Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D5605EB20E6711F1B4415E9EDAE4EC9C.roa
File: D5605EB20E6711F1B4415E9EDAE4EC9C.roa (raw, json)
Hash identifier: i8ZWNNIiCP/ha6O6OBfE/wIbZ3M8HdBoUrDuJQ+RYpw=
Subject key identifier: 7A:D4:76:32:B5:4F:03:3E:1A:D1:CF:9F:F7:E2:24:5C:A8:D0:D4:E1
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01BA88
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D5605EB20E6711F1B4415E9EDAE4EC9C.roa
Signing time: Fri 20 Feb 2026 14:24:15 +0000
ROA not before: Fri 20 Feb 2026 14:24:11 +0000
ROA not after: Thu 04 Jun 2026 14:24:11 +0000
asID: 46071
IP address blocks: 154.209.6.0/24 maxlen: 24
154.209.7.0/24 maxlen: 24
154.210.178.0/24 maxlen: 24
154.210.179.0/24 maxlen: 24
154.210.180.0/24 maxlen: 24
154.210.203.0/24 maxlen: 24
154.210.204.0/24 maxlen: 24
154.210.222.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 04 Mar 2026 00:07:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113288 (0x1ba88)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 20 14:24:11 2026 GMT
Not After : Jun 4 14:24:11 2026 GMT
Subject: CN=69986e8f-3c2f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:75:2a:be:19:8a:f2:3f:90:66:02:a9:fd:3a:
6b:d5:65:a9:7d:5a:03:f6:03:d8:02:60:dc:21:0e:
44:d3:a7:1a:16:d3:95:8f:46:70:a1:19:50:12:be:
5c:a6:aa:cc:1a:d6:20:ca:1e:e1:b8:3f:c6:a3:1c:
45:0b:4f:0a:2e:1d:e2:0b:7f:d6:a5:25:b9:b0:ba:
43:a2:2c:d3:98:b0:f1:7f:f2:c7:dd:8e:ee:5b:65:
55:b5:e3:f9:38:7b:d1:2f:62:dc:13:77:78:9f:6b:
c7:70:61:8b:98:e6:9c:96:eb:3a:d2:eb:61:7b:3a:
6f:d3:9c:95:d9:1a:4e:4c:bf:5a:29:f3:1b:2a:19:
34:68:e1:8e:22:f9:dc:a6:80:a3:50:53:d1:12:63:
ea:19:e8:4c:c2:28:b6:79:d6:44:4f:11:34:4a:d4:
2e:0e:3d:e0:94:3d:05:3d:d9:7f:a0:39:34:4b:87:
0d:1d:01:d9:bb:fa:ea:86:55:96:d6:d5:c1:4f:65:
80:16:f1:8e:3c:a0:ab:e5:ce:2f:64:f3:bb:a2:13:
e2:a9:51:03:94:a3:6a:ba:da:05:30:0c:38:bf:72:
69:d1:45:3a:30:08:f1:35:cf:17:d6:9b:b3:b0:c5:
44:3a:ad:cc:ad:46:df:4c:7e:0f:50:17:07:af:7a:
36:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:D4:76:32:B5:4F:03:3E:1A:D1:CF:9F:F7:E2:24:5C:A8:D0:D4:E1
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D5605EB20E6711F1B4415E9EDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.209.6.0/23
154.210.178.0-154.210.180.255
154.210.203.0-154.210.204.255
154.210.222.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:44:e0:dc:b7:8c:9e:b6:60:4f:5e:1f:55:87:d3:09:2b:d8:
8f:22:1e:23:cc:04:d1:48:35:9f:a5:22:4f:d3:ae:ca:24:c3:
cc:a3:43:22:55:60:91:a4:64:75:5a:86:7e:52:6e:2c:6a:b1:
4d:67:0c:53:43:5e:64:b2:3a:69:68:39:82:45:84:1c:c4:0d:
e4:81:55:e6:fc:37:31:7d:1e:11:d2:33:fd:1f:0a:15:d0:70:
6c:ad:23:8d:3a:10:a1:c5:61:60:b6:d3:69:b9:bc:e9:d1:8c:
e7:ae:a9:63:da:fb:b8:c5:6d:93:3a:46:0e:5f:aa:e1:61:f8:
14:fc:23:9d:30:d3:05:98:41:3e:33:9d:ca:64:95:2d:8d:da:
b3:07:47:83:55:55:85:ee:ff:35:81:5d:b0:48:5a:98:03:79:
4b:88:d1:eb:82:ed:a2:fa:ee:73:c1:12:2d:6f:d0:b1:05:3c:
7d:be:49:a4:13:6a:e9:39:39:9e:c5:f6:44:03:aa:ab:4c:1a:
19:f5:a0:6d:23:d6:af:ce:90:d9:e2:1b:9e:01:ec:2d:ad:83:
a5:20:d7:c3:47:b2:42:26:46:48:6b:fc:3c:68:cc:c2:e2:9d:
fe:46:fb:1f:bd:c1:f8:a9:87:ad:22:cd:6f:8c:8e:a1:6d:42:
52:82:05:63
-----BEGIN CERTIFICATE-----
MIIFpjCCBI6gAwIBAgIDAbqIMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjYwMjIwMTQyNDExWhcNMjYwNjA0MTQyNDExWjAYMRYw
FAYDVQQDEw02OTk4NmU4Zi0zYzJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAwHUqvhmK8j+QZgKp/Tpr1WWpfVoD9gPYAmDcIQ5E06caFtOVj0ZwoRlQ
Er5cpqrMGtYgyh7huD/GoxxFC08KLh3iC3/WpSW5sLpDoizTmLDxf/LH3Y7uW2VV
teP5OHvRL2LcE3d4n2vHcGGLmOaclus60uthezpv05yV2RpOTL9aKfMbKhk0aOGO
IvncpoCjUFPREmPqGehMwii2edZETxE0StQuDj3glD0FPdl/oDk0S4cNHQHZu/rq
hlWW1tXBT2WAFvGOPKCr5c4vZPO7ohPiqVEDlKNqutoFMAw4v3Jp0UU6MAjxNc8X
1puzsMVEOq3MrUbfTH4PUBcHr3o2ZQIDAQABo4ICxzCCAsMwHQYDVR0OBBYEFHrU
djK1TwM+GtHPn/fiJFyo0NThMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9ENTYwNUVCMjBFNjcxMUYxQjQ0MTVFOUVEQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMEEGCCsGAQUFBwEHAQH/BDIwMDAuBAIAATAoAwQBmtEGMAwDBAGa0rIDBACa
0rQwDAMEAJrSywMEAJrSzAMEAJrS3jANBgkqhkiG9w0BAQsFAAOCAQEAHUTg3LeM
nrZgT14fVYfTCSvYjyIeI8wE0Ug1n6UiT9OuyiTDzKNDIlVgkaRkdVqGflJuLGqx
TWcMU0NeZLI6aWg5gkWEHMQN5IFV5vw3MX0eEdIz/R8KFdBwbK0jjToQocVhYLbT
abm86dGM566pY9r7uMVtkzpGDl+q4WH4FPwjnTDTBZhBPjOdymSVLY3aswdHg1VV
he7/NYFdsEhamAN5S4jR64Ltovruc8ESLW/QsQU8fb5JpBNq6Tk5nsX2RAOqq0wa
GfWgbSPWr86Q2eIbngHsLa2DpSDXw0eyQiZGSGv8PGjMwuKd/kb7H73B+KmHrSLN
b4yOoW1CUoIFYw==
-----END CERTIFICATE-----
Generated at Mon Mar 2 14:34:04 2026 by rpki-client