Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C1766694447711F1851D74B3CE1D38B0.roa
File: C1766694447711F1851D74B3CE1D38B0.roa (raw, json)
Hash identifier: A9Jy/aokqjeMEEnhqkwpTyE+Bv0tnR3Tj5xpgLWZYkk=
Subject key identifier: C1:2F:CA:7B:DF:17:F7:DE:05:C8:09:CD:21:62:11:9F:7A:79:53:13
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C813
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C1766694447711F1851D74B3CE1D38B0.roa
Signing time: Thu 30 Apr 2026 09:34:17 +0000
ROA not before: Thu 30 Apr 2026 09:34:12 +0000
ROA not after: Sun 26 Jul 2026 09:34:12 +0000
asID: 29852
IP address blocks: 154.194.58.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 08 May 2026 00:07:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116755 (0x1c813)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 30 09:34:12 2026 GMT
Not After : Jul 26 09:34:12 2026 GMT
Subject: CN=69f32218-e7a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:fc:60:ae:cf:b2:bf:e8:26:f4:99:59:4d:09:
aa:12:fa:0b:a8:a2:c4:f9:c8:b7:0c:5d:86:d6:5d:
9b:eb:21:25:10:b9:6b:15:b8:cc:dc:e4:1d:6f:3e:
70:c9:ae:b0:e1:69:a5:25:df:eb:28:f7:54:43:a1:
d3:11:db:98:e1:7d:19:30:89:9c:67:83:13:78:51:
60:10:99:8e:bf:ff:f9:8a:9a:39:fc:76:5e:54:36:
98:17:d4:b8:d8:56:5d:e3:a6:f9:29:b1:02:4e:1b:
c0:9b:09:77:ce:55:40:91:e7:19:96:8f:59:ce:8b:
ba:bb:2b:e5:45:b6:1d:28:29:1e:da:8b:32:47:58:
32:f7:ed:f3:be:2d:43:30:54:af:58:cc:e2:cf:90:
16:4a:ef:a3:d5:98:d6:a1:3b:26:98:b6:be:5f:f7:
5e:58:13:a1:47:aa:0d:84:ae:a9:f7:d1:87:e3:bc:
96:e2:06:a9:83:58:c6:07:ea:b5:35:4d:85:45:3f:
4d:89:00:31:0b:75:1a:d4:30:02:2c:99:aa:86:fe:
b8:a1:a7:0e:10:e4:86:a7:1e:44:6e:de:3f:73:54:
9c:db:d1:ed:77:ca:30:f3:b0:09:5d:0b:ff:de:9e:
e5:c3:66:df:4d:56:f1:da:93:7d:6b:ec:37:dd:36:
b9:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:2F:CA:7B:DF:17:F7:DE:05:C8:09:CD:21:62:11:9F:7A:79:53:13
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C1766694447711F1851D74B3CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.58.0/24
Signature Algorithm: sha256WithRSAEncryption
b7:7a:df:1b:ce:5a:32:fe:af:80:19:f4:ba:02:1d:d7:05:ac:
a4:c7:5a:bd:ac:1e:da:b3:cb:6c:fe:5e:ad:50:26:b1:9c:1b:
84:90:29:fc:20:44:42:62:c5:05:aa:c0:e5:18:0f:6f:28:f4:
cf:87:0d:c3:b9:6f:40:0e:0e:90:58:fe:ad:ce:7d:92:73:f1:
47:0f:24:28:ae:33:96:5e:2c:0d:db:36:8b:5c:35:07:7e:8c:
00:a9:12:8b:f9:31:64:fd:e4:4e:78:9a:7a:94:2e:4b:37:36:
54:0c:80:b7:47:3c:41:f9:cb:4c:e5:9c:8c:1a:f5:c6:ef:ab:
21:d2:97:cf:27:df:48:57:d9:1b:fc:81:8d:71:2e:0e:0e:2b:
c9:be:17:5e:c1:51:dc:92:2e:25:34:34:04:6a:98:3a:62:09:
c7:06:c4:aa:96:ec:b6:6e:03:9a:1d:47:a7:be:b5:59:de:13:
3f:45:54:0f:d3:d4:f8:71:b0:33:1e:9d:21:0f:2e:3d:54:c5:
30:f2:6b:18:1e:55:8b:6a:f4:39:3e:14:f7:ee:e7:0a:91:8f:
68:5d:0e:c1:93:5b:4b:f7:24:d6:66:6d:62:f4:5f:96:5b:67:
e2:10:26:4f:a4:db:a8:d5:f8:f9:d3:f4:14:83:36:ad:00:ba:
7b:d5:1e:00
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAcgTMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjYwNDMwMDkzNDEyWhcNMjYwNzI2MDkzNDEyWjAYMRYw
FAYDVQQDEw02OWYzMjIxOC1lN2EwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAqPxgrs+yv+gm9JlZTQmqEvoLqKLE+ci3DF2G1l2b6yElELlrFbjM3OQd
bz5wya6w4WmlJd/rKPdUQ6HTEduY4X0ZMImcZ4MTeFFgEJmOv//5ipo5/HZeVDaY
F9S42FZd46b5KbECThvAmwl3zlVAkecZlo9Zzou6uyvlRbYdKCke2osyR1gy9+3z
vi1DMFSvWMziz5AWSu+j1ZjWoTsmmLa+X/deWBOhR6oNhK6p99GH47yW4gapg1jG
B+q1NU2FRT9NiQAxC3Ua1DACLJmqhv64oacOEOSGpx5Ebt4/c1Sc29Htd8ow87AJ
XQv/3p7lw2bfTVbx2pN9a+w33Ta5UQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFMEv
ynvfF/feBcgJzSFiEZ96eVMTMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9DMTc2NjY5NDQ0NzcxMUYxODUxRDc0QjNDRTFEMzhCMC5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmsI6MA0GCSqGSIb3DQEB
CwUAA4IBAQC3et8bzloy/q+AGfS6Ah3XBaykx1q9rB7as8ts/l6tUCaxnBuEkCn8
IERCYsUFqsDlGA9vKPTPhw3DuW9ADg6QWP6tzn2Sc/FHDyQorjOWXiwN2zaLXDUH
fowAqRKL+TFk/eROeJp6lC5LNzZUDIC3RzxB+ctM5ZyMGvXG76sh0pfPJ99IV9kb
/IGNcS4ODivJvhdewVHcki4lNDQEapg6YgnHBsSqluy2bgOaHUenvrVZ3hM/RVQP
09T4cbAzHp0hDy49VMUw8msYHlWLavQ5PhT37ucKkY9oXQ7Bk1tL9yTWZm1i9F+W
W2fiECZPpNuo1fj50/QUgzatALp71R4A
-----END CERTIFICATE-----
Generated at Wed May 6 16:44:17 2026 by rpki-client