Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D79A7FF219FA11F182C3E8BFDAE4EC9C.roa
File: D79A7FF219FA11F182C3E8BFDAE4EC9C.roa (raw, json)
Hash identifier: DowOg8UhLWTQpSyFQufHS2I5Q0qvbwQ1zi05YSTd1OM=
Subject key identifier: 04:9D:FC:AE:AC:64:1A:56:58:F5:55:02:74:77:6F:59:F5:5A:E0:32
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01BE2E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D79A7FF219FA11F182C3E8BFDAE4EC9C.roa
Signing time: Sat 07 Mar 2026 07:54:18 +0000
ROA not before: Sat 07 Mar 2026 07:54:13 +0000
ROA not after: Thu 04 Jun 2026 07:54:13 +0000
asID: 136970
IP address blocks: 154.197.2.0/24 maxlen: 24
154.197.3.0/24 maxlen: 24
154.197.4.0/24 maxlen: 24
154.197.5.0/24 maxlen: 24
154.197.6.0/24 maxlen: 24
154.197.7.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 26 Mar 2026 08:06:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114222 (0x1be2e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 7 07:54:13 2026 GMT
Not After : Jun 4 07:54:13 2026 GMT
Subject: CN=69abd9aa-ead1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:a4:c6:4a:dd:9e:a5:bb:26:3c:38:43:87:38:
40:20:e3:fd:83:de:e6:3b:e6:b7:d3:ee:94:5f:4c:
24:04:93:33:9c:63:7e:c5:fc:f1:5d:8a:9b:17:80:
d5:37:f0:c9:21:60:de:3e:ff:a3:a3:3c:b7:73:3b:
ab:a4:91:61:72:03:55:53:62:2e:bf:7e:65:87:46:
f8:76:85:d6:c0:ef:01:31:e0:a5:d0:86:3b:f1:75:
70:ec:05:46:cb:b1:34:85:7e:7d:87:68:58:ca:8e:
ec:c1:b3:29:85:c1:34:dc:07:04:9f:02:25:96:73:
4b:b7:90:e4:ed:80:cb:23:4d:4e:f7:ad:1e:91:a0:
d0:af:96:37:bf:35:26:a8:83:34:55:91:25:c9:1c:
17:ab:42:f2:22:b4:6a:3c:79:16:4f:3a:91:f7:b7:
8e:83:f8:11:48:1a:31:c6:73:23:72:02:d5:36:52:
06:c7:5f:aa:01:47:cf:9c:94:6b:80:10:64:70:67:
f5:57:a1:f7:97:66:97:0f:a9:21:8a:68:ec:b6:00:
68:ba:23:b0:b3:8c:1e:59:6c:01:ee:c5:60:0f:ab:
16:0a:94:f4:e4:58:cf:e9:0a:39:5f:2b:d2:18:86:
93:04:52:f9:d7:1e:22:9c:03:83:5d:9a:4c:ad:5f:
b2:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:9D:FC:AE:AC:64:1A:56:58:F5:55:02:74:77:6F:59:F5:5A:E0:32
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D79A7FF219FA11F182C3E8BFDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.2.0-154.197.7.255
Signature Algorithm: sha256WithRSAEncryption
80:9a:fc:0e:51:0f:d7:a7:8b:a7:db:45:fc:98:ee:85:7d:3d:
9f:7f:0f:9f:7d:6a:3b:53:36:b5:6f:ad:4e:10:c6:cd:27:48:
56:02:56:6f:57:e1:05:91:6f:ee:47:c0:95:52:c6:51:d4:ea:
6d:20:d0:41:1a:d5:31:7f:8c:79:80:88:e4:ca:6c:1f:61:ad:
d4:ce:a6:4c:68:a4:9b:9e:83:d5:04:ca:c9:72:46:d7:a3:9e:
53:80:fe:89:fe:31:50:b6:1d:aa:b8:e2:73:06:4a:09:6c:20:
d9:93:45:54:53:7a:5e:e7:c6:d0:2d:2d:ed:ec:a9:91:d6:98:
61:2f:1b:2a:38:0a:0b:94:50:ab:9e:0d:f2:f7:2e:ff:a0:86:
f3:14:1e:86:b3:a8:31:88:c5:7a:53:6c:d4:9d:df:41:b2:e6:
e2:b1:c0:de:2c:55:06:aa:5d:28:5b:b1:c1:ce:58:48:1a:71:
dc:6a:dc:49:70:fe:b5:bf:9c:98:b5:3e:96:21:3e:be:d0:ea:
85:01:ad:00:48:c7:1a:ef:a7:36:6a:88:28:2b:a5:1b:ed:79:
e9:f5:26:1a:6e:2e:1a:8d:73:f0:24:aa:45:4a:d2:6f:c3:1f:
af:99:50:a8:0f:90:97:bd:0e:a4:23:aa:68:5e:bf:2e:e0:af:
90:08:bc:59
-----BEGIN CERTIFICATE-----
MIIFjDCCBHSgAwIBAgIDAb4uMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjYwMzA3MDc1NDEzWhcNMjYwNjA0MDc1NDEzWjAYMRYw
FAYDVQQDEw02OWFiZDlhYS1lYWQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAyaTGSt2epbsmPDhDhzhAIOP9g97mO+a30+6UX0wkBJMznGN+xfzxXYqb
F4DVN/DJIWDePv+jozy3czurpJFhcgNVU2Iuv35lh0b4doXWwO8BMeCl0IY78XVw
7AVGy7E0hX59h2hYyo7swbMphcE03AcEnwIllnNLt5Dk7YDLI01O960ekaDQr5Y3
vzUmqIM0VZElyRwXq0LyIrRqPHkWTzqR97eOg/gRSBoxxnMjcgLVNlIGx1+qAUfP
nJRrgBBkcGf1V6H3l2aXD6khimjstgBouiOws4weWWwB7sVgD6sWCpT05FjP6Qo5
XyvSGIaTBFL51x4inAODXZpMrV+y6QIDAQABo4ICrTCCAqkwHQYDVR0OBBYEFASd
/K6sZBpWWPVVAnR3b1n1WuAyMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9ENzlBN0ZGMjE5RkExMUYxODJDM0U4QkZEQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOMAwDBAGaxQIDBAOaxQAwDQYJ
KoZIhvcNAQELBQADggEBAICa/A5RD9eni6fbRfyY7oV9PZ9/D599ajtTNrVvrU4Q
xs0nSFYCVm9X4QWRb+5HwJVSxlHU6m0g0EEa1TF/jHmAiOTKbB9hrdTOpkxopJue
g9UEyslyRtejnlOA/on+MVC2Haq44nMGSglsINmTRVRTel7nxtAtLe3sqZHWmGEv
Gyo4CguUUKueDfL3Lv+ghvMUHoazqDGIxXpTbNSd30Gy5uKxwN4sVQaqXShbscHO
WEgacdxq3Elw/rW/nJi1PpYhPr7Q6oUBrQBIxxrvpzZqiCgrpRvteen1JhpuLhqN
c/AkqkVK0m/DH6+ZUKgPkJe9DqQjqmhevy7gr5AIvFk=
-----END CERTIFICATE-----
Generated at Tue Mar 24 13:21:43 2026 by rpki-client