Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4FD43E46FDAD11F09C08BBCCDAE4EC9C.roa
File: 4FD43E46FDAD11F09C08BBCCDAE4EC9C.roa (raw, json)
Hash identifier: /knzpLzTkjTrrSAWu3ECrF51N7uTTdNUrwnx56ykB/Q=
Subject key identifier: 9A:06:31:36:A3:2A:E3:03:60:78:A7:A4:46:2B:B5:41:6C:9B:94:A4
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01B761
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4FD43E46FDAD11F09C08BBCCDAE4EC9C.roa
Signing time: Fri 30 Jan 2026 07:28:46 +0000
ROA not before: Fri 30 Jan 2026 07:28:40 +0000
ROA not after: Sat 07 Mar 2026 07:28:40 +0000
asID: 20326
IP address blocks: 154.85.123.0/24 maxlen: 24
154.94.33.0/24 maxlen: 24
154.94.38.0/24 maxlen: 24
154.94.41.0/24 maxlen: 24
154.94.46.0/24 maxlen: 24
154.94.50.0/24 maxlen: 24
154.94.60.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 03 Mar 2026 00:07:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112481 (0x1b761)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 30 07:28:40 2026 GMT
Not After : Mar 7 07:28:40 2026 GMT
Subject: CN=697c5dae-8a46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:19:85:9a:2a:e4:1a:3b:3f:52:f4:de:85:90:
11:cd:32:6b:47:17:45:a6:cd:eb:dd:83:29:71:5a:
57:31:f2:e7:04:3b:92:a4:cd:63:ec:0b:61:5c:ec:
f9:b3:db:99:13:64:5e:05:1a:67:c0:d2:80:d7:b3:
f0:73:63:44:fa:34:27:9d:19:81:91:fa:c1:bd:76:
23:94:cb:6a:47:02:b9:1a:e7:45:b5:b9:6a:3d:0a:
5d:8b:57:ed:60:8f:2c:b5:e6:b3:e7:48:24:08:8e:
17:c1:29:76:bb:78:06:e8:db:ae:d5:cd:46:72:81:
b7:33:4f:4f:8a:8e:96:f4:f7:32:b8:f1:81:89:89:
1a:0d:1c:37:1c:64:39:68:fe:af:0e:ce:24:f3:f6:
b2:2a:1e:b8:12:8b:f0:be:e8:2e:53:1a:7c:08:23:
d1:5c:d0:27:25:7c:36:6d:bc:b9:08:72:b6:0b:be:
4e:15:2a:3f:9a:63:4b:0a:ea:d0:9c:6f:64:7e:5f:
33:70:d5:38:75:53:cc:af:72:30:3e:af:ac:e9:52:
d0:f6:a5:c6:9b:0c:fb:8a:a7:c6:6c:6a:d5:23:72:
4a:63:d3:2e:18:1c:5e:32:42:cf:cf:28:c2:bc:77:
a7:53:7d:94:08:f2:bc:22:d8:5a:eb:a0:a7:a4:e2:
42:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:06:31:36:A3:2A:E3:03:60:78:A7:A4:46:2B:B5:41:6C:9B:94:A4
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4FD43E46FDAD11F09C08BBCCDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.85.123.0/24
154.94.33.0/24
154.94.38.0/24
154.94.41.0/24
154.94.46.0/24
154.94.50.0/24
154.94.60.0/24
Signature Algorithm: sha256WithRSAEncryption
06:80:70:b0:aa:65:f0:c2:8a:c1:22:ba:b0:d5:46:8f:a7:10:
8b:0b:ab:22:d5:ed:d3:1f:15:39:f9:36:98:c0:46:f9:e8:6b:
65:d7:ba:f6:61:67:b7:3b:2e:8c:63:22:b7:32:4f:78:33:2e:
74:fb:bf:00:63:14:14:03:5c:2e:09:57:98:c0:92:9d:ac:9a:
7f:3c:fc:89:4a:89:a6:06:e6:d6:33:cf:be:d5:2b:62:1b:a7:
cb:28:0c:b5:dc:de:a0:c4:72:b1:4a:aa:4f:93:6b:59:59:0c:
8f:26:b9:a3:41:ae:2e:0e:ab:1e:db:b7:cd:13:7a:2d:de:bb:
02:bf:b2:d0:7f:c6:54:f6:ff:9f:19:e4:df:6f:9b:a7:86:10:
e0:5f:10:01:95:4b:e3:b8:ef:3c:f2:67:d7:a9:4b:08:49:b9:
cb:9c:34:6a:44:72:54:6f:a6:ab:fc:97:03:35:eb:ea:2a:a7:
36:53:81:d5:57:05:75:1a:89:6b:d2:e2:e9:50:ff:88:41:4e:
0c:b5:35:d2:eb:0b:00:dc:d4:f9:08:7d:45:bb:d4:85:88:94:
76:d4:32:3c:ab:68:e1:21:a4:35:ec:a7:52:86:55:e2:63:0a:
f1:2b:25:7e:fc:f9:f9:e4:31:e6:71:c0:36:b5:0d:58:85:be:
1b:8c:1b:51
-----BEGIN CERTIFICATE-----
MIIFqDCCBJCgAwIBAgIDAbdhMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjYwMTMwMDcyODQwWhcNMjYwMzA3MDcyODQwWjAYMRYw
FAYDVQQDEw02OTdjNWRhZS04YTQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA0xmFmirkGjs/UvTehZARzTJrRxdFps3r3YMpcVpXMfLnBDuSpM1j7Ath
XOz5s9uZE2ReBRpnwNKA17Pwc2NE+jQnnRmBkfrBvXYjlMtqRwK5GudFtblqPQpd
i1ftYI8steaz50gkCI4XwSl2u3gG6Nuu1c1GcoG3M09Pio6W9PcyuPGBiYkaDRw3
HGQ5aP6vDs4k8/ayKh64EovwvuguUxp8CCPRXNAnJXw2bby5CHK2C75OFSo/mmNL
CurQnG9kfl8zcNU4dVPMr3IwPq+s6VLQ9qXGmwz7iqfGbGrVI3JKY9MuGBxeMkLP
zyjCvHenU32UCPK8Itha66CnpOJCEQIDAQABo4ICyTCCAsUwHQYDVR0OBBYEFJoG
MTajKuMDYHinpEYrtUFsm5SkMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC80RkQ0M0U0NkZEQUQxMUYwOUMwOEJCQ0NEQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMEMGCCsGAQUFBwEHAQH/BDQwMjAwBAIAATAqAwQAmlV7AwQAml4hAwQAml4m
AwQAml4pAwQAml4uAwQAml4yAwQAml48MA0GCSqGSIb3DQEBCwUAA4IBAQAGgHCw
qmXwworBIrqw1UaPpxCLC6si1e3THxU5+TaYwEb56Gtl17r2YWe3Oy6MYyK3Mk94
My50+78AYxQUA1wuCVeYwJKdrJp/PPyJSommBubWM8++1StiG6fLKAy13N6gxHKx
SqpPk2tZWQyPJrmjQa4uDqse27fNE3ot3rsCv7LQf8ZU9v+fGeTfb5unhhDgXxAB
lUvjuO888mfXqUsISbnLnDRqRHJUb6ar/JcDNevqKqc2U4HVVwV1Golr0uLpUP+I
QU4MtTXS6wsA3NT5CH1Fu9SFiJR21DI8q2jhIaQ17KdShlXiYwrxKyV+/Pn55DHm
ccA2tQ1Yhb4bjBtR
-----END CERTIFICATE-----
Generated at Sun Mar 1 18:10:09 2026 by rpki-client