Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7AB9ABE81C3711F1B08A95CCDAE4EC9C.roa
File: 7AB9ABE81C3711F1B08A95CCDAE4EC9C.roa (raw, json)
Hash identifier: +VPt7epJ/HiC8sos5om08eTzbTcVPuvr8Z+gqJ9UYtM=
Subject key identifier: 90:53:D6:06:CA:73:1C:0F:A6:8B:67:94:C9:10:5E:53:E7:1F:C2:D1
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01BE95
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7AB9ABE81C3711F1B08A95CCDAE4EC9C.roa
Signing time: Tue 10 Mar 2026 04:13:24 +0000
ROA not before: Tue 10 Mar 2026 04:13:19 +0000
ROA not after: Wed 18 Nov 2026 04:13:19 +0000
asID: 205512
IP address blocks: 154.218.6.0/24 maxlen: 24
154.218.7.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 26 Mar 2026 08:06:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114325 (0x1be95)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 10 04:13:19 2026 GMT
Not After : Nov 18 04:13:19 2026 GMT
Subject: CN=69af9a64-894a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:3f:09:47:94:40:55:08:d8:26:03:1d:66:08:
1d:e8:af:45:a9:5d:fe:e2:9b:bd:06:c7:18:2b:00:
67:2f:bf:bb:e2:79:87:f6:87:5c:61:dd:6e:e3:2f:
11:b0:fc:24:26:dc:ea:64:fd:fc:96:cd:fa:df:63:
f2:2f:31:f2:b9:0e:4a:ff:e3:5e:0c:37:6d:bf:cc:
70:e4:9c:1b:a6:c9:33:f6:86:56:25:5c:56:c1:dc:
53:9f:b2:b8:51:c1:cf:81:57:2f:35:a7:04:19:86:
ef:6a:04:00:e4:83:d7:09:d3:2b:a6:7d:0e:ec:54:
8b:7c:6d:b5:ff:7c:ac:cd:3c:87:57:8c:11:e8:ec:
da:a7:7e:82:d4:f7:12:73:8c:95:3c:5d:79:2f:8a:
34:b6:3b:92:83:21:c4:84:3a:c3:8a:00:49:d1:17:
1c:b3:8d:b3:b2:b1:66:4c:e9:a2:84:e5:71:43:71:
05:5a:c0:f7:e0:ed:89:8d:77:39:2f:ee:f3:66:80:
ff:17:f7:99:63:78:72:43:56:76:e0:b8:0f:9f:3b:
5e:3d:5c:63:8b:74:f0:2b:63:22:99:ed:ba:ab:e8:
c9:82:31:20:86:76:f2:1a:50:35:29:45:6a:31:9c:
a5:24:00:a1:49:e8:c7:32:e0:fd:62:4c:20:91:eb:
97:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:53:D6:06:CA:73:1C:0F:A6:8B:67:94:C9:10:5E:53:E7:1F:C2:D1
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7AB9ABE81C3711F1B08A95CCDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.218.6.0/23
Signature Algorithm: sha256WithRSAEncryption
80:37:ea:c4:53:7c:5f:13:9e:5f:e9:65:9d:26:43:a2:16:0f:
7a:2b:b3:70:11:12:4b:57:e6:58:65:ba:13:89:84:52:2f:fb:
2a:4e:c5:ab:c4:44:43:d6:c8:b4:51:b8:3a:27:cf:e5:df:c0:
7e:c4:1e:cf:a9:93:18:dc:dd:aa:28:94:f4:fb:52:54:39:75:
f1:79:c9:e6:fd:79:b1:a5:a5:4f:34:1f:d5:fb:1e:bc:c8:2d:
07:67:8e:85:88:35:10:c2:5a:83:13:c3:78:f0:7d:38:31:ba:
c2:02:53:1e:80:39:40:22:78:0e:70:2a:70:31:5b:b5:80:07:
be:77:fd:94:06:60:8e:dc:1b:4c:cc:2e:f6:4b:95:61:3b:e4:
1c:2f:d0:b1:4e:ea:cd:27:39:b7:4b:cc:84:2b:f5:e9:8d:08:
a5:6f:40:c7:b7:37:a6:a1:d2:ac:b4:94:38:48:b2:3d:0e:dd:
b9:75:16:7b:a6:a4:fb:67:ea:b9:45:bc:93:2f:98:d9:be:42:
14:48:e0:e2:03:66:73:a2:03:39:10:01:d2:6c:5b:55:0d:bc:
34:c4:8b:39:08:3c:10:df:fa:9e:b3:70:57:e9:d1:8d:c9:23:
17:e7:2a:1c:10:3c:38:53:e3:b3:5d:b6:73:e6:74:b6:02:71:
42:50:1f:93
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAb6VMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjYwMzEwMDQxMzE5WhcNMjYxMTE4MDQxMzE5WjAYMRYw
FAYDVQQDEw02OWFmOWE2NC04OTRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAoj8JR5RAVQjYJgMdZggd6K9FqV3+4pu9BscYKwBnL7+74nmH9odcYd1u
4y8RsPwkJtzqZP38ls3632PyLzHyuQ5K/+NeDDdtv8xw5Jwbpskz9oZWJVxWwdxT
n7K4UcHPgVcvNacEGYbvagQA5IPXCdMrpn0O7FSLfG21/3yszTyHV4wR6Ozap36C
1PcSc4yVPF15L4o0tjuSgyHEhDrDigBJ0Rccs42zsrFmTOmihOVxQ3EFWsD34O2J
jXc5L+7zZoD/F/eZY3hyQ1Z24LgPnztePVxji3TwK2Mime26q+jJgjEghnbyGlA1
KUVqMZylJAChSejHMuD9YkwgkeuXDQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFJBT
1gbKcxwPpotnlMkQXlPnH8LRMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC83QUI5QUJFODFDMzcxMUYxQjA4QTk1Q0NEQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBmtoGMA0GCSqGSIb3DQEB
CwUAA4IBAQCAN+rEU3xfE55f6WWdJkOiFg96K7NwERJLV+ZYZboTiYRSL/sqTsWr
xERD1si0Ubg6J8/l38B+xB7PqZMY3N2qKJT0+1JUOXXxecnm/XmxpaVPNB/V+x68
yC0HZ46FiDUQwlqDE8N48H04MbrCAlMegDlAIngOcCpwMVu1gAe+d/2UBmCO3BtM
zC72S5VhO+QcL9CxTurNJzm3S8yEK/XpjQilb0DHtzemodKstJQ4SLI9Dt25dRZ7
pqT7Z+q5RbyTL5jZvkIUSODiA2ZzogM5EAHSbFtVDbw0xIs5CDwQ3/qes3BX6dGN
ySMX5yocEDw4U+OzXbZz5nS2AnFCUB+T
-----END CERTIFICATE-----
Generated at Tue Mar 24 16:14:50 2026 by rpki-client