Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36167D3/138A951EE93311EFA3F6F559762E951A/319E7D9025E111F1AAB2D0A6DAE4EC9C.roa
File: 319E7D9025E111F1AAB2D0A6DAE4EC9C.roa (raw, json)
Hash identifier: t0hHr5N29exi7ePnnuqEX6ghsA9Kp7S/3DQ8eMKksBQ=
Subject key identifier: 9A:C3:1E:53:23:70:5A:BF:34:54:01:FF:DF:DB:A4:D7:4D:13:47:27
Certificate issuer: /CN=F36167D3AF/serialNumber=DC6B9AA979B5F9B376CA3299A582A75E3816AB41
Certificate serial: 019C
Authority key identifier: DC:6B:9A:A9:79:B5:F9:B3:76:CA:32:99:A5:82:A7:5E:38:16:AB:41
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/3GuaqXm1-bN2yjKZpYKnXjgWq0E.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36167D3/138A951EE93311EFA3F6F559762E951A/319E7D9025E111F1AAB2D0A6DAE4EC9C.roa
Signing time: Sun 22 Mar 2026 11:20:56 +0000
ROA not before: Sun 22 Mar 2026 11:20:51 +0000
ROA not after: Mon 22 Mar 2027 11:20:51 +0000
asID: 328769
IP address blocks: 102.222.174.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36167D3/138A951EE93311EFA3F6F559762E951A/3GuaqXm1-bN2yjKZpYKnXjgWq0E.crl
rsync://rpki.afrinic.net/repository/member_repository/F36167D3/138A951EE93311EFA3F6F559762E951A/3GuaqXm1-bN2yjKZpYKnXjgWq0E.mft
rsync://rpki.afrinic.net/repository/afrinic/3GuaqXm1-bN2yjKZpYKnXjgWq0E.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 28 Mar 2026 00:07:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 412 (0x19c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36167D3AF, serialNumber=DC6B9AA979B5F9B376CA3299A582A75E3816AB41
Validity
Not Before: Mar 22 11:20:51 2026 GMT
Not After : Mar 22 11:20:51 2027 GMT
Subject: CN=69bfd098-06b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:d8:8f:df:a8:b0:5b:7b:15:98:60:6c:98:d1:
ae:c3:2d:8d:fc:4d:ca:18:d7:13:de:2d:05:fb:65:
b2:43:24:d2:38:62:07:39:1f:0f:37:45:fb:11:32:
98:a5:b8:22:b4:5c:3f:b9:ac:73:5f:6d:fb:14:4a:
c8:12:8e:a5:fb:63:70:6d:78:8c:59:de:73:2c:58:
f0:6f:04:10:0e:06:37:e2:9b:cf:fd:ca:cf:df:3a:
4c:39:85:69:ca:d8:64:91:e7:7c:4f:cc:63:08:6a:
92:cd:50:04:42:b6:81:f7:a9:07:59:b3:90:d6:a8:
4c:54:2e:3b:d9:bd:0b:45:75:46:71:a6:48:41:6c:
e7:d4:c2:bf:87:95:ab:ce:4a:d1:53:91:75:be:71:
f2:fc:5f:f6:82:72:94:aa:e1:65:a0:74:8d:5b:a3:
c2:17:81:8a:f0:8b:9e:eb:10:20:f9:47:86:67:20:
55:e0:70:33:c1:4b:a4:4d:98:25:52:6f:c7:e4:34:
f8:4d:2b:77:ee:23:bf:52:1f:b8:f9:41:da:c0:89:
33:de:50:4c:c2:f5:7f:92:02:c4:2e:1c:7c:9a:b7:
f9:dd:e2:65:03:a5:79:ae:34:22:e8:66:e5:2f:d4:
38:e6:57:83:7d:2b:68:1b:f2:47:2f:d6:e4:f3:63:
06:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:C3:1E:53:23:70:5A:BF:34:54:01:FF:DF:DB:A4:D7:4D:13:47:27
X509v3 Authority Key Identifier:
keyid:DC:6B:9A:A9:79:B5:F9:B3:76:CA:32:99:A5:82:A7:5E:38:16:AB:41
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36167D3/138A951EE93311EFA3F6F559762E951A/3GuaqXm1-bN2yjKZpYKnXjgWq0E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/3GuaqXm1-bN2yjKZpYKnXjgWq0E.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36167D3/138A951EE93311EFA3F6F559762E951A/319E7D9025E111F1AAB2D0A6DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.222.174.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:e7:f3:3f:4f:79:ab:fa:69:2a:2c:d2:3b:5e:c2:b9:38:b3:
ed:54:8d:45:ac:45:3c:ae:7b:bb:c4:a0:12:26:eb:d8:5c:02:
91:15:8c:7a:b9:46:3d:98:7f:09:dc:4d:93:32:76:08:0b:59:
61:1d:75:84:4f:fd:bd:98:1f:41:3a:16:fc:20:c8:a5:36:20:
48:17:f4:66:ef:f6:38:02:90:d2:3c:42:cd:c8:6c:52:8d:5a:
bf:d9:78:49:50:d7:be:c2:cc:10:26:fb:9c:64:aa:72:39:19:
0e:52:66:53:8b:c3:a9:8b:08:37:26:f2:86:bf:f6:f3:aa:0f:
76:cc:42:95:2d:87:21:ce:5f:5c:ab:3f:c8:59:95:60:3f:b1:
13:7b:be:05:fa:11:8d:9b:17:65:b5:86:ab:a1:e4:f8:6f:8e:
db:eb:5e:85:10:d5:aa:0a:1e:48:aa:00:d3:a4:6a:d7:d4:7c:
15:68:4f:7b:34:c1:98:14:ed:f1:ca:75:92:34:38:23:b7:74:
c0:b1:dd:53:d0:75:79:28:a1:b5:de:1a:9f:91:9d:5f:e6:4c:
79:59:de:62:44:fc:34:bb:73:53:45:b7:3c:fe:4e:42:2d:05:
81:48:16:f5:44:e8:c8:cc:ba:5d:56:58:88:e9:4c:3f:7d:a6:
44:a5:b7:97
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICAZwwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
MTY3RDNBRjExMC8GA1UEBRMoREM2QjlBQTk3OUI1RjlCMzc2Q0EzMjk5QTU4MkE3
NUUzODE2QUI0MTAeFw0yNjAzMjIxMTIwNTFaFw0yNzAzMjIxMTIwNTFaMBgxFjAU
BgNVBAMTDTY5YmZkMDk4LTA2YjIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQC52I/fqLBbexWYYGyY0a7DLY38TcoY1xPeLQX7ZbJDJNI4Ygc5Hw83RfsR
MpiluCK0XD+5rHNfbfsUSsgSjqX7Y3BteIxZ3nMsWPBvBBAOBjfim8/9ys/fOkw5
hWnK2GSR53xPzGMIapLNUARCtoH3qQdZs5DWqExULjvZvQtFdUZxpkhBbOfUwr+H
lavOStFTkXW+cfL8X/aCcpSq4WWgdI1bo8IXgYrwi57rECD5R4ZnIFXgcDPBS6RN
mCVSb8fkNPhNK3fuI79SH7j5QdrAiTPeUEzC9X+SAsQuHHyat/nd4mUDpXmuNCLo
ZuUv1DjmV4N9K2gb8kcv1uTzYwaFAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUmsMe
UyNwWr80VAH/39uk100TRycwHwYDVR0jBBgwFoAU3GuaqXm1+bN2yjKZpYKnXjgW
q0EwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjE2N0QzLzEzOEE5NTFFRTkzMzExRUZBM0Y2RjU1OTc2MkU5NTFBLzNHdWFx
WG0xLWJOMnlqS1pwWUtuWGpnV3EwRS5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljLzNHdWFxWG0xLWJOMnlqS1pwWUtuWGpnV3EwRS5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjE2N0QzLzEzOEE5NTFFRTkzMzExRUZBM0Y2RjU1OTc2
MkU5NTFBLzMxOUU3RDkwMjVFMTExRjFBQUIyRDBBNkRBRTRFQzlDLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABm3q4wDQYJKoZIhvcNAQEL
BQADggEBAJzn8z9Peav6aSos0jtewrk4s+1UjUWsRTyue7vEoBIm69hcApEVjHq5
Rj2YfwncTZMydggLWWEddYRP/b2YH0E6FvwgyKU2IEgX9Gbv9jgCkNI8Qs3IbFKN
Wr/ZeElQ177CzBAm+5xkqnI5GQ5SZlOLw6mLCDcm8oa/9vOqD3bMQpUthyHOX1yr
P8hZlWA/sRN7vgX6EY2bF2W1hquh5PhvjtvrXoUQ1aoKHkiqANOkatfUfBVoT3s0
wZgU7fHKdZI0OCO3dMCx3VPQdXkoobXeGp+RnV/mTHlZ3mJE/DS7c1NFtzz+TkIt
BYFIFvVE6MjMul1WWIjpTD99pkSlt5c=
-----END CERTIFICATE-----
Generated at Fri Mar 27 00:19:28 2026 by rpki-client