Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B4933D1C5E8F11F1BCC9EFE9CE1D38B0.roa
File: B4933D1C5E8F11F1BCC9EFE9CE1D38B0.roa (raw, json)
Hash identifier: PZaIYNApbxm411x4JdsdDYP3uDRD1lMetJ2ldqrlVgk=
Subject key identifier: 75:9C:E5:7C:A0:C5:42:E9:FF:F5:43:01:64:63:76:F1:28:0D:FF:17
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01D13E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B4933D1C5E8F11F1BCC9EFE9CE1D38B0.roa
Signing time: Tue 02 Jun 2026 14:31:13 +0000
ROA not before: Tue 02 Jun 2026 14:31:09 +0000
ROA not after: Thu 09 Jul 2026 14:31:09 +0000
asID: 8254
IP address blocks: 154.219.77.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 15 Jun 2026 00:07:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119102 (0x1d13e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 2 14:31:09 2026 GMT
Not After : Jul 9 14:31:09 2026 GMT
Subject: CN=6a1ee931-c019
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:dc:0b:f3:62:1b:eb:de:e3:75:a3:ba:e0:9e:
a5:c7:51:26:5b:01:b0:97:e9:30:6e:46:c3:9b:b4:
bf:87:84:96:1d:4c:e6:c7:c5:51:f1:cc:b6:98:c6:
b5:44:49:1b:d1:3b:21:0f:06:dc:4e:f7:b8:34:ca:
55:22:9a:99:31:4b:32:73:87:74:ea:38:0b:ae:4a:
df:b2:47:4a:12:03:e7:64:e0:ec:ec:e9:6e:03:a2:
46:f0:7e:85:21:04:8a:60:b3:47:aa:6d:99:49:ac:
a9:78:86:58:de:ba:36:80:23:97:70:19:35:92:8a:
33:a3:4a:c1:60:1b:8f:97:84:73:77:09:19:1c:0a:
eb:70:9d:4a:ca:d5:72:19:fa:96:ab:6a:9e:45:50:
89:e2:d8:e2:22:2b:9e:65:44:eb:3c:33:b3:b7:ba:
d2:fd:86:d5:fd:59:79:fd:12:49:47:e0:5f:66:40:
46:10:ee:37:0d:e6:11:29:c6:93:9f:67:06:1d:ef:
31:40:57:95:9a:7e:f1:0a:86:33:ca:e3:59:12:27:
29:14:6b:35:e3:2a:8b:9c:2a:70:7a:aa:33:ce:9b:
87:8f:ba:fe:01:26:35:19:04:3a:28:22:25:59:ea:
4b:2e:6c:5f:72:b1:25:8c:db:61:53:a0:8f:c6:9f:
da:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:9C:E5:7C:A0:C5:42:E9:FF:F5:43:01:64:63:76:F1:28:0D:FF:17
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B4933D1C5E8F11F1BCC9EFE9CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.219.77.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:2c:89:78:4b:ed:85:ec:39:a2:e2:11:2f:6f:c9:c1:78:41:
88:c7:10:f9:6b:14:29:cb:a0:e5:21:c7:47:cd:74:d9:10:b8:
f3:37:cb:a4:c7:76:7c:6f:73:0c:e1:f8:28:01:be:e8:88:17:
a2:28:ff:fc:06:98:31:34:87:92:b6:75:cb:e9:b1:cb:fe:c4:
ff:06:d3:ab:60:ef:16:42:c4:14:5d:60:d8:27:11:2c:49:26:
4c:d5:7e:1e:8d:ee:24:32:28:14:c6:88:38:cf:dd:6b:5c:67:
3d:70:89:a8:9d:49:bd:e5:8c:cf:d8:16:d8:78:3e:24:d1:60:
e1:d7:e2:78:2e:a6:66:2d:50:85:f4:59:0d:90:56:e9:60:64:
ec:3d:a7:2e:09:cd:cd:22:fc:20:cf:73:0c:02:93:a1:7d:39:
5e:d2:2e:6b:a8:f6:f5:23:de:c9:7c:0a:69:2b:c9:b1:33:73:
d8:ce:50:7c:00:5a:27:38:f0:96:4d:dc:d4:16:2d:16:99:66:
cb:88:1c:dc:32:27:79:76:8d:4f:d2:10:04:85:1b:b2:ab:f5:
84:ee:63:74:61:37:06:22:30:ca:19:f3:cb:c7:9b:71:a9:c9:
35:65:a9:80:7a:c2:ea:4b:c8:67:3b:bf:35:d5:93:49:41:92:
d8:c6:7d:ab
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAdE+MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjYwNjAyMTQzMTA5WhcNMjYwNzA5MTQzMTA5WjAYMRYw
FAYDVQQDEw02YTFlZTkzMS1jMDE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAytwL82Ib697jdaO64J6lx1EmWwGwl+kwbkbDm7S/h4SWHUzmx8VR8cy2
mMa1REkb0TshDwbcTve4NMpVIpqZMUsyc4d06jgLrkrfskdKEgPnZODs7OluA6JG
8H6FIQSKYLNHqm2ZSaypeIZY3ro2gCOXcBk1koozo0rBYBuPl4RzdwkZHArrcJ1K
ytVyGfqWq2qeRVCJ4tjiIiueZUTrPDOzt7rS/YbV/Vl5/RJJR+BfZkBGEO43DeYR
KcaTn2cGHe8xQFeVmn7xCoYzyuNZEicpFGs14yqLnCpweqozzpuHj7r+ASY1GQQ6
KCIlWepLLmxfcrEljNthU6CPxp/aHQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFHWc
5XygxULp//VDAWRjdvEoDf8XMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9CNDkzM0QxQzVFOEYxMUYxQkNDOUVGRTlDRTFEMzhCMC5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmttNMA0GCSqGSIb3DQEB
CwUAA4IBAQBaLIl4S+2F7Dmi4hEvb8nBeEGIxxD5axQpy6DlIcdHzXTZELjzN8uk
x3Z8b3MM4fgoAb7oiBeiKP/8BpgxNIeStnXL6bHL/sT/BtOrYO8WQsQUXWDYJxEs
SSZM1X4eje4kMigUxog4z91rXGc9cImonUm95YzP2BbYeD4k0WDh1+J4LqZmLVCF
9FkNkFbpYGTsPacuCc3NIvwgz3MMApOhfTle0i5rqPb1I97JfAppK8mxM3PYzlB8
AFonOPCWTdzUFi0WmWbLiBzcMid5do1P0hAEhRuyq/WE7mN0YTcGIjDKGfPLx5tx
qck1ZamAesLqS8hnO7811ZNJQZLYxn2r
-----END CERTIFICATE-----
Generated at Sat Jun 13 05:54:01 2026 by rpki-client