Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EB83AC1E46B411F1A2B781DACE1D38B0.roa
File: EB83AC1E46B411F1A2B781DACE1D38B0.roa (raw, json)
Hash identifier: U2FHtrOp38oAw5lbZVNoJ8KPHcioijeb9CWi+xLM570=
Subject key identifier: D7:F6:B6:64:72:E2:D1:0C:4D:34:F8:38:8B:0F:83:64:38:92:47:B9
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C946
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EB83AC1E46B411F1A2B781DACE1D38B0.roa
Signing time: Sun 03 May 2026 05:57:09 +0000
ROA not before: Sun 03 May 2026 05:57:04 +0000
ROA not after: Fri 14 Aug 2026 05:57:04 +0000
asID: 211826
IP address blocks: 154.197.91.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 15 May 2026 00:07:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117062 (0x1c946)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 3 05:57:04 2026 GMT
Not After : Aug 14 05:57:04 2026 GMT
Subject: CN=69f6e3b5-01fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fa:38:b6:40:4b:45:32:64:c7:20:69:45:4e:38:
ca:c8:0b:ca:c0:d0:66:b6:65:86:2f:5a:f0:9b:45:
31:60:2b:16:fd:ce:6a:13:da:81:02:2e:10:bf:5d:
08:44:0f:fd:34:a5:61:6d:d9:30:e9:6f:f2:aa:ba:
56:69:38:2a:44:c2:7e:04:5b:e2:8c:fd:82:31:bb:
93:f6:e4:16:ee:fc:e4:23:da:1b:09:80:d1:78:b6:
5e:6d:6d:e8:02:1c:4d:ff:54:3b:3b:ed:5c:8a:86:
8e:6e:eb:54:6e:7a:51:31:fe:54:f3:c2:c3:28:61:
90:ed:cf:ff:ba:ba:7f:43:a6:85:ff:ff:b3:dc:41:
e4:c2:ef:a9:a1:05:e4:68:62:bb:27:aa:85:f1:3c:
59:bd:8f:41:6c:4d:91:2e:af:dd:29:a7:f8:99:fd:
47:3b:7c:5a:c8:35:e7:9d:ca:c1:3f:1d:32:cd:5b:
e0:50:a5:9a:e2:a8:20:16:d2:b1:5a:d3:90:2f:cb:
88:c4:af:38:e2:37:e8:88:b8:d1:a8:a2:48:63:d4:
45:33:bf:f8:fd:00:fc:58:f4:2d:24:9c:b5:ed:e9:
f8:00:d4:c4:fc:3a:82:c1:ac:23:58:cf:24:1c:9b:
3c:9b:fe:1e:68:8c:6a:c8:2f:03:8d:5b:69:d3:03:
48:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:F6:B6:64:72:E2:D1:0C:4D:34:F8:38:8B:0F:83:64:38:92:47:B9
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EB83AC1E46B411F1A2B781DACE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.91.0/24
Signature Algorithm: sha256WithRSAEncryption
65:f8:b7:6c:d2:e0:41:0a:26:5e:a1:19:8a:b5:d2:5e:0a:93:
2d:df:7f:57:5c:60:3c:1d:8e:41:de:b9:6d:7c:d1:01:b0:68:
2f:51:21:06:3e:7a:55:91:25:83:b7:f5:0f:5d:fb:d4:51:12:
d8:10:ac:c3:46:de:9d:fb:26:2d:4f:24:5b:03:da:7a:40:b0:
1d:42:34:9b:35:cf:cf:e4:72:66:32:23:ae:ed:45:2f:35:e8:
2f:6a:e3:cc:d8:bb:a0:94:f4:6a:d6:52:36:fd:f4:e6:13:32:
73:fe:e5:aa:75:f0:ca:21:79:88:43:33:7b:aa:64:ea:0e:a2:
f2:e7:e8:de:17:c2:09:6b:dc:e0:29:7b:74:06:ae:da:76:08:
d0:5c:30:6c:1a:27:b8:11:f0:2c:45:b4:a4:06:59:26:52:15:
7c:bf:07:c1:b5:54:e4:72:c0:6d:78:54:94:cd:82:6b:87:09:
b8:05:5a:1c:94:5b:cb:ab:a6:f6:5a:b6:9f:f8:da:0c:d6:19:
78:5f:f7:b0:12:ef:6f:86:d1:4e:e2:10:a5:76:f7:ff:08:20:
dc:dd:a6:ea:b3:40:42:7f:6f:64:21:9f:6d:07:13:07:7b:4d:
eb:45:c8:7f:ca:08:c7:57:4f:07:78:93:ec:f7:5b:6b:41:0c:
20:d6:8a:f1
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAclGMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjYwNTAzMDU1NzA0WhcNMjYwODE0MDU1NzA0WjAYMRYw
FAYDVQQDEw02OWY2ZTNiNS0wMWZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA+ji2QEtFMmTHIGlFTjjKyAvKwNBmtmWGL1rwm0UxYCsW/c5qE9qBAi4Q
v10IRA/9NKVhbdkw6W/yqrpWaTgqRMJ+BFvijP2CMbuT9uQW7vzkI9obCYDReLZe
bW3oAhxN/1Q7O+1cioaObutUbnpRMf5U88LDKGGQ7c//urp/Q6aF//+z3EHkwu+p
oQXkaGK7J6qF8TxZvY9BbE2RLq/dKaf4mf1HO3xayDXnncrBPx0yzVvgUKWa4qgg
FtKxWtOQL8uIxK844jfoiLjRqKJIY9RFM7/4/QD8WPQtJJy17en4ANTE/DqCwawj
WM8kHJs8m/4eaIxqyC8DjVtp0wNIbwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFNf2
tmRy4tEMTTT4OIsPg2Q4kke5MB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9FQjgzQUMxRTQ2QjQxMUYxQTJCNzgxREFDRTFEMzhCMC5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmsVbMA0GCSqGSIb3DQEB
CwUAA4IBAQBl+Lds0uBBCiZeoRmKtdJeCpMt339XXGA8HY5B3rltfNEBsGgvUSEG
PnpVkSWDt/UPXfvUURLYEKzDRt6d+yYtTyRbA9p6QLAdQjSbNc/P5HJmMiOu7UUv
NegvauPM2LuglPRq1lI2/fTmEzJz/uWqdfDKIXmIQzN7qmTqDqLy5+jeF8IJa9zg
KXt0Bq7adgjQXDBsGie4EfAsRbSkBlkmUhV8vwfBtVTkcsBteFSUzYJrhwm4BVoc
lFvLq6b2Wraf+NoM1hl4X/ewEu9vhtFO4hCldvf/CCDc3abqs0BCf29kIZ9tBxMH
e03rRch/ygjHV08HeJPs91trQQwg1orx
-----END CERTIFICATE-----
Generated at Wed May 13 08:00:09 2026 by rpki-client