Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/30B79E0217CC11F1BA97A9CADAE4EC9C.roa
File: 30B79E0217CC11F1BA97A9CADAE4EC9C.roa (raw, json)
Hash identifier: WyPKVx6Xfy4EFLbRb2INW9R/BHrLn3e2sLsu/ZVgDcc=
Subject key identifier: 28:D9:6A:55:9A:55:01:CB:65:94:3A:CD:F5:D2:6C:07:28:AA:0B:5A
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01BD7F
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/30B79E0217CC11F1BA97A9CADAE4EC9C.roa
Signing time: Wed 04 Mar 2026 13:15:18 +0000
ROA not before: Wed 04 Mar 2026 13:15:14 +0000
ROA not after: Fri 10 Apr 2026 13:15:14 +0000
asID: 215691
IP address blocks: 154.202.74.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 26 Mar 2026 08:06:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114047 (0x1bd7f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 4 13:15:14 2026 GMT
Not After : Apr 10 13:15:14 2026 GMT
Subject: CN=69a83066-cedb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:bb:a8:6b:be:64:15:15:22:21:f8:47:5f:1c:
c0:85:53:8e:fe:e6:35:f7:f8:c1:2e:b7:77:fa:4c:
71:17:bb:84:b7:af:27:6c:26:44:b4:47:17:1e:b0:
fc:f2:5a:ed:d3:85:2a:da:f0:5b:38:7e:80:ad:01:
e4:5e:d1:8c:4c:d4:4d:79:6c:f6:8d:39:e7:cc:7e:
c8:1c:e4:55:13:fd:94:1d:cc:9e:44:57:33:c6:21:
e1:80:f2:77:ec:13:51:93:d6:8e:ca:dc:2f:c7:0c:
e1:af:d5:b3:4f:84:d8:e1:35:83:36:eb:01:53:4f:
39:8e:83:7d:3a:1e:7b:eb:13:d8:c8:f3:45:84:3e:
6a:78:12:89:e1:11:2c:de:52:1d:43:e0:42:f3:77:
ba:27:37:52:57:26:3b:20:03:9f:ab:d4:5d:7d:1a:
f6:ba:05:cd:60:64:fa:3a:7b:80:53:11:5f:34:5b:
e9:f1:55:87:40:be:d6:9e:8a:d2:72:61:71:aa:03:
84:45:80:f8:43:c6:09:50:60:5d:37:89:e4:6f:b3:
a1:d9:c5:f0:ca:93:37:09:b7:33:4c:8c:46:7e:19:
ff:cc:07:51:2b:c2:4f:ea:f3:0b:66:bd:fc:15:16:
c5:25:18:a2:bb:1e:ac:da:81:da:7b:97:17:06:78:
bb:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:D9:6A:55:9A:55:01:CB:65:94:3A:CD:F5:D2:6C:07:28:AA:0B:5A
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/30B79E0217CC11F1BA97A9CADAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.202.74.0/24
Signature Algorithm: sha256WithRSAEncryption
05:a6:b9:cd:97:dc:6e:9e:91:ac:a7:4e:a1:75:7a:ec:c1:8e:
d5:39:b6:3a:42:73:01:04:70:fd:53:d8:9d:3a:57:25:ce:2e:
bd:63:78:f5:8a:5e:25:3e:41:29:93:b5:61:00:af:a2:c7:20:
07:5c:ae:0a:e0:74:48:ab:d2:bc:6f:54:76:7c:d4:6a:1e:93:
56:27:88:f0:b2:5f:34:15:ba:e2:6e:7a:8d:ba:92:08:b1:3d:
41:7c:41:1d:2c:eb:81:e9:bc:f8:2e:30:bf:32:da:2c:b8:1b:
5b:12:e4:3d:87:d5:db:da:3d:88:e2:ac:93:55:1d:7b:9f:de:
f5:b0:c4:c5:a8:db:ea:ec:0d:4f:d9:1d:e6:6f:8e:c7:42:fb:
30:6c:d3:24:dd:a0:18:ce:3b:e5:c2:7b:14:a0:fc:d1:8f:67:
55:48:5b:71:39:a0:57:3c:26:5c:8e:72:7b:60:de:78:c2:3e:
d8:45:b6:e6:ce:1e:f8:07:96:57:81:90:30:20:23:16:89:2d:
03:e8:d9:37:87:2b:94:07:bf:63:2f:a7:d4:80:c1:3a:c1:fb:
0a:dd:b7:cf:6e:96:20:90:32:02:19:46:e4:dc:ab:62:70:5c:
44:ae:92:f2:b8:ff:0b:b1:5f:b2:a1:2e:14:28:ad:1a:a3:e0:
4d:22:90:6f
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAb1/MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjYwMzA0MTMxNTE0WhcNMjYwNDEwMTMxNTE0WjAYMRYw
FAYDVQQDEw02OWE4MzA2Ni1jZWRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAybuoa75kFRUiIfhHXxzAhVOO/uY19/jBLrd3+kxxF7uEt68nbCZEtEcX
HrD88lrt04Uq2vBbOH6ArQHkXtGMTNRNeWz2jTnnzH7IHORVE/2UHcyeRFczxiHh
gPJ37BNRk9aOytwvxwzhr9WzT4TY4TWDNusBU085joN9Oh576xPYyPNFhD5qeBKJ
4REs3lIdQ+BC83e6JzdSVyY7IAOfq9RdfRr2ugXNYGT6OnuAUxFfNFvp8VWHQL7W
norScmFxqgOERYD4Q8YJUGBdN4nkb7Oh2cXwypM3CbczTIxGfhn/zAdRK8JP6vML
Zr38FRbFJRiiux6s2oHae5cXBni76wIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFCjZ
alWaVQHLZZQ6zfXSbAcoqgtaMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8zMEI3OUUwMjE3Q0MxMUYxQkE5N0E5Q0FEQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmspKMA0GCSqGSIb3DQEB
CwUAA4IBAQAFprnNl9xunpGsp06hdXrswY7VObY6QnMBBHD9U9idOlclzi69Y3j1
il4lPkEpk7VhAK+ixyAHXK4K4HRIq9K8b1R2fNRqHpNWJ4jwsl80FbribnqNupII
sT1BfEEdLOuB6bz4LjC/MtosuBtbEuQ9h9Xb2j2I4qyTVR17n971sMTFqNvq7A1P
2R3mb47HQvswbNMk3aAYzjvlwnsUoPzRj2dVSFtxOaBXPCZcjnJ7YN54wj7YRbbm
zh74B5ZXgZAwICMWiS0D6Nk3hyuUB79jL6fUgME6wfsK3bfPbpYgkDICGUbk3Kti
cFxErpLyuP8LsV+yoS4UKK0ao+BNIpBv
-----END CERTIFICATE-----
Generated at Tue Mar 24 16:14:33 2026 by rpki-client