1:f2:fa:34:01:b8:cc:f5:e6:ff:26:6b:
93:48:a3:1f:38:e3:89:34:a9:97:01:b4:95:f2:10:
b4:c3:b3:04:f9:27:a9:6a:d1:2d:ad:4f:f4:f5:6b:
f2:2d:48:ea:4f:8e:56:b2:be:ab:4c:bb:d9:17:d9:
3b:28:0c:96:7d:ec:51:b4:5a:df:2a:ee:62:ff:9d:
67:a6:c8:3d:7c:28:e0:18:d8:e9:b8:e6:de:8a:a5:
5b:27:43:d8:f2:07:f8:7a:7a:66:11:05:fd:b6:54:
35:80:15:59:fc:2a:4e:5e:f6:b8:87:5f:24:f6:96:
65:cf:a4:be:7a:46:80:d6:dc:df:8b:fe:17:a5:7e:
4a:2f:2a:f5:39:63:8c:ea:26:bd:25:6b:03:c5:3b:
32:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:7A:12:B1:B6:A2:F9:A9:E8:02:AE:BF:EA:90:FB:F4:D6:8F:4B:05
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/386F2B9E582511F1A48CAEF3CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.200.207.0-154.200.226.255
Signature Algorithm: sha256WithRSAEncryption
c3:28:3b:71:56:a5:c2:c4:8d:09:24:de:57:c2:89:ed:dc:09:
d8:43:5f:6b:e3:72:81:eb:54:90:dc:6f:45:98:dc:16:b8:de:
6f:7f:91:67:3e:dc:66:e2:d3:f1:67:18:d3:69:6a:08:6f:51:
4e:b9:84:26:50:a7:82:c4:e4:09:a8:3f:56:87:fe:49:af:1c:
db:07:b0:4a:1f:0f:54:a0:44:ca:77:3a:03:9b:ca:5e:af:cc:
9c:c6:8f:be:dc:51:1d:25:bc:e8:1c:dc:e0:b7:1d:be:c3:a8:
cb:fe:96:a3:e7:e4:0c:97:1b:57:73:5a:cd:08:ed:1e:c3:57:
25:b1:f1:9b:64:12:ac:c1:d3:3a:b1:8f:3e:74:b3:14:94:ca:
08:4f:f4:83:0e:dc:fb:ff:4b:29:5f:09:b5:0b:85:35:0c:02:
c1:d6:75:b6:b5:da:cd:07:e1:f2:bb:09:0c:33:b9:58:cc:f2:
9d:31:8c:ae:47:66:96:74:4b:b8:d3:63:04:b3:c5:ca:a5:6f:
3d:c6:f9:bd:51:52:87:98:02:cb:88:f6:d1:4c:dd:f1:75:ab:
df:1a:b8:30:76:35:3d:64:5e:fb:b7:17:d4:3a:3d:9b:d3:2d:
df:f0:20:7b:10:c3:6d:0e:8b:9a:b6:7a:f0:2d:29:eb:94:e5:
6f:9b:7c:3e
-----BEGIN CERTIFICATE-----
MIIFjDCCBHSgAwIBAgIDAc9sMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjYwNTI1MTAzMzQ2WhcNMjcwNTE5MTAzMzQ2WjAYMRYw
FAYDVQQDEw02YTE0MjU4Zi0yOTIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAtWMHaQm1/hcO1A5jk0pkZ/xZcHFSTAXG2lSJyrqpvJyFgrOshrCuZM2y
E5Z097m226Yy5xOkSb7jo4Q0AbE6vPj/26W58wORSAaYYD4IMK+js09z6hFA9qNa
a5Ww6+auq5IP4fIFspO50Kmx8vo0AbjM9eb/JmuTSKMfOOOJNKmXAbSV8hC0w7ME
+SepatEtrU/09WvyLUjqT45Wsr6rTLvZF9k7KAyWfexRtFrfKu5i/51npsg9fCjg
GNjpuObeiqVbJ0PY8gf4enpmEQX9tlQ1gBVZ/CpOXva4h18k9pZlz6S+ekaA1tzf
i/4XpX5KLyr1OWOM6ia9JWsDxTsyaQIDAQABo4ICrTCCAqkwHQYDVR0OBBYEFBN6
ErG2ovmp6AKuv+qQ+/TWj0sFMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8zODZGMkI5RTU4MjUxMUYxQTQ4Q0FFRjNDRTFEMzhCMC5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOMAwDBACayM8DBACayOIwDQYJ
KoZIhvcNAQELBQADggEBAMMoO3FWpcLEjQkk3lfCie3cCdhDX2vjcoHrVJDcb0WY
3Ba43m9/kWc+3Gbi0/FnGNNpaghvUU65hCZQp4LE5AmoP1aH/kmvHNsHsEofD1Sg
RMp3OgObyl6vzJzGj77cUR0lvOgc3OC3Hb7DqMv+lqPn5AyXG1dzWs0I7R7DVyWx
8ZtkEqzB0zqxjz50sxSUyghP9IMO3Pv/SylfCbULhTUMAsHWdba12s0H4fK7CQwz
uVjM8p0xjK5HZpZ0S7jTYwSzxcqlbz3G+b1RUoeYAsuI9tFM3fF1q98auDB2NT1k
Xvu3F9Q6PZvTLd/wIHsQw20Oi5q2evAtKeuU5W+bfD4=
-----END CERTIFICATE-----
Generated at Sat Jun 13 05:54:37 2026 by rpki-client