Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/699304CE0A9C11F19F4A22BEDAE4EC9C.roa
File: 699304CE0A9C11F19F4A22BEDAE4EC9C.roa (raw, json)
Hash identifier: POyxGDBDiSPbA2jcQUON0r5s766cb59PNAGt8fKfNHs=
Subject key identifier: E2:D5:0C:D0:3F:0A:58:1A:E7:3C:FF:AC:AB:8B:D2:DB:71:36:1D:50
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01B998
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/699304CE0A9C11F19F4A22BEDAE4EC9C.roa
Signing time: Sun 15 Feb 2026 18:30:33 +0000
ROA not before: Sun 15 Feb 2026 18:30:27 +0000
ROA not after: Sun 01 Mar 2026 18:30:27 +0000
asID: 395793
IP address blocks: 154.92.205.0/24 maxlen: 24
154.92.207.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 01 Mar 2026 18:30:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113048 (0x1b998)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 15 18:30:27 2026 GMT
Not After : Mar 1 18:30:27 2026 GMT
Subject: CN=699210c9-19f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:be:63:9c:78:67:a6:77:a7:81:9d:8e:a2:b4:
0b:e5:4f:40:68:25:fb:d1:20:03:67:0b:a5:82:70:
ab:44:da:ec:18:a0:c3:f6:ae:c6:98:25:16:01:04:
dd:8d:97:36:46:ba:54:64:b3:82:0e:12:16:42:97:
3d:84:47:4c:6d:ab:88:a1:ff:3c:41:37:57:89:a6:
66:36:0d:ec:0c:6e:d3:ff:6a:88:45:97:2f:ae:f3:
e0:a0:83:8c:56:93:0e:5f:4a:73:19:0b:1e:cb:e9:
68:17:1a:cd:90:3f:9f:9f:ab:4a:7b:16:86:56:6b:
8d:1a:37:7c:44:eb:1d:9b:69:53:4c:aa:01:63:82:
c4:1a:c3:9e:bb:09:22:f9:b9:a4:a7:ae:0c:d2:20:
de:6a:4c:7e:c5:69:9a:d3:1e:e5:3c:46:e6:b4:5e:
35:ea:bd:6c:dc:f7:95:cf:9d:74:8e:7c:f8:f5:44:
ca:3d:07:cf:89:b4:48:a3:3b:e8:88:87:66:3f:df:
14:c1:b0:66:73:d5:0e:f7:5e:2e:a8:27:c8:2b:44:
69:c3:bf:52:26:00:a9:e5:c6:47:3b:52:c3:9a:48:
65:49:1a:bc:6c:97:e2:9c:cc:a4:93:1b:24:90:d6:
f0:55:48:65:a3:c9:ce:80:54:fb:5e:65:12:b9:c3:
e8:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:D5:0C:D0:3F:0A:58:1A:E7:3C:FF:AC:AB:8B:D2:DB:71:36:1D:50
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/699304CE0A9C11F19F4A22BEDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.92.205.0/24
154.92.207.0/24
Signature Algorithm: sha256WithRSAEncryption
ba:d3:a4:3b:23:7a:a0:40:8c:33:36:2e:51:98:6a:50:a3:2e:
36:41:31:15:e1:90:c4:17:e9:a7:f7:e2:f1:4a:e9:7d:4a:29:
1e:ba:58:80:15:0a:37:1a:73:39:67:64:da:08:0e:9f:01:29:
5f:b2:a7:98:e6:c0:ca:05:7a:9e:ea:c0:f1:c1:81:dd:fa:22:
1a:58:08:f0:b1:6f:82:62:e8:e6:7c:a1:5a:13:14:e5:36:18:
7d:42:26:82:3e:3b:32:60:c1:34:b3:b4:90:aa:8d:58:06:19:
99:a7:8b:f4:ed:60:ef:1c:2b:60:39:e1:17:b0:e2:94:71:78:
b2:f7:4d:c9:25:fb:a7:87:fe:de:49:3a:30:0f:a9:eb:dc:dd:
54:0b:22:a2:a5:f5:9d:4c:62:ae:2f:29:55:e5:3a:ee:f2:9d:
a9:aa:33:55:b2:c4:20:6a:ed:6a:6d:ff:2f:f8:38:35:22:ea:
37:bb:ce:0d:2d:5f:12:6b:c1:df:e3:7e:02:b3:30:e9:cd:c4:
55:6e:8c:0f:79:da:7d:0b:c6:fd:40:c5:f8:69:02:0e:89:91:
12:da:15:11:3b:b6:82:da:a2:4b:61:91:31:27:27:36:9b:36:
51:f5:4e:55:8f:26:75:b2:fa:c8:15:7c:0c:32:24:64:c3:af:
2d:b8:d4:4d
-----BEGIN CERTIFICATE-----
MIIFijCCBHKgAwIBAgIDAbmYMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjYwMjE1MTgzMDI3WhcNMjYwMzAxMTgzMDI3WjAYMRYw
FAYDVQQDEw02OTkyMTBjOS0xOWY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEApb5jnHhnpnengZ2OorQL5U9AaCX70SADZwulgnCrRNrsGKDD9q7GmCUW
AQTdjZc2RrpUZLOCDhIWQpc9hEdMbauIof88QTdXiaZmNg3sDG7T/2qIRZcvrvPg
oIOMVpMOX0pzGQsey+loFxrNkD+fn6tKexaGVmuNGjd8ROsdm2lTTKoBY4LEGsOe
uwki+bmkp64M0iDeakx+xWma0x7lPEbmtF416r1s3PeVz510jnz49UTKPQfPibRI
ozvoiIdmP98UwbBmc9UO914uqCfIK0Rpw79SJgCp5cZHO1LDmkhlSRq8bJfinMyk
kxskkNbwVUhlo8nOgFT7XmUSucPoYQIDAQABo4ICqzCCAqcwHQYDVR0OBBYEFOLV
DNA/Clga5zz/rKuL0ttxNh1QMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC82OTkzMDRDRTBBOUMxMUYxOUY0QTIyQkVEQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAmlzNAwQAmlzPMA0GCSqG
SIb3DQEBCwUAA4IBAQC606Q7I3qgQIwzNi5RmGpQoy42QTEV4ZDEF+mn9+LxSul9
SikeuliAFQo3GnM5Z2TaCA6fASlfsqeY5sDKBXqe6sDxwYHd+iIaWAjwsW+CYujm
fKFaExTlNhh9QiaCPjsyYME0s7SQqo1YBhmZp4v07WDvHCtgOeEXsOKUcXiy903J
Jfunh/7eSTowD6nr3N1UCyKipfWdTGKuLylV5Tru8p2pqjNVssQgau1qbf8v+Dg1
Iuo3u84NLV8Sa8Hf434CszDpzcRVbowPedp9C8b9QMX4aQIOiZES2hURO7aC2qJL
YZExJyc2mzZR9U5VjyZ1svrIFXwMMiRkw68tuNRN
-----END CERTIFICATE-----
Generated at Sun Mar 1 18:19:44 2026 by rpki-client