Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/59ADB6AA2D9511F1B85280D8DAE4EC9C.roa
File: 59ADB6AA2D9511F1B85280D8DAE4EC9C.roa (raw, json)
Hash identifier: /LWnAgDlTInSXP1k3VMxLdU7iLR8d/+ODINasU66TAI=
Subject key identifier: 60:C7:05:E1:3F:A9:60:7E:BC:17:E3:79:24:C6:57:E0:50:EE:12:53
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C1E3
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/59ADB6AA2D9511F1B85280D8DAE4EC9C.roa
Signing time: Wed 01 Apr 2026 06:38:11 +0000
ROA not before: Wed 01 Apr 2026 06:38:05 +0000
ROA not after: Sat 02 May 2026 06:38:05 +0000
asID: 11427
IP address blocks: 154.85.124.0/22 maxlen: 24
154.88.32.0/22 maxlen: 24
154.88.44.0/22 maxlen: 24
154.88.48.0/22 maxlen: 24
154.88.60.0/22 maxlen: 24
154.90.160.0/21 maxlen: 24
154.90.176.0/21 maxlen: 24
154.90.192.0/19 maxlen: 24
154.94.16.0/20 maxlen: 24
154.94.240.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 16:08:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115171 (0x1c1e3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 1 06:38:05 2026 GMT
Not After : May 2 06:38:05 2026 GMT
Subject: CN=69ccbd52-f88f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:a1:dc:d4:73:3d:d3:1b:5b:61:f6:e3:59:36:
4f:c4:76:97:50:1b:b2:6a:0d:f5:0f:e9:00:55:0d:
72:23:97:bf:b8:7d:e2:d2:71:32:56:f6:35:53:72:
9b:f3:f7:6c:75:67:f9:95:97:63:ac:f2:21:e0:6b:
04:f4:de:ce:ee:63:f0:04:f8:bc:f4:a1:8c:05:19:
71:ab:74:27:c8:4f:13:0d:c2:74:06:a2:a0:54:d1:
00:01:1a:e8:10:34:ce:28:ed:5b:5c:6b:59:ad:e0:
38:02:a5:bb:8a:b3:32:e5:11:6b:29:09:db:ba:e0:
72:65:2c:33:8b:aa:42:5a:63:f4:94:07:c9:d5:6b:
ee:f0:34:14:a9:3d:1e:50:c0:fe:5a:0e:14:f2:a1:
b9:18:ef:d3:d2:52:90:49:62:d1:a6:65:dc:20:d9:
f6:e2:e7:e8:24:21:5b:6b:0c:4f:c2:b1:30:24:76:
24:d2:0d:8a:10:85:a8:ec:ad:f5:10:41:31:ae:c0:
86:0e:08:4b:67:dd:ee:4e:90:57:d8:25:f9:2b:16:
9c:46:ce:54:ce:3e:58:d9:f4:ad:8c:ec:51:e3:a2:
aa:7f:ca:3f:2a:6c:5d:3c:92:4f:34:67:dd:16:3c:
69:35:ba:b8:1c:67:e9:e2:5c:f4:6d:39:c5:f7:8b:
b7:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:C7:05:E1:3F:A9:60:7E:BC:17:E3:79:24:C6:57:E0:50:EE:12:53
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/59ADB6AA2D9511F1B85280D8DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.85.124.0/22
154.88.32.0/22
154.88.44.0-154.88.51.255
154.88.60.0/22
154.90.160.0/21
154.90.176.0/21
154.90.192.0/19
154.94.16.0/20
154.94.240.0/20
Signature Algorithm: sha256WithRSAEncryption
d2:21:af:73:76:d4:94:b0:fe:95:fc:ec:c4:e2:73:c1:30:52:
a5:26:8b:b3:94:95:d5:f6:72:ac:2e:ce:e5:79:ba:80:05:0d:
b7:b9:ca:ec:78:75:d5:2f:9e:26:b2:ad:ca:15:32:30:ac:7d:
52:a8:f1:ae:01:38:45:36:72:bd:ed:ff:27:1a:9f:e5:00:8a:
cc:78:8f:94:a1:c4:18:65:52:b3:38:e6:36:23:08:e3:09:56:
7f:1f:dc:28:e6:68:f8:5e:e4:95:8b:59:fa:b9:74:78:1e:9a:
06:55:61:d1:12:64:76:9a:85:1a:93:d7:f2:0f:9f:7c:3c:71:
8e:8b:ed:a1:dc:3d:55:fc:66:3c:5f:b7:69:b5:67:3f:50:f4:
3d:50:47:55:94:ec:c1:2d:0a:d7:be:46:cc:e4:4e:2f:31:53:
74:33:3d:b8:00:1b:fb:ea:cc:73:76:3d:12:d9:d1:56:90:f2:
b9:e2:ae:71:a8:d0:c8:f6:1e:77:3d:44:be:d9:4e:62:c4:97:
cb:95:9b:71:72:01:a5:83:6c:9f:e3:17:46:48:2f:f3:eb:3f:
79:df:96:b0:ca:23:60:2b:58:bd:a1:4a:25:c5:3e:e8:dd:3b:
bd:37:a5:8f:68:d9:6d:d7:21:93:4d:27:04:2a:a2:63:a0:8d:
32:4e:00:de
-----BEGIN CERTIFICATE-----
MIIFvDCCBKSgAwIBAgIDAcHjMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjYwNDAxMDYzODA1WhcNMjYwNTAyMDYzODA1WjAYMRYw
FAYDVQQDEw02OWNjYmQ1Mi1mODhmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAr6Hc1HM90xtbYfbjWTZPxHaXUBuyag31D+kAVQ1yI5e/uH3i0nEyVvY1
U3Kb8/dsdWf5lZdjrPIh4GsE9N7O7mPwBPi89KGMBRlxq3QnyE8TDcJ0BqKgVNEA
ARroEDTOKO1bXGtZreA4AqW7irMy5RFrKQnbuuByZSwzi6pCWmP0lAfJ1Wvu8DQU
qT0eUMD+Wg4U8qG5GO/T0lKQSWLRpmXcINn24ufoJCFbawxPwrEwJHYk0g2KEIWo
7K31EEExrsCGDghLZ93uTpBX2CX5KxacRs5Uzj5Y2fStjOxR46Kqf8o/KmxdPJJP
NGfdFjxpNbq4HGfp4lz0bTnF94u3BwIDAQABo4IC3TCCAtkwHQYDVR0OBBYEFGDH
BeE/qWB+vBfjeSTGV+BQ7hJTMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC81OUFEQjZBQTJEOTUxMUYxQjg1MjgwRDhEQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMFcGCCsGAQUFBwEHAQH/BEgwRjBEBAIAATA+AwQCmlV8AwQCmlggMAwDBAKa
WCwDBAKaWDADBAKaWDwDBAOaWqADBAOaWrADBAWaWsADBASaXhADBASaXvAwDQYJ
KoZIhvcNAQELBQADggEBANIhr3N21JSw/pX87MTic8EwUqUmi7OUldX2cqwuzuV5
uoAFDbe5yux4ddUvniayrcoVMjCsfVKo8a4BOEU2cr3t/ycan+UAisx4j5ShxBhl
UrM45jYjCOMJVn8f3CjmaPhe5JWLWfq5dHgemgZVYdESZHaahRqT1/IPn3w8cY6L
7aHcPVX8Zjxft2m1Zz9Q9D1QR1WU7MEtCte+RszkTi8xU3QzPbgAG/vqzHN2PRLZ
0VaQ8rnirnGo0Mj2Hnc9RL7ZTmLEl8uVm3FyAaWDbJ/jF0ZIL/PrP3nflrDKI2Ar
WL2hSiXFPujdO703pY9o2W3XIZNNJwQqomOgjTJOAN4=
-----END CERTIFICATE-----
Generated at Fri Apr 17 22:56:37 2026 by rpki-client