Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/318B4FA02F3B11F19E6B0CF4DAE4EC9C.roa
File: 318B4FA02F3B11F19E6B0CF4DAE4EC9C.roa (raw, json)
Hash identifier: hdaFHRFuNegHsP+JfT3+iuNPlkL4+wdFRSwCDybi5yc=
Subject key identifier: 92:D5:C0:8E:52:ED:B6:D5:D2:8B:12:5B:B1:C4:CE:CC:23:1B:AE:70
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C2AA
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/318B4FA02F3B11F19E6B0CF4DAE4EC9C.roa
Signing time: Fri 03 Apr 2026 08:57:51 +0000
ROA not before: Fri 03 Apr 2026 08:57:45 +0000
ROA not after: Sun 17 May 2026 08:57:45 +0000
asID: 272854
IP address blocks: 154.197.1.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 16:08:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115370 (0x1c2aa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 3 08:57:45 2026 GMT
Not After : May 17 08:57:45 2026 GMT
Subject: CN=69cf810f-2bd2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:23:ce:7a:d0:83:ba:a4:0b:4e:43:28:17:c2:
e3:38:3e:e6:20:b5:c4:25:64:95:ac:42:84:e2:58:
91:75:a1:97:8a:bf:c1:2b:0a:91:7b:11:f6:23:be:
7d:ac:f2:cb:e3:d5:e4:3f:02:35:6b:57:b8:fa:cd:
d6:66:a8:d6:05:fd:d0:a9:f0:a8:fe:3e:c2:1c:46:
23:9a:f6:dc:fe:fd:68:bc:11:8f:84:4b:6d:bc:fe:
6e:76:d0:51:43:a6:1f:fc:64:b9:7f:a0:98:9a:ef:
61:55:ba:4f:5c:f0:97:05:de:93:8b:d5:2a:8c:41:
37:ea:c4:71:d7:9a:4e:b2:07:30:fa:a4:29:28:21:
5a:18:b1:f5:23:12:1d:35:84:22:90:3b:86:4e:6a:
52:6c:e9:a0:e4:fd:c9:8a:ec:34:16:bc:55:97:5e:
fc:c9:a8:49:b5:93:79:7e:83:38:cc:41:70:02:81:
f6:74:da:38:25:8c:60:8e:37:91:15:b6:fb:37:bc:
80:54:cb:45:29:77:a8:02:22:f6:7a:14:1c:f2:0e:
37:eb:47:24:23:71:33:66:95:94:5f:c7:6e:be:31:
23:44:32:91:a2:95:8e:30:1a:66:9e:c0:48:62:71:
5e:a3:05:ce:56:a8:27:be:df:f8:35:f7:63:3b:22:
58:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:D5:C0:8E:52:ED:B6:D5:D2:8B:12:5B:B1:C4:CE:CC:23:1B:AE:70
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/318B4FA02F3B11F19E6B0CF4DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.1.0/24
Signature Algorithm: sha256WithRSAEncryption
53:13:cd:e7:03:8a:3d:3a:be:a8:54:58:5c:04:5d:23:36:45:
ea:8d:ad:29:55:e8:68:74:6f:90:f7:a5:7f:a1:2b:14:f2:5c:
17:79:bf:11:93:5d:e9:bf:5f:22:51:f0:4b:f8:f1:9b:72:01:
74:fa:b1:1e:0a:a4:47:91:a7:e4:59:87:24:de:f6:48:df:c2:
e8:3a:ac:dc:60:13:97:21:f8:21:b1:56:60:ab:e0:f5:b6:9e:
6c:e9:22:cb:a5:b2:2e:7f:f4:31:86:a7:53:37:6d:77:af:a2:
2d:f6:65:e5:86:5b:66:b1:0c:77:dc:17:a8:7a:bd:db:42:ba:
8a:eb:cc:be:08:15:e2:02:0f:72:3b:b8:6f:3e:c2:f2:39:75:
a9:fc:22:a5:c2:f2:39:be:6b:f7:bc:5c:35:0c:69:66:75:b6:
ef:d2:9b:ef:65:74:21:af:28:d7:3c:b4:1a:6a:86:5c:71:f1:
d0:eb:a9:c4:90:1c:50:00:e7:d4:4f:5e:e6:21:99:e0:23:83:
6b:a6:2d:e2:80:f0:7a:5d:13:69:fd:23:7a:58:d2:9f:09:07:
9a:31:97:1f:91:27:2c:36:28:a2:d1:21:ed:65:2a:8a:f9:8a:
d7:a2:c4:ab:ae:d0:f5:ac:93:c0:f0:74:33:78:6f:b1:ec:4a:
4a:2d:06:50
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAcKqMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjYwNDAzMDg1NzQ1WhcNMjYwNTE3MDg1NzQ1WjAYMRYw
FAYDVQQDEw02OWNmODEwZi0yYmQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA2CPOetCDuqQLTkMoF8LjOD7mILXEJWSVrEKE4liRdaGXir/BKwqRexH2
I759rPLL49XkPwI1a1e4+s3WZqjWBf3QqfCo/j7CHEYjmvbc/v1ovBGPhEttvP5u
dtBRQ6Yf/GS5f6CYmu9hVbpPXPCXBd6Ti9UqjEE36sRx15pOsgcw+qQpKCFaGLH1
IxIdNYQikDuGTmpSbOmg5P3Jiuw0FrxVl178yahJtZN5foM4zEFwAoH2dNo4JYxg
jjeRFbb7N7yAVMtFKXeoAiL2ehQc8g4360ckI3EzZpWUX8duvjEjRDKRopWOMBpm
nsBIYnFeowXOVqgnvt/4NfdjOyJYrwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFJLV
wI5S7bbV0osSW7HEzswjG65wMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8zMThCNEZBMDJGM0IxMUYxOUU2QjBDRjREQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmsUBMA0GCSqGSIb3DQEB
CwUAA4IBAQBTE83nA4o9Or6oVFhcBF0jNkXqja0pVehodG+Q96V/oSsU8lwXeb8R
k13pv18iUfBL+PGbcgF0+rEeCqRHkafkWYck3vZI38LoOqzcYBOXIfghsVZgq+D1
tp5s6SLLpbIuf/QxhqdTN213r6It9mXlhltmsQx33Beoer3bQrqK68y+CBXiAg9y
O7hvPsLyOXWp/CKlwvI5vmv3vFw1DGlmdbbv0pvvZXQhryjXPLQaaoZccfHQ66nE
kBxQAOfUT17mIZngI4Nrpi3igPB6XRNp/SN6WNKfCQeaMZcfkScsNiii0SHtZSqK
+YrXosSrrtD1rJPA8HQzeG+x7EpKLQZQ
-----END CERTIFICATE-----
Generated at Sat Apr 18 01:20:15 2026 by rpki-client