Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B2D1DDE65EB011F1AF2CE8ACCE1D38B0.roa
File: B2D1DDE65EB011F1AF2CE8ACCE1D38B0.roa (raw, json)
Hash identifier: mN1bLiWnrXBnmJOAMiWZWrL11ZxNaL6CcfEJTM/O7fE=
Subject key identifier: 10:71:B2:58:9D:56:5A:31:BA:5F:FE:8E:2D:50:B1:CF:F9:EF:F4:8C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01D152
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B2D1DDE65EB011F1AF2CE8ACCE1D38B0.roa
Signing time: Tue 02 Jun 2026 18:27:23 +0000
ROA not before: Tue 02 Jun 2026 18:27:19 +0000
ROA not after: Sat 11 Jul 2026 18:27:19 +0000
asID: 51896
IP address blocks: 154.194.43.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 15 Jun 2026 00:07:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119122 (0x1d152)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 2 18:27:19 2026 GMT
Not After : Jul 11 18:27:19 2026 GMT
Subject: CN=6a1f208b-b212
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:29:87:54:5a:b8:35:b2:96:56:10:d2:96:11:
ec:61:3e:6f:55:93:61:58:be:cf:e7:e6:87:3b:9d:
37:03:9a:36:cf:23:59:ff:fc:80:ab:4c:42:0a:e4:
5b:2d:45:63:1f:43:05:aa:42:e5:ac:e1:5a:75:ba:
6d:ad:10:94:1d:9a:50:8d:95:dc:b3:93:a7:e1:b5:
c0:98:ae:e0:d1:35:e3:f9:b9:e4:8a:06:e1:3e:70:
6b:cc:36:ec:3b:19:58:75:86:69:1e:cc:27:a8:8f:
fb:06:2c:3a:49:02:45:1f:c3:92:f2:9b:02:8c:ae:
69:71:c5:e9:ec:1b:b6:c2:09:ec:cd:cd:91:7c:c8:
a5:c8:50:34:17:74:01:b4:f7:23:33:d6:51:ac:e7:
d7:cc:fa:b3:7f:9d:b7:06:c7:fe:0e:fd:ac:da:35:
27:45:34:dc:ff:8d:7c:67:13:19:27:a1:04:04:de:
ce:5b:92:e2:9d:86:8d:c9:30:8d:d3:5a:63:2b:0e:
6b:bf:56:51:41:13:bc:b5:f8:d8:27:b9:5a:c7:fc:
d5:70:8e:17:d9:39:dd:95:5c:b9:5c:72:42:fc:0c:
4b:3e:8a:16:7a:1a:98:51:e9:37:10:b7:f1:90:4c:
3d:87:50:7f:60:a1:28:c5:79:ad:d3:f7:69:ad:a4:
d7:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:71:B2:58:9D:56:5A:31:BA:5F:FE:8E:2D:50:B1:CF:F9:EF:F4:8C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B2D1DDE65EB011F1AF2CE8ACCE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.43.0/24
Signature Algorithm: sha256WithRSAEncryption
10:b7:ff:1a:02:19:cb:0c:dc:e8:98:f8:1d:a3:d5:d4:30:04:
89:37:a5:77:9b:1a:fa:e6:18:2f:40:c8:98:6e:7d:15:72:da:
25:15:85:47:e6:ff:c4:08:63:6f:e4:9c:ff:93:55:d3:50:42:
7c:08:41:1f:c4:d6:fd:0a:0d:6b:1b:de:4e:65:74:bc:a9:e1:
4e:c1:fb:c7:cf:11:c4:78:3b:76:a6:9e:db:dd:44:31:d6:b5:
05:aa:a4:b4:19:62:83:cd:70:2a:a7:32:46:68:c3:ab:01:54:
93:80:62:09:86:b5:c7:d4:99:89:fe:6a:d6:6b:fb:1b:f1:1b:
ef:5f:ce:a5:87:16:63:3a:61:57:68:3d:12:93:a5:01:5b:51:
1d:85:05:47:ce:15:6f:b3:df:21:16:73:9f:86:3c:bf:bc:99:
43:b8:2e:e6:a4:84:a9:3d:7e:92:5a:86:bf:1d:d1:79:0e:17:
66:10:c5:e4:9b:bf:6b:b9:5d:53:86:46:ee:2e:4d:06:b1:2f:
c5:40:e7:66:c3:d9:8d:b2:cb:db:33:cb:a5:e1:02:f8:d2:b8:
46:8b:41:0a:45:a5:dd:78:af:e2:37:4b:d6:f3:f1:8f:72:42:
dc:4c:9f:73:ca:4f:eb:15:39:9b:89:b6:ea:fc:a1:c1:24:e6:
87:3b:00:48
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAdFSMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjYwNjAyMTgyNzE5WhcNMjYwNzExMTgyNzE5WjAYMRYw
FAYDVQQDEw02YTFmMjA4Yi1iMjEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAnimHVFq4NbKWVhDSlhHsYT5vVZNhWL7P5+aHO503A5o2zyNZ//yAq0xC
CuRbLUVjH0MFqkLlrOFadbptrRCUHZpQjZXcs5On4bXAmK7g0TXj+bnkigbhPnBr
zDbsOxlYdYZpHswnqI/7Biw6SQJFH8OS8psCjK5pccXp7Bu2wgnszc2RfMilyFA0
F3QBtPcjM9ZRrOfXzPqzf523Bsf+Dv2s2jUnRTTc/418ZxMZJ6EEBN7OW5LinYaN
yTCN01pjKw5rv1ZRQRO8tfjYJ7lax/zVcI4X2TndlVy5XHJC/AxLPooWehqYUek3
ELfxkEw9h1B/YKEoxXmt0/dpraTXIQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFBBx
slidVloxul/+ji1Qsc/57/SMMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9CMkQxRERFNjVFQjAxMUYxQUYyQ0U4QUNDRTFEMzhCMC5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmsIrMA0GCSqGSIb3DQEB
CwUAA4IBAQAQt/8aAhnLDNzomPgdo9XUMASJN6V3mxr65hgvQMiYbn0VctolFYVH
5v/ECGNv5Jz/k1XTUEJ8CEEfxNb9Cg1rG95OZXS8qeFOwfvHzxHEeDt2pp7b3UQx
1rUFqqS0GWKDzXAqpzJGaMOrAVSTgGIJhrXH1JmJ/mrWa/sb8RvvX86lhxZjOmFX
aD0Sk6UBW1EdhQVHzhVvs98hFnOfhjy/vJlDuC7mpISpPX6SWoa/HdF5DhdmEMXk
m79ruV1ThkbuLk0GsS/FQOdmw9mNssvbM8ul4QL40rhGi0EKRaXdeK/iN0vW8/GP
ckLcTJ9zyk/rFTmbibbq/KHBJOaHOwBI
-----END CERTIFICATE-----
Generated at Sat Jun 13 08:04:54 2026 by rpki-client