Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C868492C462F11F19602E4A7CE1D38B0.roa
File: C868492C462F11F19602E4A7CE1D38B0.roa (raw, json)
Hash identifier: f2kBZievCM69G6RWGJKaRFksiQcAwLMyYaGaIUBBhbs=
Subject key identifier: 22:C8:54:F9:5E:66:CA:DA:E6:1E:72:22:52:18:9D:21:63:34:3E:8D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C935
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C868492C462F11F19602E4A7CE1D38B0.roa
Signing time: Sat 02 May 2026 14:04:07 +0000
ROA not before: Sat 02 May 2026 14:04:02 +0000
ROA not after: Sun 07 Jun 2026 14:04:02 +0000
asID: 272092
IP address blocks: 154.83.29.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 11 May 2026 00:07:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117045 (0x1c935)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 2 14:04:02 2026 GMT
Not After : Jun 7 14:04:02 2026 GMT
Subject: CN=69f60457-9cbb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:a3:da:b6:38:84:98:fc:c4:bf:db:a1:4d:a8:
71:c9:70:a4:32:60:27:31:50:73:44:88:79:cf:01:
9f:6c:1c:30:6e:10:f8:b4:42:59:dd:b2:48:40:7d:
64:e8:83:2c:63:f3:95:e3:e3:a2:e8:84:32:9c:60:
a2:b4:bf:99:25:3a:13:53:48:3e:fa:c9:c6:58:65:
ed:a1:8c:36:97:cd:58:7d:f4:e0:d0:39:12:b3:18:
40:74:2f:65:b2:c2:e5:d7:e9:2a:5e:47:0d:7b:bc:
37:28:53:9a:f7:5a:88:83:69:88:a9:dd:c1:c2:c8:
f9:a8:38:1f:d6:4e:cb:6c:58:84:ec:7c:d3:82:a1:
53:b3:35:d6:3c:45:c5:8f:2b:1a:c5:e8:7d:49:35:
2d:79:f9:c7:32:c5:bb:70:62:29:03:6c:c7:f2:63:
fd:37:ec:7b:f6:36:61:51:48:81:a4:6c:37:6e:b0:
75:29:31:0f:38:f3:ab:d7:ed:f3:c2:45:5d:63:45:
2d:0a:9f:a1:3e:e2:9c:24:8a:3e:93:0b:a3:77:dd:
bb:d3:9c:1e:8e:59:cd:fb:31:a1:91:16:d2:68:89:
cb:23:d1:b1:2d:1a:52:e6:ac:1b:ea:4d:11:0f:14:
99:03:c0:d8:3d:9f:97:62:b7:d5:0a:30:fe:72:01:
f6:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:C8:54:F9:5E:66:CA:DA:E6:1E:72:22:52:18:9D:21:63:34:3E:8D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C868492C462F11F19602E4A7CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.83.29.0/24
Signature Algorithm: sha256WithRSAEncryption
52:d6:37:1c:b9:a1:07:35:b9:16:2e:73:da:7e:6a:c6:66:e6:
f8:18:f2:e9:7d:42:68:fe:82:0f:52:c0:7d:b0:0e:26:e3:dc:
c3:e2:39:c2:60:6b:dd:30:2e:a6:45:4d:71:64:02:da:3f:6a:
a4:a3:70:c5:0f:b2:61:84:6f:f4:99:cf:2e:7c:ba:18:33:5c:
af:eb:e6:b9:1a:b6:4b:aa:6f:f2:7e:37:24:71:dd:0d:c3:f5:
3b:ce:de:fb:3b:4a:81:2a:2f:ed:11:54:5c:26:84:22:78:49:
a3:1a:48:de:b3:b1:2b:58:6e:31:1c:dd:eb:f2:4a:4b:b4:1f:
55:9e:ee:37:01:49:20:17:1c:c2:00:ed:0b:b8:0d:d6:c8:fa:
99:16:9b:16:58:54:01:24:b5:08:3f:2d:1b:a9:52:5b:81:ac:
66:0d:63:e2:c3:60:89:95:0f:f5:ed:bd:bc:87:7a:14:03:ab:
13:6b:60:fb:05:33:b1:b2:41:d8:9b:c2:4a:85:a3:25:42:d3:
a6:d9:8a:c8:52:77:4b:6d:5b:d7:4e:e8:b8:06:4b:f5:d2:20:
f7:ae:e7:1e:92:39:32:1c:4e:02:f4:49:8a:57:12:90:fb:60:
bf:bf:47:2c:58:5d:e2:e3:36:b0:c6:da:a2:46:31:5f:b1:71:
a8:a6:69:ce
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAck1MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjYwNTAyMTQwNDAyWhcNMjYwNjA3MTQwNDAyWjAYMRYw
FAYDVQQDEw02OWY2MDQ1Ny05Y2JiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA06PatjiEmPzEv9uhTahxyXCkMmAnMVBzRIh5zwGfbBwwbhD4tEJZ3bJI
QH1k6IMsY/OV4+Oi6IQynGCitL+ZJToTU0g++snGWGXtoYw2l81YffTg0DkSsxhA
dC9lssLl1+kqXkcNe7w3KFOa91qIg2mIqd3Bwsj5qDgf1k7LbFiE7HzTgqFTszXW
PEXFjysaxeh9STUtefnHMsW7cGIpA2zH8mP9N+x79jZhUUiBpGw3brB1KTEPOPOr
1+3zwkVdY0UtCp+hPuKcJIo+kwujd92705wejlnN+zGhkRbSaInLI9GxLRpS5qwb
6k0RDxSZA8DYPZ+XYrfVCjD+cgH2mQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFCLI
VPleZsra5h5yIlIYnSFjND6NMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9DODY4NDkyQzQ2MkYxMUYxOTYwMkU0QTdDRTFEMzhCMC5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmlMdMA0GCSqGSIb3DQEB
CwUAA4IBAQBS1jccuaEHNbkWLnPafmrGZub4GPLpfUJo/oIPUsB9sA4m49zD4jnC
YGvdMC6mRU1xZALaP2qko3DFD7JhhG/0mc8ufLoYM1yv6+a5GrZLqm/yfjckcd0N
w/U7zt77O0qBKi/tEVRcJoQieEmjGkjes7ErWG4xHN3r8kpLtB9Vnu43AUkgFxzC
AO0LuA3WyPqZFpsWWFQBJLUIPy0bqVJbgaxmDWPiw2CJlQ/17b28h3oUA6sTa2D7
BTOxskHYm8JKhaMlQtOm2YrIUndLbVvXTui4Bkv10iD3rucekjkyHE4C9EmKVxKQ
+2C/v0csWF3i4zawxtqiRjFfsXGopmnO
-----END CERTIFICATE-----
Generated at Sat May 9 11:02:32 2026 by rpki-client