Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/4A78DD7654FB11F1A343EBA8CE1D38B0.roa
File: 4A78DD7654FB11F1A343EBA8CE1D38B0.roa (raw, json)
Hash identifier: zcWRm8QPlI2nMzEpnXghArm4iSTRS1RKFGR5pqv+sCI=
Subject key identifier: CE:59:48:32:2B:8F:50:EB:82:C1:D8:A5:2F:00:5B:49:A7:9D:19:9E
Certificate issuer: /CN=F363BA19AF/serialNumber=6AEA24B099C32B22E4E48BB9F26CF578BEF6BFF3
Certificate serial: 1187
Authority key identifier: 6A:EA:24:B0:99:C3:2B:22:E4:E4:8B:B9:F2:6C:F5:78:BE:F6:BF:F3
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/4A78DD7654FB11F1A343EBA8CE1D38B0.roa
Signing time: Thu 21 May 2026 09:56:09 +0000
ROA not before: Thu 21 May 2026 09:56:05 +0000
ROA not after: Thu 20 May 2027 09:56:05 +0000
asID: 208185
IP address blocks: 196.251.123.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.crl
rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.mft
rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 07 Jun 2026 02:37:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4487 (0x1187)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363BA19AF, serialNumber=6AEA24B099C32B22E4E48BB9F26CF578BEF6BFF3
Validity
Not Before: May 21 09:56:05 2026 GMT
Not After : May 20 09:56:05 2027 GMT
Subject: CN=6a0ed6b9-53ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:7c:3c:e7:b4:22:09:7d:9b:1f:07:38:9a:c1:
16:2a:5b:78:b2:b1:da:0e:98:e6:30:fa:8c:c8:8c:
f3:6f:b0:f6:d6:bb:42:ee:a5:56:3e:4a:97:b7:46:
75:f6:38:86:38:e6:78:d3:ba:07:52:c7:5c:22:95:
c5:28:0f:d6:07:b5:2f:33:1a:ce:b0:84:56:59:aa:
a5:00:c1:bd:08:f5:02:8c:ca:40:1e:39:04:54:26:
18:a6:32:7a:4e:56:48:c2:96:46:2c:ef:d0:94:9e:
ce:7e:37:99:8c:51:60:7d:05:af:a7:92:51:24:64:
82:83:27:51:e0:2b:3c:75:80:8a:bf:24:db:fb:8d:
d7:75:fb:a1:e4:a8:a9:d6:5e:ad:2b:c7:db:14:49:
6d:26:64:03:ef:1a:8c:46:6e:40:26:e6:22:cb:54:
d2:bc:1e:1a:f3:6d:0a:cc:1e:9e:11:64:6c:8f:5b:
55:7e:d4:b1:ad:b6:3d:94:35:d6:70:b1:6c:05:3b:
a3:00:78:bc:39:51:64:fe:db:1e:90:01:4f:c4:69:
e9:62:df:a3:51:eb:bf:c0:66:4f:b1:cb:12:7f:8f:
6e:57:01:9f:4d:74:e0:ae:13:3a:58:c3:7e:47:84:
1a:17:f1:4e:fb:d4:4f:1c:10:d4:6f:89:66:b7:cc:
83:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:59:48:32:2B:8F:50:EB:82:C1:D8:A5:2F:00:5B:49:A7:9D:19:9E
X509v3 Authority Key Identifier:
keyid:6A:EA:24:B0:99:C3:2B:22:E4:E4:8B:B9:F2:6C:F5:78:BE:F6:BF:F3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/4A78DD7654FB11F1A343EBA8CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.251.123.0/24
Signature Algorithm: sha256WithRSAEncryption
33:99:eb:ed:8e:65:90:22:74:5c:f0:a8:46:fe:e9:36:45:26:
fa:ea:88:cb:52:ba:fd:fc:2a:5f:84:83:51:18:66:36:bc:03:
64:84:b1:42:fd:ea:58:ed:da:70:5a:e8:f6:a5:cd:5f:97:fb:
e1:87:44:dd:be:9a:fc:61:6b:08:65:5a:43:fc:57:8b:42:d9:
7b:15:dd:23:e2:9f:43:ad:ca:b1:e3:70:68:71:8b:d8:f9:e6:
ba:c1:4d:e6:9b:0d:78:d4:c4:d5:44:d2:8a:03:17:06:54:c1:
f9:60:09:17:3f:d0:31:b8:08:5f:8d:f4:53:66:8a:9f:a6:1e:
cf:a3:c4:16:a1:0e:1e:69:41:b1:9f:21:bc:52:5c:cd:0e:75:
13:0e:74:3b:52:ae:e0:00:12:3d:3d:89:a8:b2:30:83:9c:d9:
ea:bf:10:72:2c:f3:15:0c:8a:5c:db:92:fa:d7:2a:e7:4f:55:
bc:6e:35:1a:ee:fd:e5:5c:86:1d:a1:6c:8e:5c:6e:85:db:82:
44:95:52:85:98:f3:36:26:1d:08:81:ed:36:7f:c8:56:ab:ea:
cc:0c:ff:8b:9a:a2:af:9c:07:0a:06:e3:8a:43:63:da:b5:f1:
90:35:1f:b7:47:bf:8d:d8:69:90:f7:66:97:ce:c7:ad:bb:2a:
ba:0b:44:08
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICEYcwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
M0JBMTlBRjExMC8GA1UEBRMoNkFFQTI0QjA5OUMzMkIyMkU0RTQ4QkI5RjI2Q0Y1
NzhCRUY2QkZGMzAeFw0yNjA1MjEwOTU2MDVaFw0yNzA1MjAwOTU2MDVaMBgxFjAU
BgNVBAMTDTZhMGVkNmI5LTUzZWMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQCzfDzntCIJfZsfBziawRYqW3iysdoOmOYw+ozIjPNvsPbWu0LupVY+Spe3
RnX2OIY45njTugdSx1wilcUoD9YHtS8zGs6whFZZqqUAwb0I9QKMykAeOQRUJhim
MnpOVkjClkYs79CUns5+N5mMUWB9Ba+nklEkZIKDJ1HgKzx1gIq/JNv7jdd1+6Hk
qKnWXq0rx9sUSW0mZAPvGoxGbkAm5iLLVNK8HhrzbQrMHp4RZGyPW1V+1LGttj2U
NdZwsWwFO6MAeLw5UWT+2x6QAU/Eaeli36NR67/AZk+xyxJ/j25XAZ9NdOCuEzpY
w35HhBoX8U771E8cENRviWa3zIMPAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUzllI
MiuPUOuCwdilLwBbSaedGZ4wHwYDVR0jBBgwFoAUauoksJnDKyLk5Iu58mz1eL72
v/MwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjNCQTE5LzBFN0YxREY2OTYyQTExRUM4NjcxRTZFMDVBNDBENTc3L2F1b2tz
Sm5ES3lMazVJdTU4bXoxZUw3MnZfTS5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL2F1b2tzSm5ES3lMazVJdTU4bXoxZUw3MnZfTS5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjNCQTE5LzBFN0YxREY2OTYyQTExRUM4NjcxRTZFMDVB
NDBENTc3LzRBNzhERDc2NTRGQjExRjFBMzQzRUJBOENFMUQzOEIwLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADE+3swDQYJKoZIhvcNAQEL
BQADggEBADOZ6+2OZZAidFzwqEb+6TZFJvrqiMtSuv38Kl+Eg1EYZja8A2SEsUL9
6ljt2nBa6PalzV+X++GHRN2+mvxhawhlWkP8V4tC2XsV3SPin0OtyrHjcGhxi9j5
5rrBTeabDXjUxNVE0ooDFwZUwflgCRc/0DG4CF+N9FNmip+mHs+jxBahDh5pQbGf
IbxSXM0OdRMOdDtSruAAEj09iaiyMIOc2eq/EHIs8xUMilzbkvrXKudPVbxuNRru
/eVchh2hbI5cboXbgkSVUoWY8zYmHQiB7TZ/yFar6swM/4uaoq+cBwoG44pDY9q1
8ZA1H7dHv43YaZD3ZpfOx627KroLRAg=
-----END CERTIFICATE-----
Generated at Sat Jun 6 02:28:26 2026 by rpki-client