Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F361C3A1/47DF6D66E0D011E8A546211CF8AEA228/672BF774187D11F1AA17F08EDAE4EC9C.roa
File: 672BF774187D11F1AA17F08EDAE4EC9C.roa (raw, json)
Hash identifier: 6jF1YxAnbb2FfRaYjhnIgikan05PqQq9CZOBEQf8wgQ=
Subject key identifier: D8:C0:2B:53:F1:B1:3B:F7:42:25:77:EE:68:FC:29:5D:97:6D:4D:91
Certificate issuer: /CN=F361C3A1RI/serialNumber=ECBACB719ABA5D32BD990EF3685B5AA36B08CA04
Certificate serial: 0ABE
Authority key identifier: EC:BA:CB:71:9A:BA:5D:32:BD:99:0E:F3:68:5B:5A:A3:6B:08:CA:04
Authority info access: rsync://rpki.afrinic.net/repository/ripe/7LrLcZq6XTK9mQ7zaFtao2sIygQ.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F361C3A1/47DF6D66E0D011E8A546211CF8AEA228/672BF774187D11F1AA17F08EDAE4EC9C.roa
Signing time: Thu 05 Mar 2026 10:23:51 +0000
ROA not before: Thu 05 Mar 2026 10:23:47 +0000
ROA not after: Wed 05 Mar 2036 10:23:47 +0000
asID: 36915
IP address blocks: 194.9.82.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F361C3A1/47DF6D66E0D011E8A546211CF8AEA228/7LrLcZq6XTK9mQ7zaFtao2sIygQ.crl
rsync://rpki.afrinic.net/repository/member_repository/F361C3A1/47DF6D66E0D011E8A546211CF8AEA228/7LrLcZq6XTK9mQ7zaFtao2sIygQ.mft
rsync://rpki.afrinic.net/repository/ripe/7LrLcZq6XTK9mQ7zaFtao2sIygQ.cer
rsync://rpki.afrinic.net/repository/ripe/f3rBgIl5g-Kek3wKGHgDwHJ1VUU.crl
rsync://rpki.afrinic.net/repository/ripe/f3rBgIl5g-Kek3wKGHgDwHJ1VUU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/ripe-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 28 Mar 2026 00:45:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2750 (0xabe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F361C3A1RI, serialNumber=ECBACB719ABA5D32BD990EF3685B5AA36B08CA04
Validity
Not Before: Mar 5 10:23:47 2026 GMT
Not After : Mar 5 10:23:47 2036 GMT
Subject: CN=69a959b6-43e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:48:c1:9b:27:46:7a:62:0e:c4:09:87:5a:d4:
9b:9c:ae:91:d6:40:f6:ae:3d:85:ab:2d:89:84:11:
35:33:33:f7:07:07:2f:c5:05:de:9a:0b:2c:ce:db:
cc:76:ed:ed:81:56:11:08:9c:7d:1d:b1:db:a8:0f:
f9:71:75:99:67:ca:92:78:0a:04:db:96:4d:49:21:
7c:8c:62:10:79:8d:08:20:6c:64:14:fb:77:5d:9a:
66:ba:dd:0e:06:13:ed:0d:e6:e8:9f:d6:74:0c:cc:
13:a7:23:2a:61:55:72:b0:63:98:10:02:85:45:4f:
5f:67:30:d4:5d:fb:3f:5a:fd:96:6e:ce:21:b6:8e:
27:a0:c7:48:52:93:49:92:ef:dd:c4:4a:a0:e4:9b:
95:69:ac:82:2d:e2:96:48:c5:65:59:10:1c:28:a7:
fd:f5:3a:5a:05:c3:bc:e9:87:1b:1d:89:4d:bb:10:
c1:18:f5:5d:0d:42:8c:87:89:f9:98:bf:58:95:61:
f6:93:4e:cc:b8:ea:57:68:df:d7:9c:75:80:1a:b6:
7a:33:e3:26:e6:2d:ca:6a:4b:62:13:e7:62:15:60:
4e:1e:8d:b2:a5:3c:aa:6d:81:d8:c5:81:d6:2a:c5:
24:38:57:38:2d:6d:30:10:bd:2c:00:d2:98:ff:e4:
5c:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:C0:2B:53:F1:B1:3B:F7:42:25:77:EE:68:FC:29:5D:97:6D:4D:91
X509v3 Authority Key Identifier:
keyid:EC:BA:CB:71:9A:BA:5D:32:BD:99:0E:F3:68:5B:5A:A3:6B:08:CA:04
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F361C3A1/47DF6D66E0D011E8A546211CF8AEA228/7LrLcZq6XTK9mQ7zaFtao2sIygQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/ripe/7LrLcZq6XTK9mQ7zaFtao2sIygQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F361C3A1/47DF6D66E0D011E8A546211CF8AEA228/672BF774187D11F1AA17F08EDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
194.9.82.0/23
Signature Algorithm: sha256WithRSAEncryption
1c:94:a8:ee:39:7d:9d:27:bd:d3:ad:39:b2:97:4b:74:7a:c4:
92:c0:ab:d0:1b:59:83:13:50:22:36:b1:17:3b:b7:4e:5e:4b:
49:55:1d:40:eb:da:b7:2b:ef:dd:7a:71:c8:59:04:9e:04:bf:
cc:3b:2a:73:0a:3a:87:96:2b:cf:8f:e8:75:1b:4d:a9:56:f3:
0c:b9:9a:9e:05:71:c4:44:09:dd:7f:14:a9:28:f8:62:df:da:
a6:b5:73:c8:89:cd:44:a1:35:c7:93:c1:64:b0:35:b6:f9:af:
01:76:72:59:13:63:96:35:05:30:e8:fa:dd:21:d9:35:c3:d3:
42:aa:5f:5d:96:5d:8d:1b:64:96:d8:47:16:d1:35:79:42:4d:
89:1f:a8:0b:c5:df:7a:7a:66:ed:a2:1a:b9:60:49:b6:8e:ee:
af:ab:50:fa:36:c7:f0:36:ee:72:ad:66:f7:ef:70:4c:a5:83:
f9:25:ef:30:a3:41:e9:90:b9:b3:df:6f:a8:4d:71:17:f8:6b:
e6:83:1a:65:31:87:2f:7e:ac:86:36:46:87:d3:f8:86:ed:fe:
d5:4d:42:72:8e:d2:6d:57:3c:16:1a:64:66:41:4f:2a:7f:64:
fb:61:9b:5b:e0:bc:50:b0:f0:8c:38:52:ef:44:ae:4d:50:1a:
b4:42:70:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 21:53:26 2026 by rpki-client