Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4748886CFE7B11F0B435EBBFDAE4EC9C.roa
File: 4748886CFE7B11F0B435EBBFDAE4EC9C.roa (raw, json)
Hash identifier: +yGho+uiE3YnBUX5F2WVqKzkgELJQpjn+ReJHjHX6Ow=
Subject key identifier: 4F:64:99:9B:FC:57:4E:5C:6D:BB:21:5A:DD:7E:E5:F6:A9:13:0D:81
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01B7BC
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4748886CFE7B11F0B435EBBFDAE4EC9C.roa
Signing time: Sat 31 Jan 2026 08:03:08 +0000
ROA not before: Sat 31 Jan 2026 08:03:04 +0000
ROA not after: Sun 08 Mar 2026 08:03:04 +0000
asID: 202656
IP address blocks: 154.219.246.0/24 maxlen: 24
154.219.247.0/24 maxlen: 24
154.219.250.0/24 maxlen: 24
154.219.251.0/24 maxlen: 24
154.219.252.0/24 maxlen: 24
154.219.253.0/24 maxlen: 24
154.219.254.0/24 maxlen: 24
154.219.255.0/24 maxlen: 24
154.221.60.0/24 maxlen: 24
154.222.192.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 04 Mar 2026 00:07:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112572 (0x1b7bc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 31 08:03:04 2026 GMT
Not After : Mar 8 08:03:04 2026 GMT
Subject: CN=697db73c-8bf6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:75:02:94:25:dc:44:9c:e8:59:06:51:6f:60:
d0:99:1e:fa:6f:b0:69:3d:3a:bf:73:da:5b:d5:aa:
29:08:f9:09:38:bd:02:ff:30:e6:41:60:1c:35:0d:
13:da:74:30:77:25:a7:49:9b:8e:32:79:6c:89:02:
c8:54:fc:4b:dd:67:ed:f1:26:46:0c:cd:af:39:c9:
a9:8c:fc:e7:bf:69:3b:78:95:9c:cd:0e:16:14:54:
00:22:fc:d8:c5:b1:08:51:ed:94:d4:20:10:4b:c0:
c2:77:73:39:f5:bd:4d:93:43:19:0d:f2:4b:78:7b:
93:6f:0c:22:0a:d4:f3:92:9b:4a:d7:b1:7a:55:94:
7c:29:6e:f9:94:4c:69:eb:f5:20:f3:f1:94:4d:01:
08:dc:8f:a4:3d:c0:7c:fa:bf:99:19:9e:9d:85:94:
f8:f0:66:3f:9b:2c:e6:e8:37:ba:2c:f1:fe:97:8a:
d6:84:33:91:f5:51:06:45:fa:4c:e0:0f:4f:3d:e3:
7c:7e:ec:63:27:2c:9f:15:20:44:47:f8:d8:a8:47:
df:f2:fc:e8:96:49:0a:17:52:5b:ee:f0:e3:d3:64:
d7:0d:64:44:7a:49:13:23:f6:ed:8d:64:85:a8:f6:
ab:80:90:eb:7f:48:8b:55:d1:4c:49:3a:28:31:9c:
f8:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:64:99:9B:FC:57:4E:5C:6D:BB:21:5A:DD:7E:E5:F6:A9:13:0D:81
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4748886CFE7B11F0B435EBBFDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.219.246.0/23
154.219.250.0-154.219.255.255
154.221.60.0/24
154.222.192.0/24
Signature Algorithm: sha256WithRSAEncryption
78:a2:81:ce:05:ec:bd:cb:f7:7f:78:56:67:00:3e:37:36:5d:
6f:01:0f:04:82:d4:27:3c:bd:54:2b:aa:fa:a5:f8:fc:8d:cc:
68:e9:0e:b9:38:3e:7b:82:c8:56:00:76:2a:da:70:6b:0c:2a:
10:1d:3c:d8:47:c1:06:cb:be:a0:70:57:a8:82:85:5f:59:47:
b4:c7:ac:24:c7:7e:19:2c:fe:63:ab:4b:5e:ad:9a:5c:00:22:
02:44:d4:4f:71:f0:61:5f:7c:b7:ba:09:8e:4a:c9:04:f4:dd:
59:db:59:5c:5b:4a:f8:5e:5f:c7:90:9f:93:d7:9f:0f:32:b9:
f5:20:57:47:05:94:0e:8e:11:1a:21:69:b7:b6:8d:38:25:ba:
cf:2f:70:f8:b8:c3:3c:8f:40:03:d3:11:87:04:72:d2:f8:e6:
25:c5:12:1f:80:aa:f9:fa:fb:fd:c8:34:d7:3b:01:bc:01:8a:
05:e2:51:d1:b8:2e:40:d5:72:ed:6f:6d:d4:7f:0f:b8:0c:14:
cd:c4:85:5f:be:60:28:a6:99:62:4d:e4:28:e9:12:9d:8e:0d:
11:48:ea:e6:75:d7:f8:5e:09:99:13:3d:51:89:ec:8a:c8:62:
92:25:3c:3b:b9:5f:0b:aa:de:37:a9:68:f1:3e:a2:bb:da:db:
77:0c:63:0e
-----BEGIN CERTIFICATE-----
MIIFnTCCBIWgAwIBAgIDAbe8MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjYwMTMxMDgwMzA0WhcNMjYwMzA4MDgwMzA0WjAYMRYw
FAYDVQQDEw02OTdkYjczYy04YmY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA3nUClCXcRJzoWQZRb2DQmR76b7BpPTq/c9pb1aopCPkJOL0C/zDmQWAc
NQ0T2nQwdyWnSZuOMnlsiQLIVPxL3Wft8SZGDM2vOcmpjPznv2k7eJWczQ4WFFQA
IvzYxbEIUe2U1CAQS8DCd3M59b1Nk0MZDfJLeHuTbwwiCtTzkptK17F6VZR8KW75
lExp6/Ug8/GUTQEI3I+kPcB8+r+ZGZ6dhZT48GY/myzm6De6LPH+l4rWhDOR9VEG
RfpM4A9PPeN8fuxjJyyfFSBER/jYqEff8vzolkkKF1Jb7vDj02TXDWREekkTI/bt
jWSFqPargJDrf0iLVdFMSTooMZz4GwIDAQABo4ICvjCCArowHQYDVR0OBBYEFE9k
mZv8V05cbbshWt1+5fapEw2BMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC80NzQ4ODg2Q0ZFN0IxMUYwQjQzNUVCQkZEQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMDgGCCsGAQUFBwEHAQH/BCkwJzAlBAIAATAfAwQBmtv2MAsDBAGa2/oDAwKa
2AMEAJrdPAMEAJrewDANBgkqhkiG9w0BAQsFAAOCAQEAeKKBzgXsvcv3f3hWZwA+
NzZdbwEPBILUJzy9VCuq+qX4/I3MaOkOuTg+e4LIVgB2KtpwawwqEB082EfBBsu+
oHBXqIKFX1lHtMesJMd+GSz+Y6tLXq2aXAAiAkTUT3HwYV98t7oJjkrJBPTdWdtZ
XFtK+F5fx5Cfk9efDzK59SBXRwWUDo4RGiFpt7aNOCW6zy9w+LjDPI9AA9MRhwRy
0vjmJcUSH4Cq+fr7/cg01zsBvAGKBeJR0bguQNVy7W9t1H8PuAwUzcSFX75gKKaZ
Yk3kKOkSnY4NEUjq5nXX+F4JmRM9UYnsishikiU8O7lfC6reN6lo8T6iu9rbdwxj
Dg==
-----END CERTIFICATE-----
Generated at Mon Mar 2 09:43:19 2026 by rpki-client