Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3625A15/92C3CE082ECD11E980230320F8AEA228/3F66AD3622C011F181F9D8ECDAE4EC9C.roa
File: 3F66AD3622C011F181F9D8ECDAE4EC9C.roa (raw, json)
Hash identifier: UYTOMSKRs/qbW+Sv3f+3H//zbO7ZLUVhyMToHB8R05g=
Subject key identifier: E4:40:EC:CE:23:8A:95:8A:71:3A:0D:1F:56:EA:DE:7A:CB:25:84:E4
Certificate issuer: /CN=F3625A15AF/serialNumber=08D2C54E7B51CBC73434DD00605145122F1ACB67
Certificate serial: 0A63
Authority key identifier: 08:D2:C5:4E:7B:51:CB:C7:34:34:DD:00:60:51:45:12:2F:1A:CB:67
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CNLFTntRy8c0NN0AYFFFEi8ay2c.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3625A15/92C3CE082ECD11E980230320F8AEA228/3F66AD3622C011F181F9D8ECDAE4EC9C.roa
Signing time: Wed 18 Mar 2026 11:47:32 +0000
ROA not before: Wed 18 Mar 2026 11:46:56 +0000
ROA not after: Tue 18 Mar 2036 11:46:56 +0000
asID: 328434
IP address blocks: 2c0f:ecd8::/32 maxlen: 48
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3625A15/92C3CE082ECD11E980230320F8AEA228/CNLFTntRy8c0NN0AYFFFEi8ay2c.crl
rsync://rpki.afrinic.net/repository/member_repository/F3625A15/92C3CE082ECD11E980230320F8AEA228/CNLFTntRy8c0NN0AYFFFEi8ay2c.mft
rsync://rpki.afrinic.net/repository/afrinic/CNLFTntRy8c0NN0AYFFFEi8ay2c.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 28 Mar 2026 00:07:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2659 (0xa63)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3625A15AF, serialNumber=08D2C54E7B51CBC73434DD00605145122F1ACB67
Validity
Not Before: Mar 18 11:46:56 2026 GMT
Not After : Mar 18 11:46:56 2036 GMT
Subject: CN=69ba90d4-8275
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:b5:3f:8b:ae:cb:b4:8c:43:1d:52:0c:f0:3a:
5b:55:c6:6c:54:58:90:68:b4:a1:87:34:40:f2:d4:
a3:5f:3d:a1:72:e4:a9:14:aa:57:51:9e:81:36:17:
c2:0b:7b:d7:a5:ec:d4:ae:f8:dd:06:a3:1e:b7:cc:
ab:1d:cd:68:db:48:df:3c:33:50:6d:8a:43:66:d8:
13:d4:62:06:10:d4:a2:e8:d5:fd:9c:7c:22:7b:8e:
dc:09:d3:69:3c:9b:cb:96:8f:4f:a0:d6:b6:7c:07:
36:3b:1d:2d:7c:cb:c9:0c:b8:31:4f:c7:e1:d8:9a:
9b:c0:52:3d:c0:0a:f4:d8:c8:13:81:3f:7e:db:b0:
e5:79:6d:5a:09:7e:5d:0e:e9:a7:7e:29:da:72:cd:
1f:7a:92:b2:05:90:ac:3f:38:e7:29:b4:ad:c7:dc:
5b:c5:c5:05:76:d3:e5:c5:e3:a7:40:11:a5:0f:37:
aa:2a:b8:7c:1f:fc:0c:53:99:eb:03:92:9d:e4:fd:
45:d7:29:17:69:c1:69:7b:0a:4b:0b:91:c4:b7:0e:
b3:0b:bc:d6:7a:79:55:30:9e:73:66:d1:50:cc:c5:
fd:92:6c:c8:ad:0e:cd:ea:75:4c:62:8a:76:48:e2:
fc:41:95:66:e5:4b:34:62:07:52:18:ef:24:28:a5:
84:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:40:EC:CE:23:8A:95:8A:71:3A:0D:1F:56:EA:DE:7A:CB:25:84:E4
X509v3 Authority Key Identifier:
keyid:08:D2:C5:4E:7B:51:CB:C7:34:34:DD:00:60:51:45:12:2F:1A:CB:67
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3625A15/92C3CE082ECD11E980230320F8AEA228/CNLFTntRy8c0NN0AYFFFEi8ay2c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CNLFTntRy8c0NN0AYFFFEi8ay2c.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3625A15/92C3CE082ECD11E980230320F8AEA228/3F66AD3622C011F181F9D8ECDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:ecd8::/32
Signature Algorithm: sha256WithRSAEncryption
8f:22:e2:7e:3d:28:15:f2:0f:84:01:92:9b:08:81:74:cd:28:
73:28:62:1f:38:1d:9c:3c:f4:6b:65:f6:b4:91:1f:8a:8f:81:
09:fc:9c:84:b8:67:0b:ea:ff:a3:be:24:6c:b6:f9:48:b9:fe:
6f:94:2b:d4:ef:b3:d9:03:85:85:d5:2b:bb:30:c3:0c:99:b3:
13:42:99:ea:62:6a:f1:9d:0f:d8:4a:3a:6d:0e:64:87:d5:10:
10:c6:f7:52:1a:e7:56:82:d2:c9:22:76:09:99:d3:1b:56:ef:
2f:de:e3:73:a7:a7:d7:35:26:72:ba:4a:d2:d6:ae:4c:47:30:
ad:c2:2c:67:51:1d:4f:0f:b6:d4:f3:4e:a9:84:ae:f4:a9:e0:
ce:06:2d:a3:b1:53:1c:eb:65:3a:4f:51:fc:70:46:93:20:42:
fe:16:4c:01:9e:08:07:c3:3a:0a:a5:d1:45:79:a4:e5:20:44:
e6:b5:a7:76:7c:7f:6a:3e:dc:f2:79:a7:b4:71:11:9e:35:e8:
b0:fd:bd:c6:08:89:df:64:65:53:ff:ab:c9:6a:bf:26:d4:2b:
34:43:e7:a3:65:a6:51:c2:a1:26:4d:aa:0a:11:4d:1c:f9:12:
da:35:65:f6:41:1c:32:59:8a:e5:e7:a9:b1:2b:a9:db:af:f8:
e2:3c:48:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 10:35:35 2026 by rpki-client