Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/31683B28032B11F185DC5E91DAE4EC9C.roa
File: 31683B28032B11F185DC5E91DAE4EC9C.roa (raw, json)
Hash identifier: wrFM4SyBuiF1kV7cmSGV8B+aZj+wcpgpPI/eR+osFGU=
Subject key identifier: FD:C9:87:7F:F7:1C:12:D8:D8:2B:76:B4:D0:53:FC:21:94:1C:24:60
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01B8AC
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/31683B28032B11F185DC5E91DAE4EC9C.roa
Signing time: Fri 06 Feb 2026 07:12:28 +0000
ROA not before: Fri 06 Feb 2026 07:12:23 +0000
ROA not after: Wed 11 Mar 2026 07:12:23 +0000
asID: 401615
IP address blocks: 154.82.136.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 04 Mar 2026 00:07:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112812 (0x1b8ac)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 6 07:12:23 2026 GMT
Not After : Mar 11 07:12:23 2026 GMT
Subject: CN=6985945b-85aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:f9:32:b2:3e:0a:16:3a:0a:35:fc:d4:8d:23:
6f:7d:59:e8:2c:37:15:de:c7:78:d0:c1:c7:b6:5c:
bc:dd:02:01:65:e5:80:0f:2c:a5:f0:5b:88:08:26:
02:88:4d:26:a8:5b:45:d3:e5:e0:60:fa:22:89:d9:
67:35:8f:bc:00:de:f3:10:0d:a0:68:00:04:07:49:
6e:da:ce:e5:bf:b5:b9:42:8e:e1:a1:e4:38:f0:22:
e5:10:45:ab:c3:ce:ff:a7:5c:79:e9:57:08:c8:65:
e9:f2:94:db:74:53:2f:43:ae:d3:97:6d:9e:c6:7f:
f2:47:30:3c:66:26:5a:da:93:84:e6:96:91:23:ec:
6f:85:e0:4a:79:25:d1:41:6f:34:ce:bf:06:ec:b8:
a8:fd:36:f4:db:11:76:a4:bd:16:61:86:46:82:d1:
a2:3a:88:b2:51:fd:70:68:16:7c:ee:58:06:8a:4b:
d0:0e:f3:f2:d7:dc:32:cb:d2:05:ab:d6:37:48:27:
ab:95:55:4e:fc:7a:0a:86:80:77:be:28:dd:06:de:
4b:54:0f:bf:e3:79:75:5f:92:8c:d8:b1:03:d8:6b:
d1:e3:18:12:18:3a:41:4b:6c:84:8f:92:19:0c:c7:
26:2a:02:5f:84:5c:5b:cb:68:69:bd:d8:44:bc:c6:
39:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:C9:87:7F:F7:1C:12:D8:D8:2B:76:B4:D0:53:FC:21:94:1C:24:60
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/31683B28032B11F185DC5E91DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.82.136.0/23
Signature Algorithm: sha256WithRSAEncryption
69:90:a6:17:52:96:d6:43:1e:91:30:62:57:8d:ca:c0:c0:17:
12:1a:69:59:b1:71:f3:b6:7a:c1:9b:5e:f7:e2:d3:bb:f8:5e:
94:12:cd:24:10:ec:b8:f2:6f:16:ea:81:11:6e:b4:e3:8d:5d:
b9:0b:f1:5f:a2:93:3d:c8:c3:8e:7e:0e:c2:3e:e1:4d:fc:72:
64:3e:e4:d5:7d:26:1c:d1:9d:df:df:97:ad:ee:0e:b7:38:e8:
91:9f:eb:96:4a:66:59:08:07:95:2d:e9:80:80:69:ab:c7:9c:
58:2f:69:a7:9f:35:f3:91:6e:50:57:04:02:24:59:15:83:01:
f8:a5:93:dc:73:2e:8d:93:8e:aa:79:41:00:9b:e9:82:a9:59:
de:ed:0b:e5:65:4d:c2:bf:ae:5e:9b:d9:ae:de:0b:35:b4:96:
38:d5:ff:5b:8f:47:73:2c:a2:b3:bc:69:51:02:a4:d5:90:4f:
3b:18:ac:95:dc:0c:78:3d:35:ea:73:69:63:30:2c:e1:d2:b4:
fb:2e:28:68:4a:c8:da:a6:37:41:4a:f8:fd:5e:13:95:0e:08:
fb:c5:1e:c0:e8:80:8d:cc:53:38:5b:a8:04:30:9a:07:87:c0:
d7:ac:db:07:d8:f6:a0:3b:5a:ae:a9:02:73:4a:45:6e:0c:41:
9d:2b:3d:d4
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAbisMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjYwMjA2MDcxMjIzWhcNMjYwMzExMDcxMjIzWjAYMRYw
FAYDVQQDEw02OTg1OTQ1Yi04NWFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAvPkysj4KFjoKNfzUjSNvfVnoLDcV3sd40MHHtly83QIBZeWADyyl8FuI
CCYCiE0mqFtF0+XgYPoiidlnNY+8AN7zEA2gaAAEB0lu2s7lv7W5Qo7hoeQ48CLl
EEWrw87/p1x56VcIyGXp8pTbdFMvQ67Tl22exn/yRzA8ZiZa2pOE5paRI+xvheBK
eSXRQW80zr8G7Lio/Tb02xF2pL0WYYZGgtGiOoiyUf1waBZ87lgGikvQDvPy19wy
y9IFq9Y3SCerlVVO/HoKhoB3vijdBt5LVA+/43l1X5KM2LED2GvR4xgSGDpBS2yE
j5IZDMcmKgJfhFxby2hpvdhEvMY5iwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFP3J
h3/3HBLY2Ct2tNBT/CGUHCRgMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8zMTY4M0IyODAzMkIxMUYxODVEQzVFOTFEQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBmlKIMA0GCSqGSIb3DQEB
CwUAA4IBAQBpkKYXUpbWQx6RMGJXjcrAwBcSGmlZsXHztnrBm1734tO7+F6UEs0k
EOy48m8W6oERbrTjjV25C/FfopM9yMOOfg7CPuFN/HJkPuTVfSYc0Z3f35et7g63
OOiRn+uWSmZZCAeVLemAgGmrx5xYL2mnnzXzkW5QVwQCJFkVgwH4pZPccy6Nk46q
eUEAm+mCqVne7QvlZU3Cv65em9mu3gs1tJY41f9bj0dzLKKzvGlRAqTVkE87GKyV
3Ax4PTXqc2ljMCzh0rT7LihoSsjapjdBSvj9XhOVDgj7xR7A6ICNzFM4W6gEMJoH
h8DXrNsH2PagO1quqQJzSkVuDEGdKz3U
-----END CERTIFICATE-----
Generated at Mon Mar 2 12:53:53 2026 by rpki-client