Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8B223F985A6411F1A785B61BCF1D38B0.roa
File: 8B223F985A6411F1A785B61BCF1D38B0.roa (raw, json)
Hash identifier: 6pE4wMgmL0ZV87/RxkhHOccnYXusRPa5CNXVldbwHMU=
Subject key identifier: 2C:A0:75:E2:89:90:A2:2B:45:D9:AF:26:BB:81:A9:BE:36:3B:52:1B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01D014
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8B223F985A6411F1A785B61BCF1D38B0.roa
Signing time: Thu 28 May 2026 07:12:10 +0000
ROA not before: Thu 28 May 2026 07:12:06 +0000
ROA not after: Wed 01 Jul 2026 07:12:06 +0000
asID: 62240
IP address blocks: 154.85.26.0/24 maxlen: 24
154.85.97.0/24 maxlen: 24
154.85.99.0/24 maxlen: 24
154.90.1.0/24 maxlen: 24
154.90.129.0/24 maxlen: 24
154.90.130.0/24 maxlen: 24
154.90.131.0/24 maxlen: 24
154.90.142.0/24 maxlen: 24
154.90.143.0/24 maxlen: 24
154.90.172.0/24 maxlen: 24
154.90.173.0/24 maxlen: 24
154.94.34.0/24 maxlen: 24
154.94.39.0/24 maxlen: 24
154.94.42.0/24 maxlen: 24
154.94.45.0/24 maxlen: 24
154.94.57.0/24 maxlen: 24
154.94.58.0/24 maxlen: 24
154.94.61.0/24 maxlen: 24
154.94.62.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 15 Jun 2026 00:07:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118804 (0x1d014)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 28 07:12:06 2026 GMT
Not After : Jul 1 07:12:06 2026 GMT
Subject: CN=6a17eaca-1646
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:0a:08:15:dd:d1:7a:5a:3e:4e:2e:26:6c:21:
c7:8a:b5:d5:a0:18:44:06:b5:93:fa:3c:62:69:a5:
89:d8:81:8a:05:a8:d8:e7:9f:94:17:91:92:5d:ac:
33:e7:1e:02:0c:03:18:fb:4f:de:ef:23:ce:92:03:
50:80:46:8e:0b:ff:4c:9c:cb:64:13:0a:2d:1a:8f:
89:c3:8f:68:cc:54:60:61:23:a3:48:90:d2:6f:48:
f1:78:f7:ce:69:92:02:7d:17:83:95:0c:da:bb:58:
db:51:a2:17:1e:ce:a6:ca:86:77:7e:54:de:ef:ab:
8c:6b:a0:50:62:75:a5:f2:cd:83:c7:37:48:95:8e:
38:46:4d:e2:e8:5c:82:20:76:10:ee:03:17:8b:4a:
f7:0b:e0:e9:21:59:b5:43:29:b6:e7:c1:de:b9:9d:
31:82:a1:60:db:8d:e4:ef:ab:7e:0f:74:2c:0f:c4:
51:bb:98:5c:fa:3a:20:bd:7f:7c:bf:00:a1:7d:ed:
1c:00:ed:58:8d:30:80:5a:88:f5:73:85:26:44:cc:
40:61:49:c4:d0:5c:1e:26:15:e0:47:a6:9e:2d:e9:
cc:8a:10:93:f5:17:d8:0a:12:55:5f:dd:09:24:ec:
c6:a8:3a:19:38:7b:b9:f6:76:85:2e:85:7a:d1:ff:
aa:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:A0:75:E2:89:90:A2:2B:45:D9:AF:26:BB:81:A9:BE:36:3B:52:1B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8B223F985A6411F1A785B61BCF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.85.26.0/24
154.85.97.0/24
154.85.99.0/24
154.90.1.0/24
154.90.129.0-154.90.131.255
154.90.142.0/23
154.90.172.0/23
154.94.34.0/24
154.94.39.0/24
154.94.42.0/24
154.94.45.0/24
154.94.57.0-154.94.58.255
154.94.61.0-154.94.62.255
Signature Algorithm: sha256WithRSAEncryption
b2:e0:a8:e7:14:97:b6:13:00:de:d5:05:94:86:66:e1:70:6b:
db:6e:1a:af:1d:8d:10:bc:da:96:a7:9e:b0:be:44:2a:df:17:
b9:9a:f2:d1:a9:f0:d3:ee:7d:2c:09:3a:7d:84:65:d9:6d:c1:
4e:22:89:10:01:e0:0e:dc:cf:24:de:c2:6a:26:1a:13:48:66:
6e:80:26:5a:ac:6d:05:50:b3:d4:04:4f:ef:69:65:65:36:7d:
de:c9:34:14:f5:4c:d5:5c:59:10:8c:b5:23:c1:80:45:2e:89:
9e:2d:d1:50:b3:25:22:d3:41:74:97:82:bf:e7:20:ac:52:bd:
2f:a4:c6:5c:09:4b:f0:0a:b5:c8:40:8b:9c:fd:fe:b0:cf:6d:
39:c9:d6:99:2c:ca:20:21:23:c1:80:1e:7d:81:c5:4c:79:73:
02:50:08:a8:f1:ce:81:a4:f7:78:29:18:ee:f1:c3:52:6a:ec:
8c:e0:31:58:c0:4d:56:73:b2:52:1c:78:a1:30:56:d1:d4:6a:
89:6b:5a:a1:f1:ae:04:e9:95:23:48:42:5c:16:57:d8:fb:8c:
11:57:2d:69:96:74:63:e3:3a:81:d9:ff:09:e6:f3:ab:6a:51:
86:ac:70:25:fa:c1:c2:26:ec:70:66:ff:0c:eb:ba:63:20:82:
39:78:91:89
-----BEGIN CERTIFICATE-----
MIIF5DCCBMygAwIBAgIDAdAUMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjYwNTI4MDcxMjA2WhcNMjYwNzAxMDcxMjA2WjAYMRYw
FAYDVQQDEw02YTE3ZWFjYS0xNjQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA0woIFd3Relo+Ti4mbCHHirXVoBhEBrWT+jxiaaWJ2IGKBajY55+UF5GS
Xawz5x4CDAMY+0/e7yPOkgNQgEaOC/9MnMtkEwotGo+Jw49ozFRgYSOjSJDSb0jx
ePfOaZICfReDlQzau1jbUaIXHs6myoZ3flTe76uMa6BQYnWl8s2DxzdIlY44Rk3i
6FyCIHYQ7gMXi0r3C+DpIVm1Qym258HeuZ0xgqFg243k76t+D3QsD8RRu5hc+jog
vX98vwChfe0cAO1YjTCAWoj1c4UmRMxAYUnE0FweJhXgR6aeLenMihCT9RfYChJV
X90JJOzGqDoZOHu59naFLoV60f+qgwIDAQABo4IDBTCCAwEwHQYDVR0OBBYEFCyg
deKJkKIrRdmvJruBqb42O1IbMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC84QjIyM0Y5ODVBNjQxMUYxQTc4NUI2MUJDRjFEMzhCMC5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMH8GCCsGAQUFBwEHAQH/BHAwbjBsBAIAATBmAwQAmlUaAwQAmlVhAwQAmlVj
AwQAmloBMAwDBACaWoEDBAKaWoADBAGaWo4DBAGaWqwDBACaXiIDBACaXicDBACa
XioDBACaXi0wDAMEAJpeOQMEAJpeOjAMAwQAml49AwQAml4+MA0GCSqGSIb3DQEB
CwUAA4IBAQCy4KjnFJe2EwDe1QWUhmbhcGvbbhqvHY0QvNqWp56wvkQq3xe5mvLR
qfDT7n0sCTp9hGXZbcFOIokQAeAO3M8k3sJqJhoTSGZugCZarG0FULPUBE/vaWVl
Nn3eyTQU9UzVXFkQjLUjwYBFLomeLdFQsyUi00F0l4K/5yCsUr0vpMZcCUvwCrXI
QIuc/f6wz205ydaZLMogISPBgB59gcVMeXMCUAio8c6BpPd4KRju8cNSauyM4DFY
wE1Wc7JSHHihMFbR1GqJa1qh8a4E6ZUjSEJcFlfY+4wRVy1plnRj4zqB2f8J5vOr
alGGrHAl+sHCJuxwZv8M67pjIII5eJGJ
-----END CERTIFICATE-----
Generated at Sat Jun 13 05:54:51 2026 by rpki-client