Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B7840AAA0E4A11F19B4E70EFDAE4EC9C.roa
File: B7840AAA0E4A11F19B4E70EFDAE4EC9C.roa (raw, json)
Hash identifier: nJe43Fmst6bnbJtpyQvVgTddDVMbqFudPSKOsAH67og=
Subject key identifier: 9E:39:3C:77:98:6F:09:6D:81:20:52:00:69:06:9C:8D:F0:FF:5C:E9
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01BA60
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B7840AAA0E4A11F19B4E70EFDAE4EC9C.roa
Signing time: Fri 20 Feb 2026 10:55:50 +0000
ROA not before: Fri 20 Feb 2026 10:55:45 +0000
ROA not after: Fri 27 Mar 2026 10:55:45 +0000
asID: 63139
IP address blocks: 154.203.182.0/24 maxlen: 24
154.203.183.0/24 maxlen: 24
154.203.184.0/24 maxlen: 24
154.203.185.0/24 maxlen: 24
154.203.186.0/24 maxlen: 24
154.203.187.0/24 maxlen: 24
154.203.188.0/24 maxlen: 24
154.203.189.0/24 maxlen: 24
154.203.190.0/24 maxlen: 24
154.203.191.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 03 Mar 2026 00:07:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113248 (0x1ba60)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 20 10:55:45 2026 GMT
Not After : Mar 27 10:55:45 2026 GMT
Subject: CN=69983db5-226b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:ee:05:69:c9:9f:79:cf:27:19:e6:21:35:fa:
95:99:29:81:47:f3:53:56:f4:f7:d7:d3:25:82:85:
b5:8a:de:5b:86:66:5c:f1:1d:47:c9:6d:7a:9b:8c:
54:20:7c:9a:c6:a4:60:eb:ed:ea:4d:72:51:67:a3:
24:b2:3b:0d:c4:ee:b2:f4:a8:79:81:38:c8:d0:c7:
f2:db:7e:da:f8:af:28:02:b5:43:6d:3f:61:5d:0a:
bd:59:2e:e0:d0:74:2d:a5:54:29:1e:e7:56:a0:99:
b5:5b:d4:c1:aa:3b:4b:bf:45:96:43:a5:a5:fd:77:
b9:b1:a2:b0:a8:b8:97:e0:fa:55:9a:5f:41:db:fd:
95:bd:65:83:7f:98:b6:fe:f8:bb:22:1c:5f:0e:4d:
52:5a:0d:c8:13:41:8b:f9:91:2c:4d:5e:b9:b2:da:
53:de:67:e3:b1:c6:a7:7a:2c:48:2f:65:25:d6:eb:
03:f9:32:78:3d:b9:2c:54:33:7c:6d:67:28:06:51:
c9:f6:17:01:ab:73:c0:54:70:fd:05:02:c4:79:ca:
d1:7a:51:20:ae:29:73:ed:87:e4:92:d7:4d:86:15:
cc:61:c3:fd:b7:84:74:76:aa:dd:ca:c8:c4:f7:2c:
51:34:1d:d9:65:f6:6d:bb:87:07:96:33:1b:78:5a:
5e:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:39:3C:77:98:6F:09:6D:81:20:52:00:69:06:9C:8D:F0:FF:5C:E9
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B7840AAA0E4A11F19B4E70EFDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.203.182.0-154.203.191.255
Signature Algorithm: sha256WithRSAEncryption
95:33:27:f5:81:5f:6a:37:3a:0e:61:49:50:4f:35:6a:72:d0:
29:8b:a4:3d:71:01:ad:d3:da:a6:76:8d:80:65:6f:ed:65:5e:
f0:50:00:c0:b0:18:50:b3:a7:00:8f:6f:11:50:ad:d6:10:4e:
27:65:44:ce:9b:2e:ac:5d:d6:66:bf:a3:21:e9:d5:c8:fc:0f:
e2:e4:de:df:14:e5:9a:de:4d:c9:02:66:12:bb:da:95:d2:54:
96:3e:c0:5f:8d:ff:e3:a3:7f:4b:bd:d6:3d:7d:a5:7a:f9:75:
01:89:48:eb:46:21:da:74:a8:6a:fb:9f:05:29:b8:4d:07:af:
40:04:46:c1:df:5a:ca:76:9c:ab:e9:fa:6e:3d:02:aa:ee:e2:
d2:2c:d2:c9:ab:b8:c4:4a:15:ec:f3:e8:13:37:d8:48:f9:0b:
4b:dc:f4:45:04:31:ea:9b:70:9b:83:13:31:f6:5a:12:04:fd:
2b:2e:ba:8c:09:1a:9f:da:07:34:e6:0e:97:4f:d6:72:9a:fd:
73:89:fc:7d:3b:61:bc:12:8c:5d:47:39:b6:63:81:cd:ff:e6:
34:5d:45:9d:8a:4b:71:44:3e:d0:a2:9a:14:cd:88:46:7e:82:
92:a0:6c:aa:5b:20:76:38:1d:80:3e:3a:40:0c:f6:a7:9f:94:
33:67:8a:d2
-----BEGIN CERTIFICATE-----
MIIFjDCCBHSgAwIBAgIDAbpgMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjYwMjIwMTA1NTQ1WhcNMjYwMzI3MTA1NTQ1WjAYMRYw
FAYDVQQDEw02OTk4M2RiNS0yMjZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAse4Facmfec8nGeYhNfqVmSmBR/NTVvT319MlgoW1it5bhmZc8R1HyW16
m4xUIHyaxqRg6+3qTXJRZ6MksjsNxO6y9Kh5gTjI0Mfy237a+K8oArVDbT9hXQq9
WS7g0HQtpVQpHudWoJm1W9TBqjtLv0WWQ6Wl/Xe5saKwqLiX4PpVml9B2/2VvWWD
f5i2/vi7IhxfDk1SWg3IE0GL+ZEsTV65stpT3mfjscaneixIL2Ul1usD+TJ4Pbks
VDN8bWcoBlHJ9hcBq3PAVHD9BQLEecrRelEgrilz7YfkktdNhhXMYcP9t4R0dqrd
ysjE9yxRNB3ZZfZtu4cHljMbeFpeMwIDAQABo4ICrTCCAqkwHQYDVR0OBBYEFJ45
PHeYbwltgSBSAGkGnI3w/1zpMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9CNzg0MEFBQTBFNEExMUYxOUI0RTcwRUZEQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOMAwDBAGay7YDBAaay4AwDQYJ
KoZIhvcNAQELBQADggEBAJUzJ/WBX2o3Og5hSVBPNWpy0CmLpD1xAa3T2qZ2jYBl
b+1lXvBQAMCwGFCzpwCPbxFQrdYQTidlRM6bLqxd1ma/oyHp1cj8D+Lk3t8U5Zre
TckCZhK72pXSVJY+wF+N/+Ojf0u91j19pXr5dQGJSOtGIdp0qGr7nwUpuE0Hr0AE
RsHfWsp2nKvp+m49Aqru4tIs0smruMRKFezz6BM32Ej5C0vc9EUEMeqbcJuDEzH2
WhIE/SsuuowJGp/aBzTmDpdP1nKa/XOJ/H07YbwSjF1HObZjgc3/5jRdRZ2KS3FE
PtCimhTNiEZ+gpKgbKpbIHY4HYA+OkAM9qeflDNnitI=
-----END CERTIFICATE-----
Generated at Sun Mar 1 18:19:32 2026 by rpki-client