Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C1CED0522F3911F1978921ECDAE4EC9C.roa
File: C1CED0522F3911F1978921ECDAE4EC9C.roa (raw, json)
Hash identifier: LEeAsm+GNDKB8HtF1Okx+1wXw0+TQR4glUKbmtWfxE8=
Subject key identifier: 19:8A:0E:18:D6:2C:9B:AB:C9:F1:E3:87:E2:69:30:89:D3:FE:4C:41
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C2A8
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C1CED0522F3911F1978921ECDAE4EC9C.roa
Signing time: Fri 03 Apr 2026 08:47:34 +0000
ROA not before: Fri 03 Apr 2026 08:47:29 +0000
ROA not after: Sat 25 Apr 2026 08:47:29 +0000
asID: 20457
IP address blocks: 154.88.10.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 15:47:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115368 (0x1c2a8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 3 08:47:29 2026 GMT
Not After : Apr 25 08:47:29 2026 GMT
Subject: CN=69cf7ea6-bd16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:4e:4e:4c:30:6a:6c:93:21:19:26:84:13:21:
b0:b8:19:1d:40:b8:3b:5c:e8:f0:b9:4e:d8:68:ec:
6d:d4:12:0b:1b:d6:86:7c:dd:36:53:c7:a5:a9:5e:
6a:6f:20:67:04:93:43:dd:40:74:e2:9b:34:7b:e6:
d3:e6:e7:b1:fc:dc:b8:ac:02:e4:f2:68:09:eb:7f:
4d:ab:f7:8e:37:76:8b:b8:27:7a:a5:45:1d:d4:c6:
6e:b7:75:aa:da:77:ac:16:0a:81:89:d2:e3:bb:d1:
96:ca:17:d0:b7:0e:a8:27:55:a1:58:7b:5c:c0:aa:
85:5d:b3:19:30:94:bb:c4:e5:44:7f:29:9b:f4:89:
d1:2a:6a:a6:63:aa:bc:8f:ad:f2:cb:20:92:11:6d:
3c:98:5c:21:a8:97:a0:8b:f5:c2:35:f6:63:61:8d:
9b:8c:f2:bc:6e:6a:ed:76:5e:c2:1e:7b:7a:b0:41:
13:33:56:29:e1:f6:ce:9c:d0:e6:aa:e1:83:dc:c7:
18:57:5e:f9:1b:ea:61:52:6c:36:20:be:c4:4d:0f:
57:b6:7b:62:21:7c:f8:34:cf:08:30:81:f3:44:8e:
99:d7:a7:f1:71:72:73:31:ef:4d:45:1d:ec:ef:e7:
6d:dd:c1:a5:a0:23:b2:b1:23:30:ef:da:2d:72:c9:
87:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:8A:0E:18:D6:2C:9B:AB:C9:F1:E3:87:E2:69:30:89:D3:FE:4C:41
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C1CED0522F3911F1978921ECDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.88.10.0/24
Signature Algorithm: sha256WithRSAEncryption
d7:18:36:5d:79:40:12:55:4e:32:95:e0:2d:f8:aa:b8:70:42:
aa:fe:ed:5e:38:ad:15:bb:ec:1a:0b:06:c8:a1:06:74:9b:de:
39:3e:03:ef:9c:f6:b6:d1:4d:5d:2d:c9:79:60:31:21:aa:0b:
99:78:40:8c:c4:15:11:61:85:62:39:c2:43:1e:5c:5d:fd:d0:
fb:24:05:8c:9b:d2:c8:48:5a:35:af:13:20:c5:4b:07:d0:7c:
1d:c3:79:25:a5:23:96:8e:65:06:d2:6a:cb:b0:90:3d:67:f5:
07:15:ac:4a:fa:c1:56:d5:5e:b1:02:62:f7:aa:cf:28:d6:14:
5c:dd:30:74:a6:5f:19:1d:b4:5d:a7:ce:63:ee:b3:c0:8e:cb:
cd:9e:c2:3b:97:96:94:17:19:3c:27:1b:ca:8b:aa:d6:8a:d0:
dc:0b:fb:e3:75:3b:13:b7:f6:2c:a0:68:3c:7b:c3:c9:70:5a:
f6:e7:52:89:6a:f4:c2:21:a4:7e:25:6a:74:bc:0a:af:fc:f6:
b6:57:ad:8a:6e:b7:db:fc:f5:1c:23:8e:cc:b0:41:4f:47:9f:
6b:2c:ec:5a:a1:e7:70:4e:d3:a3:fe:ac:aa:88:c8:e5:7e:73:
59:08:72:ac:f3:bf:bb:76:ce:93:12:eb:0b:01:37:9e:55:99:
38:81:dd:4a
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAcKoMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjYwNDAzMDg0NzI5WhcNMjYwNDI1MDg0NzI5WjAYMRYw
FAYDVQQDEw02OWNmN2VhNi1iZDE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA6E5OTDBqbJMhGSaEEyGwuBkdQLg7XOjwuU7YaOxt1BILG9aGfN02U8el
qV5qbyBnBJND3UB04ps0e+bT5uex/Ny4rALk8mgJ639Nq/eON3aLuCd6pUUd1MZu
t3Wq2nesFgqBidLju9GWyhfQtw6oJ1WhWHtcwKqFXbMZMJS7xOVEfymb9InRKmqm
Y6q8j63yyyCSEW08mFwhqJegi/XCNfZjYY2bjPK8bmrtdl7CHnt6sEETM1Yp4fbO
nNDmquGD3McYV175G+phUmw2IL7ETQ9XtntiIXz4NM8IMIHzRI6Z16fxcXJzMe9N
RR3s7+dt3cGloCOysSMw79otcsmHmwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFBmK
DhjWLJuryfHjh+JpMInT/kxBMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9DMUNFRDA1MjJGMzkxMUYxOTc4OTIxRUNEQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmlgKMA0GCSqGSIb3DQEB
CwUAA4IBAQDXGDZdeUASVU4yleAt+Kq4cEKq/u1eOK0Vu+waCwbIoQZ0m945PgPv
nPa20U1dLcl5YDEhqguZeECMxBURYYViOcJDHlxd/dD7JAWMm9LISFo1rxMgxUsH
0Hwdw3klpSOWjmUG0mrLsJA9Z/UHFaxK+sFW1V6xAmL3qs8o1hRc3TB0pl8ZHbRd
p85j7rPAjsvNnsI7l5aUFxk8JxvKi6rWitDcC/vjdTsTt/YsoGg8e8PJcFr251KJ
avTCIaR+JWp0vAqv/Pa2V62Kbrfb/PUcI47MsEFPR59rLOxaoedwTtOj/qyqiMjl
fnNZCHKs87+7ds6TEusLATeeVZk4gd1K
-----END CERTIFICATE-----
Generated at Fri Apr 17 17:42:21 2026 by rpki-client