Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/130594D0032811F1B843F57FDAE4EC9C.roa
File: 130594D0032811F1B843F57FDAE4EC9C.roa (raw, json)
Hash identifier: M/BPshSQcRDJCEyYyB8CiJHjoGkViUmjJHbJXvvq2Q4=
Subject key identifier: 5B:5C:2A:00:B9:9A:B6:35:50:95:DC:0B:16:E4:0D:7A:7D:C3:D2:14
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01B8A8
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/130594D0032811F1B843F57FDAE4EC9C.roa
Signing time: Fri 06 Feb 2026 06:50:08 +0000
ROA not before: Fri 06 Feb 2026 06:50:03 +0000
ROA not after: Tue 10 Mar 2026 06:50:03 +0000
asID: 1405
IP address blocks: 154.83.88.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 03 Mar 2026 00:07:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112808 (0x1b8a8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 6 06:50:03 2026 GMT
Not After : Mar 10 06:50:03 2026 GMT
Subject: CN=69858f20-51dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:f9:8d:29:f0:53:5c:06:54:cd:dc:c8:9a:23:
51:f6:60:38:6b:1a:c9:55:fd:65:d9:2b:85:de:26:
b9:78:5b:7c:cf:b3:d4:b8:61:3a:96:71:58:eb:fc:
b5:b6:bb:1f:02:06:a2:ec:dc:dd:bd:ce:46:32:c8:
59:0b:17:20:d6:7a:95:ae:12:de:dc:52:1b:79:13:
dd:c2:14:94:07:2d:46:c5:3d:ba:da:6e:f9:09:8e:
1a:21:f5:6a:70:50:a8:46:5f:4c:9b:e5:89:61:1b:
a7:ab:73:eb:2f:9b:e7:1a:32:30:1f:be:db:b2:37:
6e:5c:10:01:14:76:dc:b7:cc:8f:c9:0f:bd:d1:17:
6f:57:cd:36:c0:ad:6e:c5:df:10:08:bb:b9:c3:55:
39:59:47:c4:49:5f:63:0f:6b:aa:c8:7e:63:d6:c2:
de:1f:15:e9:b1:50:e8:5c:02:16:8a:2d:67:44:0f:
c2:4f:2b:cc:f7:8b:82:62:d0:77:36:69:10:28:e9:
37:94:88:64:a3:88:5c:11:e2:11:0d:9e:35:ed:9c:
05:ab:66:97:08:a2:14:59:0b:96:99:5b:e3:37:ae:
8c:da:94:46:ef:0c:a5:b1:50:a2:b8:14:69:23:a9:
10:da:c4:e0:fa:d7:7b:80:fc:a8:64:16:53:92:24:
99:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:5C:2A:00:B9:9A:B6:35:50:95:DC:0B:16:E4:0D:7A:7D:C3:D2:14
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/130594D0032811F1B843F57FDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.83.88.0/23
Signature Algorithm: sha256WithRSAEncryption
6b:b6:02:30:47:65:cf:9e:20:0e:f3:af:02:20:a2:b1:12:f2:
19:67:13:0f:62:04:60:fd:82:92:5d:d9:1d:5d:68:93:ef:58:
e6:47:fa:11:84:ad:3a:af:a3:54:15:4c:e1:b8:18:3f:e8:76:
e5:bf:41:5e:8b:21:66:d3:b3:97:b9:66:90:a5:eb:23:96:e3:
eb:7e:0b:38:64:8c:3f:9e:80:3d:a9:bd:79:c5:ba:08:c8:38:
fe:8a:e5:22:d5:0c:3e:2b:5c:3d:d7:d8:ee:10:b1:9f:c5:72:
69:8e:05:61:60:28:89:9a:a9:09:ef:09:62:98:e6:7a:9b:af:
36:31:12:07:da:36:a7:22:54:eb:90:69:ca:6a:4d:c6:a9:79:
8d:d7:d3:21:cc:d4:75:1a:4d:63:4f:ac:9c:18:c7:fe:83:58:
f9:6d:ec:a6:14:ae:0a:9a:33:f0:ea:70:f1:61:a5:c2:32:a7:
d9:d0:c4:35:dd:2c:9b:9a:aa:27:9a:7a:12:ba:1d:2f:0f:0f:
6c:88:23:14:ac:8a:84:88:dd:23:84:8f:e0:6c:0f:72:e3:32:
9c:4b:06:d8:1c:0d:32:9b:ef:99:57:40:3c:ed:17:45:94:0b:
d2:f2:fe:f4:76:72:1f:91:ab:17:d7:e0:2f:2b:1a:ed:e9:c7:
6a:bc:5d:8d
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAbioMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjYwMjA2MDY1MDAzWhcNMjYwMzEwMDY1MDAzWjAYMRYw
FAYDVQQDEw02OTg1OGYyMC01MWRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAy/mNKfBTXAZUzdzImiNR9mA4axrJVf1l2SuF3ia5eFt8z7PUuGE6lnFY
6/y1trsfAgai7Nzdvc5GMshZCxcg1nqVrhLe3FIbeRPdwhSUBy1GxT262m75CY4a
IfVqcFCoRl9Mm+WJYRunq3PrL5vnGjIwH77bsjduXBABFHbct8yPyQ+90RdvV802
wK1uxd8QCLu5w1U5WUfESV9jD2uqyH5j1sLeHxXpsVDoXAIWii1nRA/CTyvM94uC
YtB3NmkQKOk3lIhko4hcEeIRDZ417ZwFq2aXCKIUWQuWmVvjN66M2pRG7wylsVCi
uBRpI6kQ2sTg+td7gPyoZBZTkiSZMQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFFtc
KgC5mrY1UJXcCxbkDXp9w9IUMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8xMzA1OTREMDAzMjgxMUYxQjg0M0Y1N0ZEQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBmlNYMA0GCSqGSIb3DQEB
CwUAA4IBAQBrtgIwR2XPniAO868CIKKxEvIZZxMPYgRg/YKSXdkdXWiT71jmR/oR
hK06r6NUFUzhuBg/6Hblv0FeiyFm07OXuWaQpesjluPrfgs4ZIw/noA9qb15xboI
yDj+iuUi1Qw+K1w919juELGfxXJpjgVhYCiJmqkJ7wlimOZ6m682MRIH2janIlTr
kGnKak3GqXmN19MhzNR1Gk1jT6ycGMf+g1j5beymFK4KmjPw6nDxYaXCMqfZ0MQ1
3SybmqonmnoSuh0vDw9siCMUrIqEiN0jhI/gbA9y4zKcSwbYHA0ym++ZV0A87RdF
lAvS8v70dnIfkasX1+AvKxrt6cdqvF2N
-----END CERTIFICATE-----
Generated at Sun Mar 1 20:08:46 2026 by rpki-client