Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/45FCDBFA4D4711F19A648BC5CE1D38B0.roa
File: 45FCDBFA4D4711F19A648BC5CE1D38B0.roa (raw, json)
Hash identifier: VdWuiAq7MBFNqadmF8NzxNz2n3omg4T3dABx0FwUmHc=
Subject key identifier: 05:B5:CB:52:B2:52:3A:DD:79:DF:71:EC:C5:19:B2:67:31:6D:BC:E6
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01CB15
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/45FCDBFA4D4711F19A648BC5CE1D38B0.roa
Signing time: Mon 11 May 2026 14:39:54 +0000
ROA not before: Mon 11 May 2026 14:39:48 +0000
ROA not after: Mon 08 Jun 2026 14:39:48 +0000
asID: 151347
IP address blocks: 154.84.243.0/24 maxlen: 24
154.84.250.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 15 May 2026 00:07:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117525 (0x1cb15)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 11 14:39:48 2026 GMT
Not After : Jun 8 14:39:48 2026 GMT
Subject: CN=6a01ea3a-3707
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:6a:e3:f8:06:e5:5f:70:d9:c2:82:0b:32:aa:
f3:97:92:26:1a:ef:5b:b4:08:f1:98:6d:a3:6a:6e:
d6:ee:f3:2d:cd:98:3b:0d:d6:d0:f3:e1:67:01:e0:
26:e8:b2:70:01:a6:36:c8:cf:37:ee:18:b9:b8:20:
f0:96:ea:ec:bd:ef:d9:69:52:49:0d:af:7c:68:8b:
36:d0:0c:69:86:ac:8c:58:54:17:19:00:7d:96:cf:
0e:02:c7:d5:68:78:86:06:7b:2c:2e:1c:dd:08:5b:
0a:37:6c:6f:90:e6:1a:ce:74:07:19:df:be:3a:a6:
fc:56:a3:18:f4:47:66:2f:46:30:5e:57:52:e4:9b:
a1:35:cf:04:53:55:d0:31:50:68:14:29:55:80:26:
4b:01:bf:e9:a4:98:47:db:49:64:ff:56:18:cb:ea:
36:5e:cb:d2:34:65:5b:30:54:c4:19:ba:8e:c2:7f:
60:af:2f:3c:ff:40:0b:e7:02:89:1c:d7:84:53:08:
d1:3d:6f:6f:fa:6b:f7:2b:ae:24:c4:15:ba:26:7b:
52:68:c4:35:c1:d3:50:0c:cf:1b:69:44:46:c6:25:
f3:be:9e:e6:7e:4e:57:10:6e:a6:30:54:b6:ba:52:
d1:15:84:b5:75:1e:c1:40:94:8c:83:1c:b3:0a:19:
b9:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:B5:CB:52:B2:52:3A:DD:79:DF:71:EC:C5:19:B2:67:31:6D:BC:E6
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/45FCDBFA4D4711F19A648BC5CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.84.243.0/24
154.84.250.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:43:69:e9:46:d7:ac:cf:0d:79:22:6d:4e:23:f9:e5:1a:b3:
77:e0:3c:a5:70:fd:35:f8:ab:e2:a6:ef:e2:2a:7d:51:54:45:
33:fa:3c:15:f7:06:2d:91:02:5f:0d:9d:48:84:28:d8:10:cf:
c0:e5:6e:0f:02:d7:3d:94:4b:91:a6:13:af:5a:94:09:b7:9e:
bb:bd:68:37:56:b7:e8:02:5b:83:b9:c8:6a:63:d5:49:5c:5f:
a3:37:97:53:ae:e8:82:63:9a:8f:67:91:28:62:bd:f1:f7:30:
79:68:9b:cd:1d:da:6e:c9:37:89:26:06:f5:bd:96:3a:86:22:
4e:62:30:b0:ad:5f:df:0b:6d:bd:f9:c0:73:88:d8:d9:e1:49:
e7:20:47:68:7a:7e:d0:34:19:2c:08:d8:36:47:44:f8:54:f0:
ca:95:61:1e:50:1b:77:7f:69:f3:b4:09:6c:00:b9:6f:97:81:
44:3b:78:ed:17:34:3e:71:4a:6b:1d:ac:c2:1b:d8:38:a9:fc:
8e:ec:45:23:7b:cb:21:28:4f:e6:85:0f:1e:ee:7d:a4:a9:a7:
73:96:94:17:af:90:34:d8:74:48:be:98:6b:1b:a6:57:86:c7:
a2:07:bc:c8:b1:c3:53:dc:ac:32:42:b2:46:81:e9:92:56:17:
2f:da:dd:f4
-----BEGIN CERTIFICATE-----
MIIFijCCBHKgAwIBAgIDAcsVMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjYwNTExMTQzOTQ4WhcNMjYwNjA4MTQzOTQ4WjAYMRYw
FAYDVQQDEw02YTAxZWEzYS0zNzA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAs2rj+AblX3DZwoILMqrzl5ImGu9btAjxmG2jam7W7vMtzZg7DdbQ8+Fn
AeAm6LJwAaY2yM837hi5uCDwlursve/ZaVJJDa98aIs20AxphqyMWFQXGQB9ls8O
AsfVaHiGBnssLhzdCFsKN2xvkOYaznQHGd++Oqb8VqMY9EdmL0YwXldS5JuhNc8E
U1XQMVBoFClVgCZLAb/ppJhH20lk/1YYy+o2XsvSNGVbMFTEGbqOwn9gry88/0AL
5wKJHNeEUwjRPW9v+mv3K64kxBW6JntSaMQ1wdNQDM8baURGxiXzvp7mfk5XEG6m
MFS2ulLRFYS1dR7BQJSMgxyzChm5SQIDAQABo4ICqzCCAqcwHQYDVR0OBBYEFAW1
y1KyUjrded9x7MUZsmcxbbzmMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC80NUZDREJGQTRENDcxMUYxOUE2NDhCQzVDRTFEMzhCMC5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAmlTzAwQAmlT6MA0GCSqG
SIb3DQEBCwUAA4IBAQAvQ2npRteszw15Im1OI/nlGrN34DylcP01+Kvipu/iKn1R
VEUz+jwV9wYtkQJfDZ1IhCjYEM/A5W4PAtc9lEuRphOvWpQJt567vWg3VrfoAluD
uchqY9VJXF+jN5dTruiCY5qPZ5EoYr3x9zB5aJvNHdpuyTeJJgb1vZY6hiJOYjCw
rV/fC229+cBziNjZ4UnnIEdoen7QNBksCNg2R0T4VPDKlWEeUBt3f2nztAlsALlv
l4FEO3jtFzQ+cUprHazCG9g4qfyO7EUje8shKE/mhQ8e7n2kqadzlpQXr5A02HRI
vphrG6ZXhseiB7zIscNT3KwyQrJGgemSVhcv2t30
-----END CERTIFICATE-----
Generated at Wed May 13 06:37:34 2026 by rpki-client