Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FFD6E0EC459611F1BB8F60FBCE1D38B0.roa
File: FFD6E0EC459611F1BB8F60FBCE1D38B0.roa (raw, json)
Hash identifier: ENtPub0FsWowsW88BadNR69zGns8YBB1d8M4R82WcT8=
Subject key identifier: 97:14:4A:67:5A:C1:EE:96:50:DA:48:F4:E1:48:89:1C:80:E8:0F:B8
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C8F9
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FFD6E0EC459611F1BB8F60FBCE1D38B0.roa
Signing time: Fri 01 May 2026 19:50:27 +0000
ROA not before: Fri 01 May 2026 19:50:22 +0000
ROA not after: Sun 28 Mar 2027 19:50:22 +0000
asID: 132513
IP address blocks: 154.197.44.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 11 May 2026 00:07:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116985 (0x1c8f9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 1 19:50:22 2026 GMT
Not After : Mar 28 19:50:22 2027 GMT
Subject: CN=69f50403-081c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:8a:3f:0d:14:c2:38:8d:bc:c0:31:6a:ca:db:
ac:c3:2e:c0:4e:2d:22:9a:62:d0:9a:8a:12:7a:87:
14:e9:e3:9b:ed:06:73:3a:64:c4:12:50:f2:22:e4:
53:c7:ac:42:2a:58:a2:75:da:e7:95:ec:97:71:fc:
f2:fe:0f:93:e5:d4:b4:bd:c6:2b:8c:9b:f7:29:cd:
f0:9d:de:40:af:2e:7f:50:dd:91:ee:1f:ae:b2:16:
91:ab:d0:90:7a:83:26:e1:af:3a:cd:eb:17:e8:45:
5c:9f:49:82:62:1f:cb:13:47:88:ab:5b:5b:06:b2:
32:59:98:2a:ba:b3:1a:05:5f:8f:ee:30:7b:14:c7:
ed:a0:f5:13:8c:18:15:ec:4f:af:61:5a:4b:53:9f:
81:5e:61:fa:c9:40:fc:9c:af:44:db:db:3e:42:e1:
14:d7:f1:a9:f8:3a:9a:a0:41:fc:49:24:0c:4d:b6:
8e:23:7a:07:b7:09:30:33:3a:ce:5c:50:9d:7a:3d:
8a:bb:5e:a1:1a:36:59:11:75:19:6f:63:0e:20:b8:
6f:c9:26:a0:2a:00:99:3f:74:5e:ff:02:2a:08:cc:
d5:68:a1:dc:25:fe:a8:6e:13:3d:28:8f:6f:ff:32:
a2:05:ab:3e:df:73:e6:33:0f:7d:86:e9:68:a5:82:
20:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:14:4A:67:5A:C1:EE:96:50:DA:48:F4:E1:48:89:1C:80:E8:0F:B8
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FFD6E0EC459611F1BB8F60FBCE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.44.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:b8:ce:32:6d:e3:fd:d1:d6:c8:71:8a:fa:9c:77:ae:a8:cf:
f5:38:6c:a8:47:fb:84:94:eb:12:9f:ef:d3:75:03:21:16:d6:
d6:cf:f6:cb:5c:da:bb:e3:61:7b:6b:61:22:63:2b:3e:16:d5:
ff:e6:c1:e4:35:27:bb:8b:32:43:d7:d7:28:1e:b6:e1:98:55:
4f:ad:9a:c6:d6:c4:81:69:cc:9b:22:d7:06:bf:08:21:57:4c:
04:f9:9b:f4:1e:7d:9f:91:89:17:25:ae:ff:6b:b1:2d:f6:de:
56:66:bc:e7:06:ff:27:8f:e3:c4:b9:76:3d:6a:7f:69:99:c2:
d8:d0:20:be:c3:1f:42:84:c4:aa:ec:f3:c6:2e:5d:a3:28:b4:
50:72:92:fb:4e:5c:bd:e6:aa:b4:8e:08:b3:00:b5:cc:12:34:
4f:b9:f3:9a:0a:3b:51:67:49:b0:3c:b0:01:e5:93:70:cd:3c:
6b:1a:0a:46:eb:b2:44:a6:70:76:31:cb:31:85:14:25:01:83:
99:7e:52:0a:0a:81:00:ff:60:1e:d3:0e:b1:04:ae:23:d8:c9:
7f:b5:25:be:b1:a5:d9:d9:78:72:52:86:98:17:45:10:2f:7a:
12:a7:ea:d8:e3:6f:4c:59:9d:c0:33:4d:30:83:6b:c2:09:f5:
40:e4:ec:ab
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAcj5MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjYwNTAxMTk1MDIyWhcNMjcwMzI4MTk1MDIyWjAYMRYw
FAYDVQQDEw02OWY1MDQwMy0wODFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA9Io/DRTCOI28wDFqytuswy7ATi0immLQmooSeocU6eOb7QZzOmTEElDy
IuRTx6xCKliiddrnleyXcfzy/g+T5dS0vcYrjJv3Kc3wnd5Ary5/UN2R7h+ushaR
q9CQeoMm4a86zesX6EVcn0mCYh/LE0eIq1tbBrIyWZgqurMaBV+P7jB7FMftoPUT
jBgV7E+vYVpLU5+BXmH6yUD8nK9E29s+QuEU1/Gp+DqaoEH8SSQMTbaOI3oHtwkw
MzrOXFCdej2Ku16hGjZZEXUZb2MOILhvySagKgCZP3Re/wIqCMzVaKHcJf6obhM9
KI9v/zKiBas+33PmMw99hulopYIgBQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFJcU
Smdawe6WUNpI9OFIiRyA6A+4MB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9GRkQ2RTBFQzQ1OTYxMUYxQkI4RjYwRkJDRTFEMzhCMC5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmsUsMA0GCSqGSIb3DQEB
CwUAA4IBAQBPuM4ybeP90dbIcYr6nHeuqM/1OGyoR/uElOsSn+/TdQMhFtbWz/bL
XNq742F7a2EiYys+FtX/5sHkNSe7izJD19coHrbhmFVPrZrG1sSBacybItcGvwgh
V0wE+Zv0Hn2fkYkXJa7/a7Et9t5WZrznBv8nj+PEuXY9an9pmcLY0CC+wx9ChMSq
7PPGLl2jKLRQcpL7Tly95qq0jgizALXMEjRPufOaCjtRZ0mwPLAB5ZNwzTxrGgpG
67JEpnB2McsxhRQlAYOZflIKCoEA/2Ae0w6xBK4j2Ml/tSW+saXZ2XhyUoaYF0UQ
L3oSp+rY429MWZ3AM00wg2vCCfVA5Oyr
-----END CERTIFICATE-----
Generated at Sat May 9 11:02:06 2026 by rpki-client