Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/44DA8CAE160611F18054E9E8DAE4EC9C.roa
File: 44DA8CAE160611F18054E9E8DAE4EC9C.roa (raw, json)
Hash identifier: VJOM7Iw6TPSAUME5gXsobD18yGh6oqj2LwFwx40fnrs=
Subject key identifier: 7C:FE:F7:1A:34:41:24:74:94:07:D5:B0:CC:EA:5A:7D:32:EC:EA:A8
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01BCB3
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/44DA8CAE160611F18054E9E8DAE4EC9C.roa
Signing time: Mon 02 Mar 2026 07:06:01 +0000
ROA not before: Mon 02 Mar 2026 07:05:57 +0000
ROA not after: Mon 09 Mar 2026 07:05:57 +0000
asID: 150706
IP address blocks: 154.223.168.0/24 maxlen: 24
154.223.169.0/24 maxlen: 24
154.223.170.0/24 maxlen: 24
154.223.171.0/24 maxlen: 24
154.223.176.0/24 maxlen: 24
154.223.177.0/24 maxlen: 24
154.223.178.0/24 maxlen: 24
154.223.179.0/24 maxlen: 24
154.223.180.0/24 maxlen: 24
154.223.181.0/24 maxlen: 24
154.223.182.0/24 maxlen: 24
154.223.183.0/24 maxlen: 24
154.223.188.0/24 maxlen: 24
154.223.189.0/24 maxlen: 24
154.223.190.0/24 maxlen: 24
154.223.191.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 08 Mar 2026 08:35:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113843 (0x1bcb3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 2 07:05:57 2026 GMT
Not After : Mar 9 07:05:57 2026 GMT
Subject: CN=69a536d9-ff56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:63:10:20:60:e9:75:cf:af:4c:fa:d9:b1:0f:
d1:f2:7c:4d:2d:c1:24:9f:7c:8a:46:e4:56:63:95:
06:73:88:ac:b0:37:cc:f2:60:f4:72:31:fa:d0:d9:
37:8e:20:53:fc:ec:3b:bd:97:df:dd:8a:2e:e5:2f:
5c:59:43:32:18:d8:a3:27:7e:21:50:5e:b2:47:98:
6f:d0:8c:ba:a5:d8:96:33:9f:2d:d2:23:ce:07:3a:
a2:7d:f1:e8:7a:50:f6:b5:39:11:8b:08:33:91:47:
38:2c:80:bb:08:68:5e:fe:05:9e:a5:33:99:7f:77:
c3:a8:30:ab:bf:6d:dc:1a:37:ad:a1:55:da:ad:74:
e8:2e:ee:9f:2b:31:5f:2b:1d:fd:de:31:5f:49:de:
1c:4e:58:64:08:7b:5e:b8:36:64:15:be:50:d1:08:
b5:3e:df:a0:4d:63:93:8a:9e:10:8f:fd:55:38:39:
61:50:38:b3:55:b3:8a:40:e2:11:b3:96:44:54:04:
1c:74:74:00:4b:33:6f:8f:c6:4a:b1:6c:07:c2:ba:
34:c9:9b:3d:af:f0:c9:c8:b6:7c:7e:d6:2e:43:3c:
1b:b3:3d:53:b3:e3:02:33:84:e5:09:66:99:0f:a1:
ea:14:4d:52:33:80:e3:87:de:0c:5a:b0:63:15:89:
0c:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:FE:F7:1A:34:41:24:74:94:07:D5:B0:CC:EA:5A:7D:32:EC:EA:A8
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/44DA8CAE160611F18054E9E8DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.223.168.0/22
154.223.176.0/21
154.223.188.0/22
Signature Algorithm: sha256WithRSAEncryption
89:5c:2e:bd:e0:5e:0f:14:5c:7f:fe:ff:d0:1b:2b:db:2f:4e:
85:6a:9d:4a:28:ca:38:49:a4:2f:c6:a7:08:1d:32:a5:0b:44:
73:51:d1:4e:a2:c8:76:b7:fa:05:4d:ba:3b:60:f0:00:18:5b:
86:ab:04:45:3a:dd:cc:dc:a3:e9:9b:32:8f:fe:3e:56:43:b1:
94:47:b3:48:89:88:23:59:a6:69:eb:af:2b:ab:ec:42:32:54:
8d:7d:b0:10:44:36:eb:bb:89:cf:3d:27:20:a3:02:0b:b1:45:
5f:c0:0d:c9:8a:5c:f3:17:2f:20:88:85:53:72:b3:a8:80:38:
87:f0:9f:60:11:5d:2a:38:d1:5f:01:db:d6:46:a1:c6:79:1f:
b1:ef:9a:da:c1:ba:ff:24:a3:80:3d:75:bd:7a:dd:d4:84:bb:
49:6c:60:e5:a5:56:12:50:e6:d0:b7:69:82:c7:d3:63:85:18:
da:a2:76:c7:e7:7a:06:78:6d:4b:96:9b:af:3f:89:b1:54:d9:
ff:36:e9:a2:73:9c:28:2f:77:d0:33:e6:00:4a:95:f8:cf:39:
db:08:d7:56:96:9b:02:b8:f1:b7:49:1a:50:c3:ba:1d:7f:03:
d2:3a:c7:b4:7b:81:e4:6a:6f:59:f7:75:d1:60:f6:02:fb:9a:
63:a9:ff:9b
-----BEGIN CERTIFICATE-----
MIIFkDCCBHigAwIBAgIDAbyzMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjYwMzAyMDcwNTU3WhcNMjYwMzA5MDcwNTU3WjAYMRYw
FAYDVQQDEw02OWE1MzZkOS1mZjU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAvGMQIGDpdc+vTPrZsQ/R8nxNLcEkn3yKRuRWY5UGc4issDfM8mD0cjH6
0Nk3jiBT/Ow7vZff3You5S9cWUMyGNijJ34hUF6yR5hv0Iy6pdiWM58t0iPOBzqi
ffHoelD2tTkRiwgzkUc4LIC7CGhe/gWepTOZf3fDqDCrv23cGjetoVXarXToLu6f
KzFfKx393jFfSd4cTlhkCHteuDZkFb5Q0Qi1Pt+gTWOTip4Qj/1VODlhUDizVbOK
QOIRs5ZEVAQcdHQASzNvj8ZKsWwHwro0yZs9r/DJyLZ8ftYuQzwbsz1Ts+MCM4Tl
CWaZD6HqFE1SM4Djh94MWrBjFYkMTQIDAQABo4ICsTCCAq0wHQYDVR0OBBYEFHz+
9xo0QSR0lAfVsMzqWn0y7OqoMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC80NERBOENBRTE2MDYxMUYxODA1NEU5RThEQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQCmt+oAwQDmt+wAwQCmt+8
MA0GCSqGSIb3DQEBCwUAA4IBAQCJXC694F4PFFx//v/QGyvbL06Fap1KKMo4SaQv
xqcIHTKlC0RzUdFOosh2t/oFTbo7YPAAGFuGqwRFOt3M3KPpmzKP/j5WQ7GUR7NI
iYgjWaZp668rq+xCMlSNfbAQRDbru4nPPScgowILsUVfwA3JilzzFy8giIVTcrOo
gDiH8J9gEV0qONFfAdvWRqHGeR+x75rawbr/JKOAPXW9et3UhLtJbGDlpVYSUObQ
t2mCx9NjhRjaonbH53oGeG1LlpuvP4mxVNn/Numic5woL3fQM+YASpX4zznbCNdW
lpsCuPG3SRpQw7odfwPSOse0e4Hkam9Z93XRYPYC+5pjqf+b
-----END CERTIFICATE-----
Generated at Fri Mar 6 09:55:02 2026 by rpki-client