Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8D65A172097011F180482298DAE4EC9C.roa
File: 8D65A172097011F180482298DAE4EC9C.roa (raw, json)
Hash identifier: mXcFMJhZyg0Wmh76/i2LqPCCdjwxf/hcekoCFJuVg1E=
Subject key identifier: F6:7E:29:1A:4D:60:60:64:E0:E3:EC:5B:90:B7:BF:E0:B3:4D:CE:40
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01B955
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8D65A172097011F180482298DAE4EC9C.roa
Signing time: Sat 14 Feb 2026 06:44:04 +0000
ROA not before: Sat 14 Feb 2026 06:44:00 +0000
ROA not after: Mon 16 Mar 2026 06:44:00 +0000
asID: 147176
IP address blocks: 154.197.102.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 04 Mar 2026 00:07:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112981 (0x1b955)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 14 06:44:00 2026 GMT
Not After : Mar 16 06:44:00 2026 GMT
Subject: CN=699019b4-65f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:10:69:a4:67:c0:cf:c3:be:70:86:c8:cd:f2:
8f:e6:a6:62:76:7f:57:ae:d5:b0:ed:34:68:b0:c8:
e1:13:82:08:f7:7a:5c:44:bf:db:41:d5:1d:6e:9a:
1e:b7:b1:82:2b:7a:86:9a:e7:d9:ec:c5:0a:b3:79:
b4:64:46:90:b0:52:f5:b6:c5:b3:6a:fb:bf:01:e9:
f0:28:a7:08:39:5b:00:4f:d4:99:28:61:52:c3:bd:
21:b5:ac:74:03:84:eb:46:4d:43:63:14:cf:2b:a5:
ec:d8:8a:0d:99:af:87:db:42:3a:83:81:db:12:42:
5b:bc:d7:2c:80:7f:62:d5:0b:89:20:57:7f:a7:e5:
de:4e:a2:af:39:d0:d5:fd:b0:62:07:96:55:4d:b1:
0d:0d:7f:ed:63:da:6f:f7:51:e1:bc:8d:28:b3:b1:
1d:b4:40:2d:b6:82:18:43:3e:d8:f2:be:6d:0b:da:
f9:16:7d:59:57:ba:53:e8:12:38:cd:f5:81:41:2b:
94:3f:75:5a:02:5e:e9:fe:a9:50:de:b1:8d:af:f3:
de:bf:28:c1:f5:d9:f4:02:ed:6d:4f:4b:b8:8b:f2:
79:51:1e:2b:9d:fe:05:46:4e:97:03:4c:9a:c6:8c:
a5:f7:e8:88:8a:ef:71:3d:4f:b0:6a:b8:c5:1d:d3:
65:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:7E:29:1A:4D:60:60:64:E0:E3:EC:5B:90:B7:BF:E0:B3:4D:CE:40
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8D65A172097011F180482298DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.102.0/24
Signature Algorithm: sha256WithRSAEncryption
d7:09:99:9f:13:a4:97:81:d9:ff:05:6e:a6:4c:a8:4d:10:ab:
ff:20:ba:1c:31:ab:ba:1b:6b:30:e8:71:cd:dc:c0:b9:d4:f7:
25:1b:e4:e0:df:ef:a3:96:10:56:0c:5e:57:b3:b2:2c:1f:9b:
61:93:a4:13:30:64:13:cf:29:8d:10:cd:aa:2a:c9:09:cf:68:
db:8b:98:19:cf:d6:f9:de:30:6b:86:6a:6f:05:1b:e4:81:e1:
af:87:75:4a:0d:71:84:7e:b9:c8:50:86:2f:a8:2f:be:f0:6a:
aa:e2:8a:a5:81:cb:72:c2:06:9e:82:31:ab:77:52:e9:38:19:
70:3a:02:8e:4f:e1:d0:f6:ad:fc:bd:c9:9e:78:55:ca:62:7d:
70:09:17:03:1f:14:cf:20:df:fc:ab:50:ad:bd:81:91:fb:19:
e6:aa:d4:cd:29:60:5a:61:44:57:32:80:4f:35:03:a0:4f:b5:
1d:07:14:85:be:8c:18:87:62:5e:d5:09:ac:97:f6:c4:d4:a5:
f0:2a:3d:0e:42:61:0a:8d:23:b0:8a:ac:a4:be:12:48:f4:bf:
ae:07:8b:54:b2:59:11:91:6b:75:d7:a7:04:5f:c9:a6:77:7a:
b4:8f:66:b0:07:f9:68:88:d7:60:7e:da:ab:0d:8b:a1:ff:05:
b2:f8:83:08
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAblVMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjYwMjE0MDY0NDAwWhcNMjYwMzE2MDY0NDAwWjAYMRYw
FAYDVQQDEw02OTkwMTliNC02NWYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAzBBppGfAz8O+cIbIzfKP5qZidn9XrtWw7TRosMjhE4II93pcRL/bQdUd
bpoet7GCK3qGmufZ7MUKs3m0ZEaQsFL1tsWzavu/AenwKKcIOVsAT9SZKGFSw70h
tax0A4TrRk1DYxTPK6Xs2IoNma+H20I6g4HbEkJbvNcsgH9i1QuJIFd/p+XeTqKv
OdDV/bBiB5ZVTbENDX/tY9pv91HhvI0os7EdtEAttoIYQz7Y8r5tC9r5Fn1ZV7pT
6BI4zfWBQSuUP3VaAl7p/qlQ3rGNr/PevyjB9dn0Au1tT0u4i/J5UR4rnf4FRk6X
A0yaxoyl9+iIiu9xPU+warjFHdNl+wIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFPZ+
KRpNYGBk4OPsW5C3v+CzTc5AMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC84RDY1QTE3MjA5NzAxMUYxODA0ODIyOThEQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmsVmMA0GCSqGSIb3DQEB
CwUAA4IBAQDXCZmfE6SXgdn/BW6mTKhNEKv/ILocMau6G2sw6HHN3MC51PclG+Tg
3++jlhBWDF5Xs7IsH5thk6QTMGQTzymNEM2qKskJz2jbi5gZz9b53jBrhmpvBRvk
geGvh3VKDXGEfrnIUIYvqC++8Gqq4oqlgctywgaegjGrd1LpOBlwOgKOT+HQ9q38
vcmeeFXKYn1wCRcDHxTPIN/8q1CtvYGR+xnmqtTNKWBaYURXMoBPNQOgT7UdBxSF
vowYh2Je1Qmsl/bE1KXwKj0OQmEKjSOwiqykvhJI9L+uB4tUslkRkWt116cEX8mm
d3q0j2awB/loiNdgftqrDYuh/wWy+IMI
-----END CERTIFICATE-----
Generated at Mon Mar 2 16:38:23 2026 by rpki-client