Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367EEA2/908F26B42EB411EE82869D784AD9E6FC/67238C7E541411F1AD2A15AACE1D38B0.roa
File: 67238C7E541411F1AD2A15AACE1D38B0.roa (raw, json)
Hash identifier: R8x1/0rShcDb+3uaeVfuGgUMj+G8nfBNX3NNkFTszeQ=
Subject key identifier: 4A:63:0F:33:DD:9E:41:34:D9:27:F3:CA:65:18:8A:7A:0B:22:92:7B
Certificate issuer: /CN=F367EEA2AF/serialNumber=92D15924230909F29C024B8D5F62D658974A28C6
Certificate serial: 0427
Authority key identifier: 92:D1:59:24:23:09:09:F2:9C:02:4B:8D:5F:62:D6:58:97:4A:28:C6
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/ktFZJCMJCfKcAkuNX2LWWJdKKMY.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367EEA2/908F26B42EB411EE82869D784AD9E6FC/67238C7E541411F1AD2A15AACE1D38B0.roa
Signing time: Wed 20 May 2026 06:23:23 +0000
ROA not before: Wed 20 May 2026 06:23:18 +0000
ROA not after: Sun 20 May 2046 06:23:18 +0000
asID: 37697
IP address blocks: 102.202.112.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367EEA2/908F26B42EB411EE82869D784AD9E6FC/ktFZJCMJCfKcAkuNX2LWWJdKKMY.crl
rsync://rpki.afrinic.net/repository/member_repository/F367EEA2/908F26B42EB411EE82869D784AD9E6FC/ktFZJCMJCfKcAkuNX2LWWJdKKMY.mft
rsync://rpki.afrinic.net/repository/afrinic/ktFZJCMJCfKcAkuNX2LWWJdKKMY.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 15 Jun 2026 00:07:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1063 (0x427)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367EEA2AF, serialNumber=92D15924230909F29C024B8D5F62D658974A28C6
Validity
Not Before: May 20 06:23:18 2026 GMT
Not After : May 20 06:23:18 2046 GMT
Subject: CN=6a0d535b-7325
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:c8:63:c9:26:a7:51:6d:9e:38:7f:5c:d8:97:
7d:0d:11:b4:97:a4:f4:56:6e:fb:28:7d:56:6b:39:
d8:cc:1e:98:35:fb:8d:32:c2:a3:15:9d:c2:18:3f:
07:4d:4e:14:ae:ba:b3:01:00:3c:29:3c:1e:73:7a:
8c:e2:ad:df:fe:32:18:d8:3d:10:27:71:03:98:55:
5c:34:0e:78:9d:3d:df:2a:4d:5c:17:c0:c1:1a:6c:
9a:8d:38:5f:a0:88:12:56:5f:ad:b3:3f:83:ac:74:
34:87:2c:ec:c0:04:09:0d:ce:ec:27:e3:e2:f1:e1:
9a:b8:cc:8f:7a:2b:34:0a:cc:25:7b:9c:d2:b1:fd:
e6:85:af:99:8d:aa:86:a9:61:5f:e3:e9:32:f8:2d:
a1:8c:59:61:df:da:ac:75:5b:d7:28:f6:3a:b0:d3:
f7:16:28:a5:10:d3:eb:13:f6:f6:25:cf:ad:47:85:
4a:89:d7:c6:e9:13:0d:e8:b8:b1:2c:02:5d:0b:4a:
97:1a:bd:fe:f8:9c:25:1b:9b:90:db:f8:72:8c:3f:
ab:6b:1b:f4:93:cf:6c:8e:b0:d0:77:06:2e:1c:b9:
91:87:23:40:12:98:04:c2:87:aa:d5:4c:05:8d:63:
f6:9e:bc:f4:b4:3a:fe:d5:0b:77:ba:73:59:3e:fc:
bd:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:63:0F:33:DD:9E:41:34:D9:27:F3:CA:65:18:8A:7A:0B:22:92:7B
X509v3 Authority Key Identifier:
keyid:92:D1:59:24:23:09:09:F2:9C:02:4B:8D:5F:62:D6:58:97:4A:28:C6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367EEA2/908F26B42EB411EE82869D784AD9E6FC/ktFZJCMJCfKcAkuNX2LWWJdKKMY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/ktFZJCMJCfKcAkuNX2LWWJdKKMY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367EEA2/908F26B42EB411EE82869D784AD9E6FC/67238C7E541411F1AD2A15AACE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.202.112.0/22
Signature Algorithm: sha256WithRSAEncryption
33:44:42:95:f6:80:1e:c8:a0:da:b1:69:08:7d:c1:2c:92:d7:
6d:76:d2:9d:bf:86:ec:26:1c:6e:f3:e0:5c:1f:8e:2b:d5:0f:
72:49:65:58:f4:63:71:31:4c:9c:22:d7:34:01:1d:67:ef:fd:
7c:1f:ed:05:4d:f4:46:25:8e:86:a9:b9:05:98:bc:99:d7:a1:
ad:2a:8f:5e:1b:9c:87:cc:ac:70:42:3f:e3:e0:c3:2e:aa:40:
c4:94:ed:7e:dd:7f:5b:d8:53:08:ca:33:85:03:be:22:23:81:
90:bc:8d:83:df:98:a5:50:c1:f3:23:e3:af:d4:8e:04:27:30:
10:3e:d0:cc:5a:a6:d4:c4:2f:94:5a:32:3b:37:8f:d6:a5:01:
43:c6:32:1f:48:27:70:d3:11:ab:d5:e5:56:09:fc:b3:52:0d:
ee:d5:01:47:a5:cd:b6:6a:50:d3:9b:53:f9:83:ca:d7:0a:9d:
89:6a:ee:6b:af:77:e3:62:7a:ab:2d:48:33:b1:61:87:24:ae:
ec:6d:c9:cc:26:ac:a0:e9:54:09:92:50:ea:f2:c8:7c:23:45:
66:6f:dd:d8:a9:c3:81:5b:c3:57:f3:04:da:15:9f:70:92:2d:
97:b4:fe:2a:2e:c2:57:bc:59:69:a9:d8:4c:22:66:86:81:9d:
dd:41:48:84
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICBCcwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
N0VFQTJBRjExMC8GA1UEBRMoOTJEMTU5MjQyMzA5MDlGMjlDMDI0QjhENUY2MkQ2
NTg5NzRBMjhDNjAeFw0yNjA1MjAwNjIzMThaFw00NjA1MjAwNjIzMThaMBgxFjAU
BgNVBAMTDTZhMGQ1MzViLTczMjUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQCyyGPJJqdRbZ44f1zYl30NEbSXpPRWbvsofVZrOdjMHpg1+40ywqMVncIY
PwdNThSuurMBADwpPB5zeozird/+MhjYPRAncQOYVVw0DnidPd8qTVwXwMEabJqN
OF+giBJWX62zP4OsdDSHLOzABAkNzuwn4+Lx4Zq4zI96KzQKzCV7nNKx/eaFr5mN
qoapYV/j6TL4LaGMWWHf2qx1W9co9jqw0/cWKKUQ0+sT9vYlz61HhUqJ18bpEw3o
uLEsAl0LSpcavf74nCUbm5Db+HKMP6trG/STz2yOsNB3Bi4cuZGHI0ASmATCh6rV
TAWNY/aevPS0Ov7VC3e6c1k+/L0XAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUSmMP
M92eQTTZJ/PKZRiKegsiknswHwYDVR0jBBgwFoAUktFZJCMJCfKcAkuNX2LWWJdK
KMYwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjdFRUEyLzkwOEYyNkI0MkVCNDExRUU4Mjg2OUQ3ODRBRDlFNkZDL2t0RlpK
Q01KQ2ZLY0FrdU5YMkxXV0pkS0tNWS5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL2t0RlpKQ01KQ2ZLY0FrdU5YMkxXV0pkS0tNWS5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjdFRUEyLzkwOEYyNkI0MkVCNDExRUU4Mjg2OUQ3ODRB
RDlFNkZDLzY3MjM4QzdFNTQxNDExRjFBRDJBMTVBQUNFMUQzOEIwLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJmynAwDQYJKoZIhvcNAQEL
BQADggEBADNEQpX2gB7IoNqxaQh9wSyS12120p2/huwmHG7z4FwfjivVD3JJZVj0
Y3ExTJwi1zQBHWfv/Xwf7QVN9EYljoapuQWYvJnXoa0qj14bnIfMrHBCP+Pgwy6q
QMSU7X7df1vYUwjKM4UDviIjgZC8jYPfmKVQwfMj46/UjgQnMBA+0MxaptTEL5Ra
Mjs3j9alAUPGMh9IJ3DTEavV5VYJ/LNSDe7VAUelzbZqUNObU/mDytcKnYlq7muv
d+NieqstSDOxYYckruxtycwmrKDpVAmSUOryyHwjRWZv3dipw4Fbw1fzBNoVn3CS
LZe0/iouwle8WWmp2EwiZoaBnd1BSIQ=
-----END CERTIFICATE-----
Generated at Sat Jun 13 09:06:45 2026 by rpki-client