Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/492AA57A122611F180111DA3DAE4EC9C.roa
File: 492AA57A122611F180111DA3DAE4EC9C.roa (raw, json)
Hash identifier: t2y6MMRAVNHceqxAjn2EXFHYGwx2fY5dFawg05uKDDw=
Subject key identifier: 7B:89:F6:BA:F6:CB:44:49:79:F3:83:02:DF:CC:09:A6:0C:DD:5B:AD
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01BB95
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/492AA57A122611F180111DA3DAE4EC9C.roa
Signing time: Wed 25 Feb 2026 08:45:07 +0000
ROA not before: Wed 25 Feb 2026 08:45:03 +0000
ROA not after: Wed 01 Apr 2026 08:45:03 +0000
asID: 44559
IP address blocks: 154.198.37.0/24 maxlen: 24
154.198.38.0/24 maxlen: 24
154.198.39.0/24 maxlen: 24
154.203.206.0/24 maxlen: 24
154.203.207.0/24 maxlen: 24
154.203.212.0/24 maxlen: 24
154.203.213.0/24 maxlen: 24
154.203.214.0/24 maxlen: 24
154.203.215.0/24 maxlen: 24
154.203.217.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 03 Mar 2026 00:07:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113557 (0x1bb95)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 25 08:45:03 2026 GMT
Not After : Apr 1 08:45:03 2026 GMT
Subject: CN=699eb693-5880
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:3b:4d:6b:02:ec:56:de:a7:93:41:64:3e:a3:
79:fd:2e:0e:66:df:86:bd:28:f0:f9:66:5a:28:1c:
eb:a6:05:ec:e0:0f:c5:70:44:f2:1a:e7:07:7c:20:
bb:2d:1a:ed:bd:63:87:a9:2d:70:94:00:be:ae:cc:
13:6b:4b:2b:f2:8f:e6:51:51:08:bd:f7:cc:16:1d:
0b:67:43:7e:c7:6e:06:65:03:1d:1f:23:52:31:40:
90:d9:8d:8e:90:a6:d7:5b:8a:54:ab:19:43:23:c1:
c6:9c:c0:4b:2e:2e:13:66:3d:8e:71:51:6a:8f:c8:
68:9f:87:69:96:9c:a1:ca:f0:cb:24:70:54:71:39:
4f:11:69:13:52:5e:d2:83:8f:89:f4:d7:73:f2:5b:
05:9e:e8:35:ff:fc:fc:12:fb:76:d1:a3:3c:e4:17:
16:64:3e:b6:f6:b6:69:3c:9f:9b:c0:10:08:e3:13:
68:b5:1e:ac:9b:ec:ca:3d:af:d2:b0:b9:4e:ac:d7:
d5:a6:36:73:a3:01:bd:e6:9a:f1:a1:6a:36:5e:80:
f5:65:f6:7f:fa:a5:0c:dd:10:03:cf:6a:8c:82:e0:
77:e1:0e:4c:02:ad:c7:00:46:a7:d2:29:8e:cd:6b:
84:5f:9d:60:4d:34:43:7c:17:cb:c3:93:81:9f:95:
32:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:89:F6:BA:F6:CB:44:49:79:F3:83:02:DF:CC:09:A6:0C:DD:5B:AD
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/492AA57A122611F180111DA3DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.198.37.0-154.198.39.255
154.203.206.0/23
154.203.212.0/22
154.203.217.0/24
Signature Algorithm: sha256WithRSAEncryption
29:6e:ab:28:40:50:46:f2:b5:11:96:22:bf:d6:46:76:f4:eb:
a2:12:10:6b:4d:3f:87:a8:6a:49:df:8a:7c:b9:bd:61:70:c0:
88:06:b1:e6:3c:16:1a:57:44:38:42:e2:3d:fa:25:bc:49:ff:
ce:1c:42:2e:73:b6:bb:67:d6:71:d3:8c:b7:a6:3b:f0:3d:75:
51:22:e9:5f:d2:31:08:c8:e3:7b:ac:cc:fd:5d:5e:73:b1:a0:
7f:51:6c:44:37:7b:9f:c7:b7:eb:00:2b:5d:88:60:79:32:17:
72:14:a1:6c:bc:78:9a:0c:1e:ca:aa:7f:68:2f:af:55:78:45:
ee:9c:7a:5c:c2:8c:39:16:90:88:55:f4:00:e6:b0:66:af:9f:
e0:14:44:98:b4:31:40:9f:b7:f3:1d:1b:58:d6:4e:0d:40:23:
80:a8:75:3c:91:aa:7a:7a:76:53:1e:5c:9f:c1:1e:02:f7:b4:
4e:d3:53:78:cc:1d:33:b3:26:b0:ec:48:ad:14:4a:fc:ab:3e:
87:cf:55:71:b7:0e:2e:6c:f8:e1:38:a1:c3:a4:e4:0d:0f:b1:
34:48:66:40:20:83:94:4c:67:d5:d0:57:21:4f:54:a1:a2:f1:
e2:6e:d3:07:c6:0a:54:72:9e:c5:55:7e:01:55:4a:dd:e3:25:
c7:0a:1b:9e
-----BEGIN CERTIFICATE-----
MIIFnjCCBIagAwIBAgIDAbuVMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjYwMjI1MDg0NTAzWhcNMjYwNDAxMDg0NTAzWjAYMRYw
FAYDVQQDEw02OTllYjY5My01ODgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAoztNawLsVt6nk0FkPqN5/S4OZt+GvSjw+WZaKBzrpgXs4A/FcETyGucH
fCC7LRrtvWOHqS1wlAC+rswTa0sr8o/mUVEIvffMFh0LZ0N+x24GZQMdHyNSMUCQ
2Y2OkKbXW4pUqxlDI8HGnMBLLi4TZj2OcVFqj8hon4dplpyhyvDLJHBUcTlPEWkT
Ul7Sg4+J9Ndz8lsFnug1//z8Evt20aM85BcWZD629rZpPJ+bwBAI4xNotR6sm+zK
Pa/SsLlOrNfVpjZzowG95prxoWo2XoD1ZfZ/+qUM3RADz2qMguB34Q5MAq3HAEan
0imOzWuEX51gTTRDfBfLw5OBn5UyrwIDAQABo4ICvzCCArswHQYDVR0OBBYEFHuJ
9rr2y0RJefODAt/MCaYM3VutMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC80OTJBQTU3QTEyMjYxMUYxODAxMTFEQTNEQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMDkGCCsGAQUFBwEHAQH/BCowKDAmBAIAATAgMAwDBACaxiUDBAOaxiADBAGa
y84DBAKay9QDBACay9kwDQYJKoZIhvcNAQELBQADggEBACluqyhAUEbytRGWIr/W
Rnb066ISEGtNP4eoaknfiny5vWFwwIgGseY8FhpXRDhC4j36JbxJ/84cQi5ztrtn
1nHTjLemO/A9dVEi6V/SMQjI43uszP1dXnOxoH9RbEQ3e5/Ht+sAK12IYHkyF3IU
oWy8eJoMHsqqf2gvr1V4Re6celzCjDkWkIhV9ADmsGavn+AURJi0MUCft/MdG1jW
Tg1AI4CodTyRqnp6dlMeXJ/BHgL3tE7TU3jMHTOzJrDsSK0USvyrPofPVXG3Di5s
+OE4ocOk5A0PsTRIZkAgg5RMZ9XQVyFPVKGi8eJu0wfGClRynsVVfgFVSt3jJccK
G54=
-----END CERTIFICATE-----
Generated at Sun Mar 1 18:17:53 2026 by rpki-client