Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FCD77476FC2411F0A8689AE4DAE4EC9C.roa
File: FCD77476FC2411F0A8689AE4DAE4EC9C.roa (raw, json)
Hash identifier: 1bR2iVB96eFfw9FfiReQhNF6Dn024jnnY22FXUbKdGk=
Subject key identifier: FA:39:50:FC:88:7B:3C:7E:96:80:C1:D9:31:19:22:94:09:ED:C7:38
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01B705
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FCD77476FC2411F0A8689AE4DAE4EC9C.roa
Signing time: Wed 28 Jan 2026 08:40:24 +0000
ROA not before: Wed 28 Jan 2026 08:40:18 +0000
ROA not after: Mon 02 Mar 2026 08:40:18 +0000
asID: 401783
IP address blocks: 154.82.134.0/24 maxlen: 24
154.82.148.0/24 maxlen: 24
154.82.158.0/24 maxlen: 24
154.83.65.0/24 maxlen: 24
154.90.128.0/24 maxlen: 24
154.90.134.0/24 maxlen: 24
154.90.136.0/24 maxlen: 24
154.90.137.0/24 maxlen: 24
154.90.140.0/24 maxlen: 24
154.90.189.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 02 Mar 2026 08:40:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112389 (0x1b705)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 28 08:40:18 2026 GMT
Not After : Mar 2 08:40:18 2026 GMT
Subject: CN=6979cb78-705c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:6b:07:aa:b4:5a:29:5c:fe:db:68:c4:49:e2:
06:cf:4d:2e:29:0b:5b:0b:d0:4d:da:26:ee:62:18:
89:0c:ae:e9:b5:ac:34:fd:69:d5:e0:84:36:0f:98:
4f:22:8f:3c:fb:c3:4c:21:6c:32:5c:26:c3:6b:59:
85:f8:ae:b8:5f:fc:bc:68:45:2b:eb:15:f8:a9:9b:
8b:e6:02:9b:98:8d:b8:4a:69:93:b4:3d:b3:bc:6f:
d5:f8:7a:f9:ff:bb:30:e1:a5:41:fc:9f:65:d2:eb:
17:74:b2:ac:7b:f1:46:11:ba:eb:54:fd:a5:9a:6d:
5b:76:f9:7c:1f:df:de:8b:c0:97:4d:12:38:e6:19:
46:af:dd:f8:29:d8:f3:01:55:08:be:41:cd:ef:a7:
1a:fc:b1:d7:a2:eb:59:6d:3a:02:77:0f:6a:36:17:
20:4c:a6:0b:4e:d0:bc:3a:73:1e:69:99:54:94:37:
69:9d:ac:fb:f3:2d:55:4b:53:a7:92:06:e0:a2:ee:
0a:22:42:e0:7f:b6:41:1a:31:c0:68:5a:e2:f4:43:
de:1a:99:ce:6b:ba:22:3c:45:03:4b:55:0c:6c:62:
22:74:c9:d8:b7:a5:bb:27:35:6c:55:b4:d8:40:8c:
5c:e6:4c:b4:35:ef:bc:05:64:f9:d1:60:32:ab:90:
6b:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:39:50:FC:88:7B:3C:7E:96:80:C1:D9:31:19:22:94:09:ED:C7:38
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FCD77476FC2411F0A8689AE4DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.82.134.0/24
154.82.148.0/24
154.82.158.0/24
154.83.65.0/24
154.90.128.0/24
154.90.134.0/24
154.90.136.0/23
154.90.140.0/24
154.90.189.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:e0:41:a2:f1:7b:08:24:28:a2:9a:f2:46:20:d3:25:c6:d8:
48:bf:e9:10:b2:92:22:48:4f:fa:8b:6f:4d:b2:12:12:aa:2d:
45:f7:dd:31:36:da:e2:e2:2d:ae:29:72:45:34:ec:3a:13:77:
f7:0e:e5:4f:38:9d:86:af:71:54:ed:cc:92:7e:e2:f2:70:8c:
dd:67:01:a0:98:d8:2e:4f:b6:f2:08:fe:6f:21:80:b1:b8:97:
66:dc:f7:1c:94:ea:c4:8e:e8:79:5a:93:dd:24:1b:96:48:16:
e1:4a:49:52:11:02:17:2c:0d:32:b6:0f:aa:e1:d0:8d:df:d1:
4b:7a:d1:5b:8f:59:08:cd:b2:a1:20:21:77:fd:0b:f3:94:6a:
ff:0b:c1:86:ff:91:16:28:ce:ab:f8:52:64:74:66:cc:8a:31:
28:09:fd:10:a0:26:bb:d7:1d:63:7f:71:5d:52:ed:08:09:9a:
06:a4:39:20:44:79:76:27:09:4e:04:01:02:0d:4d:d8:da:ec:
de:30:ee:19:e6:86:d5:1c:dc:b6:ef:40:7a:5c:2f:bb:46:e4:
4c:83:25:20:1d:10:fe:2a:06:c2:96:d0:52:11:2b:13:10:da:
53:22:8f:63:55:7b:26:5b:36:0b:ef:03:98:84:eb:a1:63:83:
3d:bb:fc:dc
-----BEGIN CERTIFICATE-----
MIIFtDCCBJygAwIBAgIDAbcFMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjYwMTI4MDg0MDE4WhcNMjYwMzAyMDg0MDE4WjAYMRYw
FAYDVQQDEw02OTc5Y2I3OC03MDVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAvGsHqrRaKVz+22jESeIGz00uKQtbC9BN2ibuYhiJDK7ptaw0/WnV4IQ2
D5hPIo88+8NMIWwyXCbDa1mF+K64X/y8aEUr6xX4qZuL5gKbmI24SmmTtD2zvG/V
+Hr5/7sw4aVB/J9l0usXdLKse/FGEbrrVP2lmm1bdvl8H9/ei8CXTRI45hlGr934
KdjzAVUIvkHN76ca/LHXoutZbToCdw9qNhcgTKYLTtC8OnMeaZlUlDdpnaz78y1V
S1Onkgbgou4KIkLgf7ZBGjHAaFri9EPeGpnOa7oiPEUDS1UMbGIidMnYt6W7JzVs
VbTYQIxc5ky0Ne+8BWT50WAyq5BrDwIDAQABo4IC1TCCAtEwHQYDVR0OBBYEFPo5
UPyIezx+loDB2TEZIpQJ7cc4MB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9GQ0Q3NzQ3NkZDMjQxMUYwQTg2ODlBRTREQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sME8GCCsGAQUFBwEHAQH/BEAwPjA8BAIAATA2AwQAmlKGAwQAmlKUAwQAmlKe
AwQAmlNBAwQAmlqAAwQAmlqGAwQBmlqIAwQAmlqMAwQAmlq9MA0GCSqGSIb3DQEB
CwUAA4IBAQCd4EGi8XsIJCiimvJGINMlxthIv+kQspIiSE/6i29NshISqi1F990x
Ntri4i2uKXJFNOw6E3f3DuVPOJ2Gr3FU7cySfuLycIzdZwGgmNguT7byCP5vIYCx
uJdm3PcclOrEjuh5WpPdJBuWSBbhSklSEQIXLA0ytg+q4dCN39FLetFbj1kIzbKh
ICF3/QvzlGr/C8GG/5EWKM6r+FJkdGbMijEoCf0QoCa71x1jf3FdUu0ICZoGpDkg
RHl2JwlOBAECDU3Y2uzeMO4Z5obVHNy270B6XC+7RuRMgyUgHRD+KgbCltBSESsT
ENpTIo9jVXsmWzYL7wOYhOuhY4M9u/zc
-----END CERTIFICATE-----
Generated at Sun Mar 1 18:18:17 2026 by rpki-client