Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E4F4C3C028E511F1862A0BC6DAE4EC9C.roa
File: E4F4C3C028E511F1862A0BC6DAE4EC9C.roa (raw, json)
Hash identifier: Jij9Qz4yZ0Ro9OLDk4TFdbcb/C0q49JYj61l/Vh8Pys=
Subject key identifier: F5:BA:94:B1:2A:F8:3F:93:32:2F:38:E7:B9:0F:81:73:2E:19:A6:99
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C0F7
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E4F4C3C028E511F1862A0BC6DAE4EC9C.roa
Signing time: Thu 26 Mar 2026 07:32:08 +0000
ROA not before: Thu 26 Mar 2026 07:32:03 +0000
ROA not after: Thu 23 Apr 2026 07:32:03 +0000
asID: 215224
IP address blocks: 154.83.134.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 28 Mar 2026 00:07:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114935 (0x1c0f7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 26 07:32:03 2026 GMT
Not After : Apr 23 07:32:03 2026 GMT
Subject: CN=69c4e0f8-ddc5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:a6:03:a1:29:23:38:ac:de:23:48:f4:ee:6b:
b9:f7:9a:64:31:9d:33:72:a4:21:41:c0:6d:03:c4:
1c:61:6c:17:7b:72:12:f3:7e:c8:16:99:09:c7:c9:
69:11:ac:5e:41:e5:3e:6d:37:85:ef:b7:45:85:d0:
42:ed:4c:e1:9d:3a:31:f0:5e:d9:b5:cf:aa:ef:16:
09:c4:96:aa:3c:73:c6:6f:0d:7e:c9:93:46:4f:85:
74:1d:fd:07:78:69:da:2c:33:ea:45:a0:ef:d0:a7:
3f:d5:59:8f:c5:93:5d:e9:63:76:4d:c1:29:f9:1c:
04:da:72:97:5a:d4:f1:9e:d7:94:df:50:92:d7:7d:
9a:2c:9b:86:38:0b:81:5a:e8:94:b8:39:e7:24:2f:
81:a0:00:19:93:15:f9:60:a9:49:12:1d:62:1e:39:
76:cd:8f:6a:49:9b:84:ee:7f:92:eb:a2:e3:0f:a8:
f5:0d:9c:af:c2:43:4a:6f:f4:e2:d1:fd:39:b4:d8:
d1:d9:62:67:92:e2:7c:c4:14:fb:6e:91:20:ac:cb:
f3:69:ed:3a:4a:f7:01:fc:de:d0:ce:41:44:e8:08:
01:18:8a:c5:07:08:ef:07:ea:91:a1:58:14:7d:8a:
34:13:b0:9d:94:e6:41:2a:1a:c2:31:dc:df:ae:89:
36:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:BA:94:B1:2A:F8:3F:93:32:2F:38:E7:B9:0F:81:73:2E:19:A6:99
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E4F4C3C028E511F1862A0BC6DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.83.134.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:9a:ad:2a:37:0d:e5:2b:1a:bd:63:c2:9a:b0:9b:c6:23:5a:
ee:e5:bc:b5:ad:7c:37:8b:2d:07:ef:eb:67:9a:3e:92:11:07:
73:28:a6:b7:b8:5b:78:67:b0:bd:f5:6e:43:d0:f6:e3:a2:c9:
ac:96:19:e8:fd:dc:ba:ae:fd:68:d9:9f:11:18:5e:c9:c7:33:
cb:06:58:aa:a7:f5:86:c0:2a:52:41:df:78:05:e9:67:d4:8e:
41:5f:92:8d:3e:af:69:ca:e2:41:fb:1a:dd:2a:74:48:73:61:
98:2c:9f:b0:e7:2e:22:fd:dc:5a:0b:cc:46:01:bb:32:85:59:
09:1f:b5:94:40:6a:02:32:9c:71:d6:e4:1d:ba:c2:fe:65:bf:
4e:93:1b:11:01:f0:99:b0:2d:e0:34:2e:bd:8a:19:a9:a8:af:
0b:ec:09:9d:fa:6e:a5:32:85:c2:00:fc:0d:ca:4c:a0:4c:45:
ad:92:6c:54:3e:b3:0b:a6:cb:19:5d:76:45:d2:1b:1c:bc:94:
e7:63:68:f5:6e:2f:fb:22:23:8b:55:b8:1b:c1:b4:4a:a7:28:
67:c9:bc:f4:05:ca:d2:13:d4:83:a6:94:e3:32:44:1e:ef:08:
25:e5:b1:3d:5a:e7:b6:dd:61:c9:b7:82:b4:12:8d:c4:ed:b1:
b5:69:2f:a7
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAcD3MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjYwMzI2MDczMjAzWhcNMjYwNDIzMDczMjAzWjAYMRYw
FAYDVQQDEw02OWM0ZTBmOC1kZGM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEArKYDoSkjOKzeI0j07mu595pkMZ0zcqQhQcBtA8QcYWwXe3IS837IFpkJ
x8lpEaxeQeU+bTeF77dFhdBC7UzhnTox8F7Ztc+q7xYJxJaqPHPGbw1+yZNGT4V0
Hf0HeGnaLDPqRaDv0Kc/1VmPxZNd6WN2TcEp+RwE2nKXWtTxnteU31CS132aLJuG
OAuBWuiUuDnnJC+BoAAZkxX5YKlJEh1iHjl2zY9qSZuE7n+S66LjD6j1DZyvwkNK
b/Ti0f05tNjR2WJnkuJ8xBT7bpEgrMvzae06SvcB/N7QzkFE6AgBGIrFBwjvB+qR
oVgUfYo0E7CdlOZBKhrCMdzfrok2nwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFPW6
lLEq+D+TMi8457kPgXMuGaaZMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9FNEY0QzNDMDI4RTUxMUYxODYyQTBCQzZEQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmlOGMA0GCSqGSIb3DQEB
CwUAA4IBAQAsmq0qNw3lKxq9Y8KasJvGI1ru5by1rXw3iy0H7+tnmj6SEQdzKKa3
uFt4Z7C99W5D0Pbjosmslhno/dy6rv1o2Z8RGF7JxzPLBliqp/WGwCpSQd94Beln
1I5BX5KNPq9pyuJB+xrdKnRIc2GYLJ+w5y4i/dxaC8xGAbsyhVkJH7WUQGoCMpxx
1uQdusL+Zb9OkxsRAfCZsC3gNC69ihmpqK8L7Amd+m6lMoXCAPwNykygTEWtkmxU
PrMLpssZXXZF0hscvJTnY2j1bi/7IiOLVbgbwbRKpyhnybz0BcrSE9SDppTjMkQe
7wgl5bE9Wue23WHJt4K0Eo3E7bG1aS+n
-----END CERTIFICATE-----
Generated at Thu Mar 26 19:13:16 2026 by rpki-client