Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/942731E444A111F1824AAAADCE1D38B0.roa
File: 942731E444A111F1824AAAADCE1D38B0.roa (raw, json)
Hash identifier: VSXmK7IiZM5t3pHKGmqNsoo72hLxadbRwvB6s6ox5Pw=
Subject key identifier: 3E:98:21:F1:DE:D6:4F:7C:56:30:82:25:32:D6:47:41:12:16:BC:2E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C861
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/942731E444A111F1824AAAADCE1D38B0.roa
Signing time: Thu 30 Apr 2026 14:33:39 +0000
ROA not before: Thu 30 Apr 2026 14:33:35 +0000
ROA not after: Fri 05 Jun 2026 14:33:35 +0000
asID: 15221
IP address blocks: 154.198.32.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 11 May 2026 00:07:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116833 (0x1c861)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 30 14:33:35 2026 GMT
Not After : Jun 5 14:33:35 2026 GMT
Subject: CN=69f36843-dc56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:dd:73:3b:34:59:7a:c9:42:ef:d5:90:5d:19:
67:aa:41:da:03:f5:93:d0:4d:af:ad:4f:57:b5:b0:
08:32:2e:d9:79:42:b8:93:12:a4:32:2d:0d:a9:7e:
37:38:8e:b2:d2:c7:18:c5:4d:f5:cc:74:58:96:26:
1c:de:6a:04:c2:15:c2:8a:09:9a:2c:3f:13:b2:61:
e4:1c:5f:6e:2b:f7:6f:bd:07:58:9d:f5:a1:ad:94:
27:b2:74:b5:93:80:f9:42:4f:6a:cd:30:df:bd:7c:
1c:02:14:d5:b9:86:56:88:62:46:70:bd:72:64:63:
ab:64:40:3a:e1:24:ea:09:a5:5e:de:b8:02:ea:02:
63:e2:5b:74:c6:07:5b:48:d4:61:07:79:cc:3a:b7:
bc:6a:10:c4:25:21:50:b9:db:4f:9e:3e:74:3e:05:
29:67:09:39:89:34:14:b1:f8:fe:03:85:ed:41:97:
e7:13:15:c6:96:ca:5f:41:e2:de:f6:74:01:74:45:
94:5e:bb:55:f3:b5:43:ed:f9:12:f5:82:9d:e8:1f:
db:25:94:23:7e:23:e0:7e:33:c9:d4:8c:28:26:d9:
49:c2:47:7a:0d:6e:cf:96:0d:4e:07:8d:28:6c:a8:
8c:04:48:63:63:94:e7:1e:c3:0e:78:50:b6:a3:44:
6e:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:98:21:F1:DE:D6:4F:7C:56:30:82:25:32:D6:47:41:12:16:BC:2E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/942731E444A111F1824AAAADCE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.198.32.0/22
Signature Algorithm: sha256WithRSAEncryption
d5:e2:79:9a:72:a4:3f:37:aa:f5:3b:a5:de:29:38:13:ce:fa:
0b:a8:ac:f9:ea:ae:34:df:74:69:bc:32:7c:c0:6c:cb:9a:d1:
6b:a0:fb:8e:d8:76:7c:3c:36:71:1c:66:fb:fc:85:a6:bb:e1:
86:78:c6:82:3b:10:b9:84:15:71:57:c9:01:40:8f:c8:e4:0d:
df:25:ed:14:80:88:54:d4:75:08:8c:02:8a:17:1e:26:0b:0e:
15:a8:2c:eb:29:58:27:b4:b0:b3:c6:cb:cc:0d:6e:38:a7:7b:
88:e9:28:26:fa:87:7a:b4:52:0d:9f:1d:db:76:3a:2d:9f:8f:
d3:f7:61:47:ca:8b:63:f3:2f:79:47:96:19:1f:3a:3b:59:0d:
1d:0d:85:ff:e7:f7:18:85:4c:dd:a4:cc:b5:20:7e:b6:25:da:
42:ef:77:5f:23:fd:b8:9f:7d:8f:b5:91:77:23:3a:c8:38:3d:
3d:3f:1d:20:b1:15:89:79:ad:12:d0:d3:7a:08:84:bd:17:8e:
ae:52:fe:9f:4e:2b:5b:49:76:79:43:6a:2f:ed:54:35:00:08:
b8:14:b1:52:52:5f:92:fe:fe:58:1f:95:b9:08:07:5b:c5:95:
83:f1:fc:8a:fb:87:af:00:b5:7c:4a:08:de:21:01:76:ce:b0:
6e:cc:3a:80
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAchhMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjYwNDMwMTQzMzM1WhcNMjYwNjA1MTQzMzM1WjAYMRYw
FAYDVQQDEw02OWYzNjg0My1kYzU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAtt1zOzRZeslC79WQXRlnqkHaA/WT0E2vrU9XtbAIMi7ZeUK4kxKkMi0N
qX43OI6y0scYxU31zHRYliYc3moEwhXCigmaLD8TsmHkHF9uK/dvvQdYnfWhrZQn
snS1k4D5Qk9qzTDfvXwcAhTVuYZWiGJGcL1yZGOrZEA64STqCaVe3rgC6gJj4lt0
xgdbSNRhB3nMOre8ahDEJSFQudtPnj50PgUpZwk5iTQUsfj+A4XtQZfnExXGlspf
QeLe9nQBdEWUXrtV87VD7fkS9YKd6B/bJZQjfiPgfjPJ1IwoJtlJwkd6DW7Plg1O
B40obKiMBEhjY5TnHsMOeFC2o0RuEwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFD6Y
IfHe1k98VjCCJTLWR0ESFrwuMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC85NDI3MzFFNDQ0QTExMUYxODI0QUFBQURDRTFEMzhCMC5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCmsYgMA0GCSqGSIb3DQEB
CwUAA4IBAQDV4nmacqQ/N6r1O6XeKTgTzvoLqKz56q4033RpvDJ8wGzLmtFroPuO
2HZ8PDZxHGb7/IWmu+GGeMaCOxC5hBVxV8kBQI/I5A3fJe0UgIhU1HUIjAKKFx4m
Cw4VqCzrKVgntLCzxsvMDW44p3uI6Sgm+od6tFINnx3bdjotn4/T92FHyotj8y95
R5YZHzo7WQ0dDYX/5/cYhUzdpMy1IH62JdpC73dfI/24n32PtZF3IzrIOD09Px0g
sRWJea0S0NN6CIS9F46uUv6fTitbSXZ5Q2ov7VQ1AAi4FLFSUl+S/v5YH5W5CAdb
xZWD8fyK+4evALV8SgjeIQF2zrBuzDqA
-----END CERTIFICATE-----
Generated at Sat May 9 11:02:08 2026 by rpki-client