Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C463CBD21F8B11F1B0EF1BBDDAE4EC9C.roa
File: C463CBD21F8B11F1B0EF1BBDDAE4EC9C.roa (raw, json)
Hash identifier: aG/SAdte2ZUdv4SHXeHfEAhOA3pjhMVEzmAW+MBvcA8=
Subject key identifier: DC:21:66:4E:38:73:E1:D6:FB:D6:9F:FC:F8:75:50:7C:16:06:FD:53
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01BF66
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C463CBD21F8B11F1B0EF1BBDDAE4EC9C.roa
Signing time: Sat 14 Mar 2026 09:54:18 +0000
ROA not before: Sat 14 Mar 2026 09:54:14 +0000
ROA not after: Sun 31 May 2026 09:54:14 +0000
asID: 399077
IP address blocks: 154.211.64.0/18 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 23 Mar 2026 00:06:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114534 (0x1bf66)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 14 09:54:14 2026 GMT
Not After : May 31 09:54:14 2026 GMT
Subject: CN=69b5304a-2309
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:f8:01:a1:7c:cd:86:22:6f:5b:19:80:92:1b:
be:00:a6:88:e1:9b:c1:aa:25:b9:07:02:b8:df:45:
92:7c:c8:4b:ef:9c:24:75:a3:eb:bf:21:95:b9:17:
06:b6:44:ce:e7:0f:40:92:71:d0:95:85:a5:6c:83:
bf:7e:09:bd:57:6a:80:b8:4e:f3:74:42:99:8b:a2:
ab:17:0b:a8:d9:7a:e0:53:1d:fd:62:f8:cb:18:45:
9f:7b:44:1a:ba:79:32:a7:0f:64:ab:92:40:2b:f5:
42:9b:83:04:96:15:5a:9a:62:c7:ee:14:41:e8:83:
4b:70:30:d1:f1:6b:0f:0e:e7:3e:92:70:fb:be:5c:
2b:93:39:85:35:01:5d:04:bd:42:b3:58:c0:c7:c5:
eb:33:eb:dc:bc:05:2d:c8:98:3f:89:ed:58:7a:50:
e2:1a:60:7b:5d:1f:f8:2c:b3:35:59:b6:7f:b1:86:
57:31:da:5e:a4:ed:8f:d4:55:79:89:18:9a:a8:c0:
bc:96:2f:28:b4:ef:89:78:b5:4f:27:c1:98:45:e0:
22:29:6d:f5:dd:0b:2a:ec:cf:3f:c8:6c:6d:57:f6:
5e:49:4b:78:86:d9:7a:17:61:7c:3b:f7:58:8a:cf:
1c:21:45:75:76:81:ce:66:e0:58:b0:02:55:76:d8:
a0:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:21:66:4E:38:73:E1:D6:FB:D6:9F:FC:F8:75:50:7C:16:06:FD:53
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C463CBD21F8B11F1B0EF1BBDDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.211.64.0/18
Signature Algorithm: sha256WithRSAEncryption
50:d3:e1:1e:5c:b7:c8:02:ca:8f:90:55:9b:8f:5c:09:50:74:
98:a0:4a:f2:46:76:fe:c4:d7:28:f5:21:54:49:31:c3:86:f1:
c5:6e:b6:44:b7:5b:99:d4:68:f5:b6:6a:30:4d:f8:e2:ec:1c:
9c:64:4e:c3:34:6a:f2:23:81:98:f4:5f:21:82:45:dd:97:27:
59:37:fe:6b:61:ba:ec:07:b3:dc:a9:90:c8:f4:33:83:0e:0a:
8e:5c:a6:75:12:1a:6d:d5:cd:3b:0a:e2:20:5e:31:85:e2:47:
a2:54:77:39:81:6c:79:44:1c:f0:b9:a3:b4:f4:6d:ed:5e:08:
79:16:54:e9:8a:86:10:0d:dd:c6:34:b2:59:8f:0a:22:6b:84:
95:71:b8:4f:06:f2:69:68:ca:af:21:dd:c2:dc:e3:9a:04:fe:
b1:45:9c:9f:0e:54:33:03:5d:36:13:b6:49:e6:7c:a2:d2:78:
46:1b:e6:fa:02:d8:e2:26:ff:73:6f:a8:00:1a:60:2e:49:43:
35:e6:6f:9a:3c:74:9d:fd:48:98:92:b7:29:95:36:36:39:5e:
54:e4:08:2d:c9:d4:a7:6f:4e:cd:5c:f4:c7:04:70:c2:57:d4:
91:07:47:b9:ca:5d:d8:f7:3d:cc:e7:f5:3a:f0:09:8a:10:77:
ec:c5:8e:4e
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAb9mMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjYwMzE0MDk1NDE0WhcNMjYwNTMxMDk1NDE0WjAYMRYw
FAYDVQQDEw02OWI1MzA0YS0yMzA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAy/gBoXzNhiJvWxmAkhu+AKaI4ZvBqiW5BwK430WSfMhL75wkdaPrvyGV
uRcGtkTO5w9AknHQlYWlbIO/fgm9V2qAuE7zdEKZi6KrFwuo2XrgUx39YvjLGEWf
e0Qaunkypw9kq5JAK/VCm4MElhVammLH7hRB6INLcDDR8WsPDuc+knD7vlwrkzmF
NQFdBL1Cs1jAx8XrM+vcvAUtyJg/ie1YelDiGmB7XR/4LLM1WbZ/sYZXMdpepO2P
1FV5iRiaqMC8li8otO+JeLVPJ8GYReAiKW313Qsq7M8/yGxtV/ZeSUt4htl6F2F8
O/dYis8cIUV1doHOZuBYsAJVdtigNQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFNwh
Zk44c+HW+9af/Ph1UHwWBv1TMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9DNDYzQ0JEMjFGOEIxMUYxQjBFRjFCQkREQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQGmtNAMA0GCSqGSIb3DQEB
CwUAA4IBAQBQ0+EeXLfIAsqPkFWbj1wJUHSYoEryRnb+xNco9SFUSTHDhvHFbrZE
t1uZ1Gj1tmowTfji7BycZE7DNGryI4GY9F8hgkXdlydZN/5rYbrsB7PcqZDI9DOD
DgqOXKZ1Ehpt1c07CuIgXjGF4keiVHc5gWx5RBzwuaO09G3tXgh5FlTpioYQDd3G
NLJZjwoia4SVcbhPBvJpaMqvId3C3OOaBP6xRZyfDlQzA102E7ZJ5nyi0nhGG+b6
AtjiJv9zb6gAGmAuSUM15m+aPHSd/UiYkrcplTY2OV5U5AgtydSnb07NXPTHBHDC
V9SRB0e5yl3Y9z3M5/U68AmKEHfsxY5O
-----END CERTIFICATE-----
Generated at Sat Mar 21 21:29:42 2026 by rpki-client