Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5B39B1A4396111F1AB813EEDCE1D38B0.roa
File: 5B39B1A4396111F1AB813EEDCE1D38B0.roa (raw, json)
Hash identifier: M9wssHRe5Rq4BJIrrE7kUZ8hnbBB28QQDkYkhgCatOI=
Subject key identifier: BF:89:3B:14:C5:85:7F:BB:51:BF:6F:00:DA:80:FB:52:00:51:FE:4A
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C57B
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5B39B1A4396111F1AB813EEDCE1D38B0.roa
Signing time: Thu 16 Apr 2026 06:56:13 +0000
ROA not before: Thu 16 Apr 2026 06:56:08 +0000
ROA not after: Fri 08 May 2026 06:56:08 +0000
asID: 151347
IP address blocks: 154.84.237.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 20 Apr 2026 00:08:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116091 (0x1c57b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 16 06:56:08 2026 GMT
Not After : May 8 06:56:08 2026 GMT
Subject: CN=69e0880d-c967
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:44:45:94:3e:25:d4:24:14:ab:29:25:34:31:
bd:70:27:b3:4f:b8:78:4d:d7:90:6e:07:f9:0c:c2:
b6:ca:3e:4a:02:70:ed:2d:e9:f9:db:6a:e7:10:ab:
05:17:2c:b0:72:81:c4:29:67:69:e0:b5:10:fd:10:
ae:ed:31:7c:be:32:11:6c:37:ad:77:90:5c:83:68:
72:d8:9e:9a:01:38:de:07:6d:97:47:b6:d0:93:cd:
9f:9c:d2:f8:50:cc:e1:e1:81:db:c2:78:f2:d6:c3:
91:da:78:92:c2:6e:ac:c4:cb:48:b5:0e:7e:34:ad:
33:96:43:72:56:88:06:79:9b:88:66:ea:0a:6c:6c:
26:98:92:35:72:e9:78:8e:35:d3:c8:78:c4:16:c2:
08:9c:6e:b9:b6:d7:6f:e2:85:f5:19:16:1c:e2:9d:
b1:90:4e:a1:6f:10:e0:8a:18:45:97:70:38:89:ae:
77:1b:20:e4:55:19:76:d9:52:f6:99:22:f0:09:ab:
9d:62:89:dc:aa:5c:34:da:e3:c6:88:fa:b3:40:2a:
64:0b:fa:b7:8b:65:39:cf:4b:94:fa:28:03:7a:a8:
08:3b:06:b4:81:f2:36:90:a0:d4:dc:3d:a2:0a:49:
00:af:fa:fe:45:44:9c:67:10:2a:91:57:da:4d:b0:
ae:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:89:3B:14:C5:85:7F:BB:51:BF:6F:00:DA:80:FB:52:00:51:FE:4A
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5B39B1A4396111F1AB813EEDCE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.84.237.0/24
Signature Algorithm: sha256WithRSAEncryption
93:a5:67:3a:d8:3d:e3:98:a8:9d:1d:55:53:bd:21:20:d1:32:
8d:a3:93:14:72:5a:b7:cc:9c:64:59:07:58:f1:9a:28:e6:4a:
e1:62:46:14:cf:7b:b5:b9:b7:05:3d:ad:9d:c0:d1:af:b0:46:
d3:d9:9f:24:19:23:5b:e6:b3:b0:f4:a3:c9:e7:f6:1c:f8:97:
00:38:11:8b:43:05:8f:d1:2a:3b:49:1f:d5:2d:e0:04:9a:cb:
b1:f2:d2:cc:57:69:7a:37:54:69:df:c8:bc:0e:42:78:8b:28:
fb:be:9e:ba:fa:ba:f1:01:f9:fb:ca:ba:85:d5:53:ee:bc:11:
c7:77:27:ac:c1:c7:f5:87:d3:35:71:6e:a9:7a:f9:79:9d:31:
3b:f4:33:2a:af:ef:27:a9:50:a9:94:8a:25:c3:9b:91:aa:61:
f2:be:a1:53:31:a3:93:e7:1b:09:18:66:c6:30:60:a7:ce:fc:
60:f0:7e:6c:f7:60:26:1f:3e:30:9f:2c:95:bc:44:e8:ec:e0:
0e:2b:08:86:5f:80:ca:f2:71:3e:fd:b6:5a:d1:fa:e9:82:6e:
7b:5e:f4:aa:63:a5:32:5c:7d:1f:fb:7d:90:52:27:e2:9d:b2:
87:0a:24:01:5a:fc:d4:c6:f1:98:50:33:4d:5f:13:46:fb:e2:
39:10:d5:48
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAcV7MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjYwNDE2MDY1NjA4WhcNMjYwNTA4MDY1NjA4WjAYMRYw
FAYDVQQDEw02OWUwODgwZC1jOTY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAvERFlD4l1CQUqyklNDG9cCezT7h4TdeQbgf5DMK2yj5KAnDtLen522rn
EKsFFyywcoHEKWdp4LUQ/RCu7TF8vjIRbDetd5Bcg2hy2J6aATjeB22XR7bQk82f
nNL4UMzh4YHbwnjy1sOR2niSwm6sxMtItQ5+NK0zlkNyVogGeZuIZuoKbGwmmJI1
cul4jjXTyHjEFsIInG65ttdv4oX1GRYc4p2xkE6hbxDgihhFl3A4ia53GyDkVRl2
2VL2mSLwCaudYoncqlw02uPGiPqzQCpkC/q3i2U5z0uU+igDeqgIOwa0gfI2kKDU
3D2iCkkAr/r+RUScZxAqkVfaTbCuyQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFL+J
OxTFhX+7Ub9vANqA+1IAUf5KMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC81QjM5QjFBNDM5NjExMUYxQUI4MTNFRURDRTFEMzhCMC5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmlTtMA0GCSqGSIb3DQEB
CwUAA4IBAQCTpWc62D3jmKidHVVTvSEg0TKNo5MUclq3zJxkWQdY8Zoo5krhYkYU
z3u1ubcFPa2dwNGvsEbT2Z8kGSNb5rOw9KPJ5/Yc+JcAOBGLQwWP0So7SR/VLeAE
msux8tLMV2l6N1Rp38i8DkJ4iyj7vp66+rrxAfn7yrqF1VPuvBHHdyeswcf1h9M1
cW6pevl5nTE79DMqr+8nqVCplIolw5uRqmHyvqFTMaOT5xsJGGbGMGCnzvxg8H5s
92AmHz4wnyyVvETo7OAOKwiGX4DK8nE+/bZa0frpgm57XvSqY6UyXH0f+32QUifi
nbKHCiQBWvzUxvGYUDNNXxNG++I5ENVI
-----END CERTIFICATE-----
Generated at Sat Apr 18 10:25:29 2026 by rpki-client