Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EF5D0EFC59A111F1A70B1401CF1D38B0.roa
File: EF5D0EFC59A111F1A70B1401CF1D38B0.roa (raw, json)
Hash identifier: ArOeTB+O9WyseLB5e5jkYNK9IRFjmG5nmnYKzVunwXs=
Subject key identifier: 82:28:F5:60:34:5F:AA:F8:9B:C5:0A:BA:B2:F6:35:E7:84:81:3B:15
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01CFEB
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EF5D0EFC59A111F1A70B1401CF1D38B0.roa
Signing time: Wed 27 May 2026 07:59:07 +0000
ROA not before: Wed 27 May 2026 07:59:02 +0000
ROA not after: Fri 04 Sep 2026 07:59:02 +0000
asID: 150008
IP address blocks: 154.210.227.0/24 maxlen: 24
154.210.228.0/24 maxlen: 24
154.210.229.0/24 maxlen: 24
154.210.230.0/24 maxlen: 24
154.210.231.0/24 maxlen: 24
154.210.232.0/24 maxlen: 24
154.210.233.0/24 maxlen: 24
154.210.234.0/24 maxlen: 24
154.210.235.0/24 maxlen: 24
154.210.236.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 15 Jun 2026 00:07:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118763 (0x1cfeb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 27 07:59:02 2026 GMT
Not After : Sep 4 07:59:02 2026 GMT
Subject: CN=6a16a44b-9f34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:01:9e:74:2b:05:ff:06:9c:86:37:a5:7c:f3:
e0:ce:dd:18:29:7c:ef:85:9f:fd:12:91:2b:69:72:
76:96:e2:3a:90:e8:90:0a:03:d1:65:38:65:db:61:
67:9a:8b:64:91:c7:db:14:dd:d0:73:79:6f:0e:b6:
27:58:07:1f:90:23:58:08:ef:99:44:ff:2d:6e:04:
d5:b0:d0:15:40:c0:33:26:19:03:52:04:03:8e:e5:
4d:f6:b9:ba:30:f1:17:77:96:bf:c4:7d:9d:e4:55:
f0:07:09:fe:70:cf:b6:84:b1:b5:80:27:de:e6:a8:
55:1e:a2:11:ac:89:98:75:e4:41:b3:0a:26:b3:81:
3b:14:dc:53:aa:62:08:85:cc:25:cd:d7:21:ac:1a:
d6:09:77:e8:de:00:3b:b2:9a:f7:e8:83:e5:91:55:
c1:01:65:02:68:38:76:0b:59:6d:04:e7:a0:88:93:
3b:d3:62:3e:f0:34:89:41:8f:31:15:9a:94:03:2b:
5b:41:c5:d9:6a:f9:ba:a5:0f:02:56:d3:2d:b8:a8:
26:62:e6:4a:1b:84:6d:b7:f6:ef:58:87:bb:3f:9f:
27:22:05:cd:29:1c:44:13:d9:54:fc:12:fb:23:70:
81:1e:49:8b:7a:98:09:bd:47:a7:ec:87:74:45:6d:
7e:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:28:F5:60:34:5F:AA:F8:9B:C5:0A:BA:B2:F6:35:E7:84:81:3B:15
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EF5D0EFC59A111F1A70B1401CF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.210.227.0-154.210.236.255
Signature Algorithm: sha256WithRSAEncryption
7b:77:78:4b:b3:4b:c1:94:41:b1:76:42:7e:af:f6:02:dc:d2:
87:d9:4d:96:4c:80:f6:85:25:6e:7f:c9:c0:2b:f4:08:71:ac:
46:d4:cf:86:2a:c6:ea:2a:58:32:b0:95:63:05:0d:36:7b:76:
60:03:30:9d:de:99:84:62:9c:e8:ae:b6:d7:3b:bf:eb:35:41:
31:6d:3d:76:cc:63:6f:5f:22:0c:3e:04:43:df:da:9f:18:84:
b2:11:13:8c:cd:31:b8:09:e8:08:53:e7:8e:f2:5b:bc:1c:c3:
1b:ff:4e:83:52:2a:56:e2:76:a3:0b:31:c2:86:bc:d7:b1:53:
05:0a:61:bc:a9:19:28:a3:e0:58:8b:4b:50:23:2f:bb:e4:f2:
0e:38:04:4a:dc:16:90:7b:ff:de:4d:21:b0:b4:3d:c0:25:fc:
5c:c0:a4:cd:99:81:d2:7e:ac:0c:8c:35:4b:ff:b4:67:76:1e:
74:5d:f6:0f:76:29:a7:f9:2a:b2:0b:78:14:c1:f7:eb:ce:ea:
e3:b3:16:14:0f:c9:e1:89:af:03:08:c8:86:99:94:b9:d6:43:
ec:a0:58:e2:c8:bf:43:90:79:e3:bf:34:45:96:99:5c:a4:d5:
e6:12:d4:ba:22:e7:eb:89:ef:63:a4:53:9d:fb:7e:cb:51:f0:
67:95:61:b9
-----BEGIN CERTIFICATE-----
MIIFjDCCBHSgAwIBAgIDAc/rMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjYwNTI3MDc1OTAyWhcNMjYwOTA0MDc1OTAyWjAYMRYw
FAYDVQQDEw02YTE2YTQ0Yi05ZjM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAwwGedCsF/wachjelfPPgzt0YKXzvhZ/9EpEraXJ2luI6kOiQCgPRZThl
22FnmotkkcfbFN3Qc3lvDrYnWAcfkCNYCO+ZRP8tbgTVsNAVQMAzJhkDUgQDjuVN
9rm6MPEXd5a/xH2d5FXwBwn+cM+2hLG1gCfe5qhVHqIRrImYdeRBswoms4E7FNxT
qmIIhcwlzdchrBrWCXfo3gA7spr36IPlkVXBAWUCaDh2C1ltBOegiJM702I+8DSJ
QY8xFZqUAytbQcXZavm6pQ8CVtMtuKgmYuZKG4Rtt/bvWIe7P58nIgXNKRxEE9lU
/BL7I3CBHkmLepgJvUen7Id0RW1+PQIDAQABo4ICrTCCAqkwHQYDVR0OBBYEFIIo
9WA0X6r4m8UKurL2NeeEgTsVMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9FRjVEMEVGQzU5QTExMUYxQTcwQjE0MDFDRjFEMzhCMC5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOMAwDBACa0uMDBACa0uwwDQYJ
KoZIhvcNAQELBQADggEBAHt3eEuzS8GUQbF2Qn6v9gLc0ofZTZZMgPaFJW5/ycAr
9AhxrEbUz4YqxuoqWDKwlWMFDTZ7dmADMJ3emYRinOiuttc7v+s1QTFtPXbMY29f
Igw+BEPf2p8YhLIRE4zNMbgJ6AhT547yW7wcwxv/ToNSKlbidqMLMcKGvNexUwUK
YbypGSij4FiLS1AjL7vk8g44BErcFpB7/95NIbC0PcAl/FzApM2ZgdJ+rAyMNUv/
tGd2HnRd9g92Kaf5KrILeBTB9+vO6uOzFhQPyeGJrwMIyIaZlLnWQ+ygWOLIv0OQ
eeO/NEWWmVyk1eYS1Loi5+uJ72OkU537fstR8GeVYbk=
-----END CERTIFICATE-----
Generated at Sat Jun 13 21:34:03 2026 by rpki-client