Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D1C2F17EFE7D11F0A8B72BD0DAE4EC9C.roa
File: D1C2F17EFE7D11F0A8B72BD0DAE4EC9C.roa (raw, json)
Hash identifier: b3QgGB3iY+0hcluKsn6N9zHbVhMRRXzNBgZn4MJkKHA=
Subject key identifier: 9E:35:6D:83:A0:90:30:63:05:E9:89:43:D6:71:4E:89:C4:38:78:5D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01B7C2
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D1C2F17EFE7D11F0A8B72BD0DAE4EC9C.roa
Signing time: Sat 31 Jan 2026 08:21:20 +0000
ROA not before: Sat 31 Jan 2026 08:21:14 +0000
ROA not after: Sun 08 Mar 2026 08:21:14 +0000
asID: 202656
IP address blocks: 154.218.28.0/24 maxlen: 24
154.218.29.0/24 maxlen: 24
154.219.196.0/24 maxlen: 24
154.219.198.0/24 maxlen: 24
154.219.199.0/24 maxlen: 24
154.221.56.0/24 maxlen: 24
154.221.57.0/24 maxlen: 24
154.221.58.0/24 maxlen: 24
154.221.59.0/24 maxlen: 24
154.221.61.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 04 Mar 2026 00:07:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112578 (0x1b7c2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 31 08:21:14 2026 GMT
Not After : Mar 8 08:21:14 2026 GMT
Subject: CN=697dbb7f-4f6e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:49:53:d0:5a:71:c5:ba:8b:53:77:5c:81:18:
ba:f5:a6:a2:60:b6:a0:4c:09:d5:63:de:20:84:58:
6c:8e:29:a1:e8:eb:ec:e7:d3:b8:f7:7f:d0:ba:ca:
37:ee:e0:18:fe:09:cd:11:63:e1:2e:7f:0f:2a:98:
ca:c4:7f:bd:f2:8a:d0:8a:ab:17:66:28:85:ef:2d:
1f:43:38:56:3d:5c:74:4b:e8:2f:b7:3c:33:d6:13:
ac:d2:cd:11:f6:34:c6:a1:d5:f7:dc:da:a3:9b:10:
2a:45:43:df:03:ea:70:3e:81:b4:1b:0c:5b:7d:9a:
a4:47:7c:13:5f:18:97:16:09:a0:eb:0e:29:6a:39:
35:0f:91:40:82:55:70:76:3e:cc:b4:30:cf:0c:9d:
36:83:70:96:c1:42:82:2a:30:cd:79:bb:02:cb:a8:
c0:99:08:88:05:89:2c:49:b5:5b:5d:3d:66:0c:b9:
5c:31:98:b0:81:21:21:88:e5:63:68:38:53:11:3c:
77:8d:cd:f8:01:f5:d8:ae:ed:b9:a8:cd:8d:04:51:
b4:69:ed:7e:0e:d3:8c:34:7e:70:06:38:3b:6f:01:
ca:5a:a7:b8:dc:b7:c9:f2:10:38:75:d9:93:47:62:
ac:e1:b8:39:d3:8e:b3:1a:a2:59:eb:94:6b:cf:fc:
0d:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:35:6D:83:A0:90:30:63:05:E9:89:43:D6:71:4E:89:C4:38:78:5D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D1C2F17EFE7D11F0A8B72BD0DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.218.28.0/23
154.219.196.0/24
154.219.198.0/23
154.221.56.0/22
154.221.61.0/24
Signature Algorithm: sha256WithRSAEncryption
c8:6b:a3:9d:ad:b8:98:f3:40:41:d7:a2:89:9d:a1:e1:71:4a:
fb:52:aa:e4:1c:68:e6:53:ba:81:83:6c:6e:25:96:24:09:f6:
77:7f:6c:76:1e:a3:29:5f:0e:35:48:b3:6b:7e:23:48:3e:1b:
ad:5b:78:4a:8d:d2:b4:64:a2:c2:67:53:f1:58:d6:38:41:49:
41:ee:60:ea:e7:d4:c0:76:69:ec:7d:25:a7:26:22:7d:97:fc:
71:da:ff:52:23:3f:61:9b:d5:f2:e2:4b:29:9b:b4:66:7c:88:
e5:a7:db:08:75:65:10:f6:01:85:c6:17:2e:bc:9d:d5:38:90:
34:14:20:5a:4e:b6:d2:b2:79:7c:31:ba:17:f6:f2:52:39:a6:
7f:9d:a1:86:50:5e:46:06:58:2e:4b:20:ef:ba:89:70:17:7e:
99:6b:10:72:c7:b0:d1:54:c2:d4:c6:10:9e:0b:4e:3e:26:74:
7a:6c:f6:bf:e7:d2:75:37:14:15:1c:84:79:22:28:c6:d6:14:
a4:60:48:b3:54:2e:21:23:a2:27:28:77:37:78:17:e6:df:33:
c1:3a:24:74:5a:41:ec:0e:6c:f7:c2:1d:37:44:c8:fc:3e:65:
42:37:1b:9a:fc:2a:00:56:32:95:1e:da:23:07:20:bc:f8:a1:
26:45:cd:4d
-----BEGIN CERTIFICATE-----
MIIFnDCCBISgAwIBAgIDAbfCMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjYwMTMxMDgyMTE0WhcNMjYwMzA4MDgyMTE0WjAYMRYw
FAYDVQQDEw02OTdkYmI3Zi00ZjZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA20lT0FpxxbqLU3dcgRi69aaiYLagTAnVY94ghFhsjimh6Ovs59O493/Q
uso37uAY/gnNEWPhLn8PKpjKxH+98orQiqsXZiiF7y0fQzhWPVx0S+gvtzwz1hOs
0s0R9jTGodX33NqjmxAqRUPfA+pwPoG0GwxbfZqkR3wTXxiXFgmg6w4pajk1D5FA
glVwdj7MtDDPDJ02g3CWwUKCKjDNebsCy6jAmQiIBYksSbVbXT1mDLlcMZiwgSEh
iOVjaDhTETx3jc34AfXYru25qM2NBFG0ae1+DtOMNH5wBjg7bwHKWqe43LfJ8hA4
ddmTR2Ks4bg5046zGqJZ65Rrz/wNtQIDAQABo4ICvTCCArkwHQYDVR0OBBYEFJ41
bYOgkDBjBemJQ9ZxTonEOHhdMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9EMUMyRjE3RUZFN0QxMUYwQThCNzJCRDBEQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMDcGCCsGAQUFBwEHAQH/BCgwJjAkBAIAATAeAwQBmtocAwQAmtvEAwQBmtvG
AwQCmt04AwQAmt09MA0GCSqGSIb3DQEBCwUAA4IBAQDIa6OdrbiY80BB16KJnaHh
cUr7UqrkHGjmU7qBg2xuJZYkCfZ3f2x2HqMpXw41SLNrfiNIPhutW3hKjdK0ZKLC
Z1PxWNY4QUlB7mDq59TAdmnsfSWnJiJ9l/xx2v9SIz9hm9Xy4kspm7RmfIjlp9sI
dWUQ9gGFxhcuvJ3VOJA0FCBaTrbSsnl8MboX9vJSOaZ/naGGUF5GBlguSyDvuolw
F36ZaxByx7DRVMLUxhCeC04+JnR6bPa/59J1NxQVHIR5IijG1hSkYEizVC4hI6In
KHc3eBfm3zPBOiR0WkHsDmz3wh03RMj8PmVCNxua/CoAVjKVHtojByC8+KEmRc1N
-----END CERTIFICATE-----
Generated at Mon Mar 2 18:46:02 2026 by rpki-client