Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9D22060E372011F1B4FF4BA2CE1D38B0.roa
File: 9D22060E372011F1B4FF4BA2CE1D38B0.roa (raw, json)
Hash identifier: Ni9q8gcZ8rIi/PrZUUL44A/kVlxlBAiBC9LQNbaRPsk=
Subject key identifier: 79:30:41:C3:1A:E7:40:92:E8:8C:68:7D:2D:A5:6B:A4:E7:3A:79:13
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C4F8
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9D22060E372011F1B4FF4BA2CE1D38B0.roa
Signing time: Mon 13 Apr 2026 10:07:44 +0000
ROA not before: Mon 13 Apr 2026 10:07:39 +0000
ROA not after: Sat 16 May 2026 10:07:39 +0000
asID: 22773
IP address blocks: 154.90.9.0/24 maxlen: 24
154.90.10.0/24 maxlen: 24
154.90.11.0/24 maxlen: 24
154.90.12.0/24 maxlen: 24
154.90.13.0/24 maxlen: 24
154.90.14.0/24 maxlen: 24
154.90.15.0/24 maxlen: 24
154.90.16.0/24 maxlen: 24
154.90.17.0/24 maxlen: 24
154.90.18.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 00:07:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115960 (0x1c4f8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 13 10:07:39 2026 GMT
Not After : May 16 10:07:39 2026 GMT
Subject: CN=69dcc070-21ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:41:c2:4c:25:eb:66:ae:93:0f:2f:5b:aa:ac:
9d:c3:c8:ca:43:e2:e8:b0:e2:4a:8e:c1:9f:fd:a9:
e2:a5:cf:3d:b0:59:b9:7c:02:37:80:26:24:f4:15:
34:3c:f4:98:71:f9:6e:22:83:c9:e0:2c:c0:1a:f5:
88:ce:25:4b:e6:ed:6c:ec:5b:f5:e0:06:74:06:12:
90:a8:e4:8d:d7:a4:e2:de:4d:8f:b2:e4:9d:af:e9:
8e:5a:aa:ad:7a:21:1f:32:ae:41:11:9f:55:bc:da:
df:fb:58:05:d5:65:a8:19:8a:da:14:4b:b0:5d:ca:
1b:a5:bf:b8:1b:e8:e0:73:64:d8:79:f7:8a:d1:a9:
9e:8b:4f:36:8c:5c:fb:5c:dc:12:ec:e6:dd:77:6a:
c3:ae:78:4d:dd:7f:3b:8f:63:35:44:5c:02:1c:5d:
f8:38:61:7b:00:ad:ae:64:0e:52:1e:c7:c3:42:60:
98:f1:29:a4:c9:ac:93:f8:a7:9f:df:26:55:af:40:
9b:ae:99:0c:4c:6a:7b:bf:11:34:c3:77:bb:2f:fb:
0e:36:a8:c3:21:33:90:73:a4:c0:2e:e0:b1:17:45:
fc:eb:78:2b:f8:ca:50:ea:99:25:1b:76:d6:69:d7:
e7:66:21:36:95:a6:84:66:5e:bd:46:ab:de:30:f8:
5a:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:30:41:C3:1A:E7:40:92:E8:8C:68:7D:2D:A5:6B:A4:E7:3A:79:13
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9D22060E372011F1B4FF4BA2CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.90.9.0-154.90.18.255
Signature Algorithm: sha256WithRSAEncryption
4a:8c:c1:dc:b9:e9:13:8f:29:d6:f5:f0:05:1c:51:b7:df:f9:
59:7a:55:59:63:ab:f2:f1:7e:b3:a6:dd:cc:46:66:12:2d:1e:
7b:ef:59:ee:4f:27:87:96:fe:26:67:a8:b1:dc:aa:ff:65:bc:
91:d1:ee:eb:2c:cd:92:01:ab:3d:29:fc:5c:a3:d4:2c:97:a4:
62:9c:66:92:9a:2d:fa:44:90:96:15:4c:a1:2a:ed:94:f0:54:
8e:c3:75:34:e3:93:5a:4b:50:2a:48:17:9c:f8:de:88:bf:89:
82:28:1e:3b:c6:79:7e:af:8c:b0:b6:a0:67:0e:a6:cc:10:07:
b4:37:24:67:81:4e:b5:e0:a0:10:80:b6:3a:3f:7c:ec:90:40:
c9:69:3b:dd:3b:f0:bf:67:3a:15:00:da:07:df:af:c3:b7:c8:
29:9b:cc:7d:50:49:c8:81:1b:19:4b:f1:45:8b:0d:1e:7a:23:
44:fe:a7:41:d9:03:97:a5:cd:a3:80:5e:c2:e5:02:03:31:30:
3c:fa:ea:f8:c9:c0:9a:2c:d0:fd:a1:16:32:56:17:ca:ca:61:
96:1e:13:fd:40:ca:90:3b:63:01:a5:c7:3e:cd:04:c2:81:a8:
68:0f:95:7f:3f:c6:98:19:6a:f7:4c:3e:f8:32:8f:38:1f:85:
b0:2f:15:4c
-----BEGIN CERTIFICATE-----
MIIFjDCCBHSgAwIBAgIDAcT4MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjYwNDEzMTAwNzM5WhcNMjYwNTE2MTAwNzM5WjAYMRYw
FAYDVQQDEw02OWRjYzA3MC0yMWVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAoEHCTCXrZq6TDy9bqqydw8jKQ+LosOJKjsGf/anipc89sFm5fAI3gCYk
9BU0PPSYcfluIoPJ4CzAGvWIziVL5u1s7Fv14AZ0BhKQqOSN16Ti3k2PsuSdr+mO
WqqteiEfMq5BEZ9VvNrf+1gF1WWoGYraFEuwXcobpb+4G+jgc2TYefeK0amei082
jFz7XNwS7Obdd2rDrnhN3X87j2M1RFwCHF34OGF7AK2uZA5SHsfDQmCY8SmkyayT
+Kef3yZVr0CbrpkMTGp7vxE0w3e7L/sONqjDITOQc6TALuCxF0X863gr+MpQ6pkl
G3bWadfnZiE2laaEZl69RqveMPhalwIDAQABo4ICrTCCAqkwHQYDVR0OBBYEFHkw
QcMa50CS6IxofS2la6TnOnkTMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC85RDIyMDYwRTM3MjAxMUYxQjRGRjRCQTJDRTFEMzhCMC5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOMAwDBACaWgkDBACaWhIwDQYJ
KoZIhvcNAQELBQADggEBAEqMwdy56ROPKdb18AUcUbff+Vl6VVljq/LxfrOm3cxG
ZhItHnvvWe5PJ4eW/iZnqLHcqv9lvJHR7usszZIBqz0p/Fyj1CyXpGKcZpKaLfpE
kJYVTKEq7ZTwVI7DdTTjk1pLUCpIF5z43oi/iYIoHjvGeX6vjLC2oGcOpswQB7Q3
JGeBTrXgoBCAtjo/fOyQQMlpO9078L9nOhUA2gffr8O3yCmbzH1QSciBGxlL8UWL
DR56I0T+p0HZA5elzaOAXsLlAgMxMDz66vjJwJos0P2hFjJWF8rKYZYeE/1AypA7
YwGlxz7NBMKBqGgPlX8/xpgZavdMPvgyjzgfhbAvFUw=
-----END CERTIFICATE-----
Generated at Fri Apr 17 13:01:35 2026 by rpki-client