Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BCBA24C232F411F1BDA1BDBACE1D38B0.roa
File: BCBA24C232F411F1BDA1BDBACE1D38B0.roa (raw, json)
Hash identifier: wUZxcs3q24ot8+S49MY5KjzgSgGatfUg+oQfD3AgkOo=
Subject key identifier: E3:18:C1:F2:90:D5:6A:51:37:C6:E4:D0:BB:A3:26:B2:78:CE:DC:A5
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C37C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BCBA24C232F411F1BDA1BDBACE1D38B0.roa
Signing time: Wed 08 Apr 2026 02:43:35 +0000
ROA not before: Wed 08 Apr 2026 02:43:30 +0000
ROA not after: Sat 18 Apr 2026 02:43:30 +0000
asID: 139880
IP address blocks: 154.82.32.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 18 Apr 2026 02:43:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115580 (0x1c37c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 8 02:43:30 2026 GMT
Not After : Apr 18 02:43:30 2026 GMT
Subject: CN=69d5c0d7-0aeb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:c3:81:4d:01:45:e7:c9:89:68:cb:29:40:fc:
b3:c1:a9:ba:50:13:2f:d9:d6:83:23:d6:0d:59:67:
ac:13:6f:c9:1b:3d:e0:f1:3e:9f:df:56:5e:1c:9e:
f0:fa:58:17:43:dd:71:f3:b5:0f:bd:e2:fb:1d:7e:
a4:25:cc:bc:6c:15:dd:a9:7b:78:f4:1b:83:02:22:
56:5f:e1:b8:14:32:11:6e:2c:83:7d:99:1f:38:bb:
da:45:9c:c0:a9:4c:35:a1:e3:be:e9:99:b8:5f:76:
ec:b0:a0:c5:63:38:64:55:fe:e9:d2:0e:15:8f:b7:
1b:bb:09:5c:ce:75:3a:6d:68:3d:02:04:d0:53:62:
cc:62:7a:dd:86:95:d3:4d:3b:cf:8e:0d:f5:f1:a5:
60:6a:cd:dd:c5:b8:8c:ca:0c:21:84:5d:47:7f:56:
17:be:ed:30:a9:0f:cd:48:0d:42:77:8f:ef:a3:36:
41:b7:62:fc:a4:e8:d5:70:8e:0e:9d:1b:60:48:e3:
bc:c3:33:01:b2:6a:73:1c:17:51:47:2f:f5:c1:42:
02:fe:fd:85:0a:3f:bd:79:f0:bd:21:44:df:b0:fa:
7b:96:64:bb:8b:78:ee:52:d1:90:29:68:58:3e:3f:
fd:3f:92:4a:9a:13:a9:ec:db:19:63:2c:13:02:04:
0a:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:18:C1:F2:90:D5:6A:51:37:C6:E4:D0:BB:A3:26:B2:78:CE:DC:A5
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BCBA24C232F411F1BDA1BDBACE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.82.32.0/19
Signature Algorithm: sha256WithRSAEncryption
bd:61:95:ae:92:c3:d5:de:e4:8b:be:31:aa:8b:5a:48:03:61:
ac:b1:88:4b:14:f9:71:65:c1:18:54:31:b3:bb:d2:c5:63:31:
f2:e5:1f:27:7a:e3:68:4f:d7:02:c3:39:f1:97:30:b7:51:46:
b3:a9:08:7c:49:7b:2f:89:c3:18:6a:ba:35:ed:43:cd:5a:11:
67:d6:02:1f:57:67:b9:c0:71:6d:92:a9:f5:53:d8:19:d9:f4:
84:18:30:35:1b:b3:10:1f:f9:91:f5:45:d8:be:f2:cc:73:9a:
2e:62:2e:0f:e8:cd:9e:31:ed:ad:c1:a0:b3:fc:66:40:3e:97:
99:9c:da:90:43:69:24:3d:90:29:ad:d3:ef:08:80:9c:1b:5c:
bb:d4:8a:0c:c6:b6:ab:98:57:1e:e1:c9:14:11:1b:b0:04:19:
65:79:fa:03:01:c2:76:62:a9:5a:bd:49:bd:10:83:66:5c:ab:
15:90:3e:1c:06:d1:97:c0:06:8e:49:c3:cc:0b:66:d3:7f:88:
4e:4c:73:3c:58:c2:a3:3e:77:28:61:35:d6:a2:66:de:4c:86:
b7:87:26:99:3a:ce:a1:8c:9c:64:6f:22:ee:5d:02:07:14:9d:
cb:a1:7e:b2:6b:af:a8:9b:d3:73:72:a7:ae:3a:51:19:9e:28:
fc:d2:ab:30
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAcN8MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjYwNDA4MDI0MzMwWhcNMjYwNDE4MDI0MzMwWjAYMRYw
FAYDVQQDEw02OWQ1YzBkNy0wYWViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAy8OBTQFF58mJaMspQPyzwam6UBMv2daDI9YNWWesE2/JGz3g8T6f31Ze
HJ7w+lgXQ91x87UPveL7HX6kJcy8bBXdqXt49BuDAiJWX+G4FDIRbiyDfZkfOLva
RZzAqUw1oeO+6Zm4X3bssKDFYzhkVf7p0g4Vj7cbuwlcznU6bWg9AgTQU2LMYnrd
hpXTTTvPjg318aVgas3dxbiMygwhhF1Hf1YXvu0wqQ/NSA1Cd4/vozZBt2L8pOjV
cI4OnRtgSOO8wzMBsmpzHBdRRy/1wUIC/v2FCj+9efC9IUTfsPp7lmS7i3juUtGQ
KWhYPj/9P5JKmhOp7NsZYywTAgQKSQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFOMY
wfKQ1WpRN8bk0LujJrJ4ztylMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9CQ0JBMjRDMjMyRjQxMUYxQkRBMUJEQkFDRTFEMzhCMC5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQFmlIgMA0GCSqGSIb3DQEB
CwUAA4IBAQC9YZWuksPV3uSLvjGqi1pIA2GssYhLFPlxZcEYVDGzu9LFYzHy5R8n
euNoT9cCwznxlzC3UUazqQh8SXsvicMYaro17UPNWhFn1gIfV2e5wHFtkqn1U9gZ
2fSEGDA1G7MQH/mR9UXYvvLMc5ouYi4P6M2eMe2twaCz/GZAPpeZnNqQQ2kkPZAp
rdPvCICcG1y71IoMxrarmFce4ckUERuwBBllefoDAcJ2YqlavUm9EINmXKsVkD4c
BtGXwAaOScPMC2bTf4hOTHM8WMKjPncoYTXWombeTIa3hyaZOs6hjJxkbyLuXQIH
FJ3LoX6ya6+om9NzcqeuOlEZnij80qsw
-----END CERTIFICATE-----
Generated at Fri Apr 17 15:07:40 2026 by rpki-client