Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5B2EA668019B11F1A03EB17ADAE4EC9C.roa
File: 5B2EA668019B11F1A03EB17ADAE4EC9C.roa (raw, json)
Hash identifier: FwyyZU46ylAVUc+5o7g46CKuniFJ907d9cmHx7KZHQI=
Subject key identifier: 42:C1:6A:68:75:DE:B5:E9:66:52:C8:32:D1:EB:78:9B:A3:46:28:56
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01B873
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5B2EA668019B11F1A03EB17ADAE4EC9C.roa
Signing time: Wed 04 Feb 2026 07:30:19 +0000
ROA not before: Wed 04 Feb 2026 07:30:13 +0000
ROA not after: Thu 12 Mar 2026 07:30:13 +0000
asID: 138915
IP address blocks: 154.93.50.0/24 maxlen: 24
154.93.51.0/24 maxlen: 24
154.93.54.0/23 maxlen: 24
154.93.56.0/23 maxlen: 24
154.93.58.0/24 maxlen: 24
154.93.59.0/24 maxlen: 24
154.93.60.0/24 maxlen: 24
154.93.61.0/24 maxlen: 24
154.93.62.0/24 maxlen: 24
154.93.63.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 04 Mar 2026 00:07:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112755 (0x1b873)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 4 07:30:13 2026 GMT
Not After : Mar 12 07:30:13 2026 GMT
Subject: CN=6982f58b-6431
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:59:04:5f:85:ce:c1:ef:43:e4:a8:c8:01:94:
75:4a:8d:06:01:b7:ba:41:df:c5:b9:eb:80:dc:dc:
1c:5d:48:5d:12:d4:55:47:f0:a8:0f:59:11:23:13:
37:db:e9:c4:ad:4e:f5:37:1f:b3:1c:11:08:d0:56:
9b:20:99:a3:5b:19:b4:1d:63:9b:d1:fd:f2:8d:e9:
70:1c:1f:3c:7f:a9:0e:e4:eb:0c:9c:93:ec:57:bb:
ad:1f:a7:39:d3:f0:62:fb:d7:56:06:7e:98:5b:9e:
69:4b:ac:aa:d1:0c:43:19:a3:9e:7f:bb:f7:ff:65:
1e:77:48:db:8d:29:a2:23:d6:aa:62:c3:d3:13:e9:
89:d8:3a:4d:36:9f:ce:47:90:d6:4c:f3:f6:fe:70:
5c:18:fb:10:e8:42:83:3d:74:7c:16:f8:02:a5:a6:
0f:d5:74:21:82:15:c9:e8:08:26:37:3e:d8:42:5a:
14:a4:81:fe:ad:1c:c4:20:a1:8b:83:30:b7:92:20:
69:c8:73:7e:fa:c5:62:26:b9:df:8c:ed:0e:04:b6:
19:e7:dc:74:8a:cf:3c:9f:25:64:86:b9:fe:55:57:
ad:82:4c:0d:cf:66:76:47:2d:9e:c4:77:8d:c1:3c:
95:aa:6b:c7:26:7c:98:ac:0b:0e:db:41:48:fc:6c:
64:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:C1:6A:68:75:DE:B5:E9:66:52:C8:32:D1:EB:78:9B:A3:46:28:56
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5B2EA668019B11F1A03EB17ADAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.93.50.0/23
154.93.54.0-154.93.63.255
Signature Algorithm: sha256WithRSAEncryption
d1:cb:22:4b:59:bc:c9:30:63:21:fd:6b:40:27:5d:0c:a5:09:
a6:4d:f7:cf:72:2b:14:5e:16:53:61:45:f0:3f:1a:2c:e6:17:
01:c0:db:66:ea:37:5a:43:df:74:30:c4:0e:66:00:34:85:96:
6a:d0:8f:b5:e0:27:d2:90:cd:4e:09:38:3a:f6:06:49:a7:96:
d6:bc:77:fb:a7:85:f5:d2:f8:17:70:3e:0f:45:52:77:d0:6b:
d7:ad:d9:1b:c7:fe:1b:83:d5:85:d5:65:e5:f5:de:1b:59:db:
28:c2:2f:8b:c5:49:38:7d:7b:cd:b8:58:b6:68:28:32:4c:a5:
26:d0:ec:9a:d8:79:8e:c7:e5:2b:c8:ab:72:2f:37:ba:1b:fc:
f5:9c:2f:88:a0:17:43:53:66:88:62:d3:64:8b:2d:cf:3a:2f:
25:3d:a7:6d:9d:07:db:6d:b7:e3:c3:df:37:f1:09:34:be:b5:
fc:f1:24:6d:bf:c4:29:e0:63:2a:27:1b:92:2c:6a:ef:50:b2:
66:0b:72:54:92:cf:41:e8:bf:8a:0d:4c:f6:a9:cf:1a:7a:73:
d2:01:fa:3e:9f:38:a3:96:b7:5e:e0:64:0d:5f:bc:0d:9e:9e:
f6:bc:4c:96:e1:34:aa:8d:37:8a:de:f5:c3:24:a7:80:a6:b5:
cf:e4:58:bf
-----BEGIN CERTIFICATE-----
MIIFkjCCBHqgAwIBAgIDAbhzMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjYwMjA0MDczMDEzWhcNMjYwMzEyMDczMDEzWjAYMRYw
FAYDVQQDEw02OTgyZjU4Yi02NDMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA2FkEX4XOwe9D5KjIAZR1So0GAbe6Qd/FueuA3NwcXUhdEtRVR/CoD1kR
IxM32+nErU71Nx+zHBEI0FabIJmjWxm0HWOb0f3yjelwHB88f6kO5OsMnJPsV7ut
H6c50/Bi+9dWBn6YW55pS6yq0QxDGaOef7v3/2Ued0jbjSmiI9aqYsPTE+mJ2DpN
Np/OR5DWTPP2/nBcGPsQ6EKDPXR8FvgCpaYP1XQhghXJ6AgmNz7YQloUpIH+rRzE
IKGLgzC3kiBpyHN++sViJrnfjO0OBLYZ59x0is88nyVkhrn+VVetgkwNz2Z2Ry2e
xHeNwTyVqmvHJnyYrAsO20FI/GxkSQIDAQABo4ICszCCAq8wHQYDVR0OBBYEFELB
amh13rXpZlLIMtHreJujRihWMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC81QjJFQTY2ODAxOUIxMUYxQTAzRUIxN0FEQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMC0GCCsGAQUFBwEHAQH/BB4wHDAaBAIAATAUAwQBml0yMAwDBAGaXTYDBAaa
XQAwDQYJKoZIhvcNAQELBQADggEBANHLIktZvMkwYyH9a0AnXQylCaZN989yKxRe
FlNhRfA/GizmFwHA22bqN1pD33QwxA5mADSFlmrQj7XgJ9KQzU4JODr2Bkmnlta8
d/unhfXS+BdwPg9FUnfQa9et2RvH/huD1YXVZeX13htZ2yjCL4vFSTh9e824WLZo
KDJMpSbQ7JrYeY7H5SvIq3IvN7ob/PWcL4igF0NTZohi02SLLc86LyU9p22dB9tt
t+PD3zfxCTS+tfzxJG2/xCngYyonG5Isau9QsmYLclSSz0Hov4oNTPapzxp6c9IB
+j6fOKOWt17gZA1fvA2enva8TJbhNKqNN4re9cMkp4Cmtc/kWL8=
-----END CERTIFICATE-----
Generated at Mon Mar 2 15:06:55 2026 by rpki-client