This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3625D7B/3CE88D08BDA911F08CA0897ADAE4EC9C/676690CCBDAC11F0831D1C90DAE4EC9C.roa File: 676690CCBDAC11F0831D1C90DAE4EC9C.roa (raw, json) Hash identifier: XdWDKXcmXYcv422+a15/XwULu5rKZP/wlv0cct+XoGM= Subject key identifier: 18:5A:69:3C:12:36:1C:54:C6:50:81:CD:AF:53:A1:20:1F:EA:2A:E3 Certificate issuer: /CN=F3625D7BAF/serialNumber=E2FE56AFE66AB0DF3E395EDDB41893E00DF6AEF7 Certificate serial: 02 Authority key identifier: E2:FE:56:AF:E6:6A:B0:DF:3E:39:5E:DD:B4:18:93:E0:0D:F6:AE:F7 Authority info access: rsync://rpki.afrinic.net/repository/afrinic/4v5Wr-ZqsN8-OV7dtBiT4A32rvc.cer Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3625D7B/3CE88D08BDA911F08CA0897ADAE4EC9C/676690CCBDAC11F0831D1C90DAE4EC9C.roa Signing time: Sun 09 Nov 2025 20:41:02 +0000 ROA not before: Sun 09 Nov 2025 20:40:57 +0000 ROA not after: Mon 31 Dec 2035 20:40:57 +0000 asID: 24835 IP address blocks: 196.204.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3625D7B/3CE88D08BDA911F08CA0897ADAE4EC9C/4v5Wr-ZqsN8-OV7dtBiT4A32rvc.crl rsync://rpki.afrinic.net/repository/member_repository/F3625D7B/3CE88D08BDA911F08CA0897ADAE4EC9C/4v5Wr-ZqsN8-OV7dtBiT4A32rvc.mft rsync://rpki.afrinic.net/repository/afrinic/4v5Wr-ZqsN8-OV7dtBiT4A32rvc.cer rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft rsync://rpki.afrinic.net/repository/AfriNIC.cer Signature path expires: Wed 10 Dec 2025 00:06:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F3625D7BAF, serialNumber=E2FE56AFE66AB0DF3E395EDDB41893E00DF6AEF7 Validity Not Before: Nov 9 20:40:57 2025 GMT Not After : Dec 31 20:40:57 2035 GMT Subject: CN=6910fc5e-cb06 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:61:24:17:12:22:b8:7c:d1:76:c8:2d:e5:1d: 6e:c7:63:d3:50:92:65:4f:c7:d8:bc:5b:cc:6e:07: 47:fc:75:48:5d:ff:08:ad:fc:90:fb:31:0d:45:17: 53:1f:8c:16:84:ee:19:9d:f3:24:0c:e5:56:00:47: 16:f8:55:69:64:44:e7:4c:dd:9c:42:b0:fc:71:90: f7:d8:17:56:1d:6d:85:02:32:8d:e2:d7:b9:fa:7f: a8:b0:27:75:4b:53:6c:d7:89:30:03:3a:24:49:32: ca:4d:e8:d6:1e:3e:ea:0b:c9:14:4b:96:df:7d:06: 42:32:fa:ad:5b:4a:ee:5b:79:3a:fe:41:d1:4d:91: 5b:c3:50:f0:03:51:fb:73:9a:8f:ae:ac:4d:c3:15: bf:62:d6:84:f4:78:2a:de:eb:40:65:e5:82:d9:2e: f5:5c:55:db:ca:34:cb:b3:ae:1c:3a:d0:e0:90:3f: 98:35:7f:15:9d:b3:2d:63:ac:66:bd:08:86:a0:c4: dc:09:43:b0:1f:09:63:78:27:22:c5:ae:b9:dc:ec: 16:89:16:4d:6a:cf:d3:e0:f0:7d:0f:1e:7e:22:88: 75:70:38:d3:1e:ac:7e:f0:9c:be:9d:6d:c3:b1:1c: 9a:b3:07:48:13:59:99:56:c2:28:16:40:93:30:e1: 6a:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:5A:69:3C:12:36:1C:54:C6:50:81:CD:AF:53:A1:20:1F:EA:2A:E3 X509v3 Authority Key Identifier: keyid:E2:FE:56:AF:E6:6A:B0:DF:3E:39:5E:DD:B4:18:93:E0:0D:F6:AE:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.afrinic.net/repository/member_repository/F3625D7B/3CE88D08BDA911F08CA0897ADAE4EC9C/4v5Wr-ZqsN8-OV7dtBiT4A32rvc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/4v5Wr-ZqsN8-OV7dtBiT4A32rvc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://rpki.afrinic.net/policy/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3625D7B/3CE88D08BDA911F08CA0897ADAE4EC9C/676690CCBDAC11F0831D1C90DAE4EC9C.roa RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 196.204.0.0/16 Signature Algorithm: sha256WithRSAEncryption 0e:ec:59:28:a4:04:38:af:2c:f7:e9:ec:2b:d5:aa:37:15:c6: 3f:3a:fd:b1:a0:74:85:33:9c:32:2a:f6:de:b5:cc:27:66:86: b0:9f:80:17:58:8b:31:cd:cd:ae:cd:56:54:a4:36:77:83:ac: 5b:95:07:a6:bd:40:7c:d0:8b:ca:c6:02:64:1e:f0:60:81:45: 0d:e4:b4:3b:81:3f:0e:85:15:01:83:1a:fe:db:19:24:ab:50: a0:13:f7:f0:3a:7f:26:fe:b7:12:9c:b4:57:fd:6d:b5:1a:ed: 30:15:d5:ed:19:6d:c4:08:c7:40:b8:d0:e9:ca:83:fe:2f:2d: d7:c4:6c:50:95:62:69:77:c2:61:87:0a:23:71:1f:08:22:3d: d3:64:91:ca:81:eb:06:c1:20:20:2f:42:35:07:97:9a:f1:97: bd:c6:05:00:e2:a5:79:f6:2c:d5:9d:e1:b4:b0:78:bc:75:57: be:fe:22:39:91:0f:b4:75:15:4e:aa:1e:77:b9:82:71:42:5b: 30:d1:db:7d:8b:86:da:61:11:a1:f1:45:a1:ff:8a:42:b9:d8: 06:75:91:a4:91:f3:7b:4c:ce:1b:72:01:2d:80:9f:77:66:70: 0d:48:69:a5:5c:bc:90:00:64:f6:9f:a4:c3:81:fe:d8:da:bc: b9:46:1e:46 -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBAjANBgkqhkiG9w0BAQsFADBIMRMwEQYDVQQDEwpGMzYy NUQ3QkFGMTEwLwYDVQQFEyhFMkZFNTZBRkU2NkFCMERGM0UzOTVFRERCNDE4OTNF MDBERjZBRUY3MB4XDTI1MTEwOTIwNDA1N1oXDTM1MTIzMTIwNDA1N1owGDEWMBQG A1UEAxMNNjkxMGZjNWUtY2IwNjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALRhJBcSIrh80XbILeUdbsdj01CSZU/H2LxbzG4HR/x1SF3/CK38kPsxDUUX Ux+MFoTuGZ3zJAzlVgBHFvhVaWRE50zdnEKw/HGQ99gXVh1thQIyjeLXufp/qLAn dUtTbNeJMAM6JEkyyk3o1h4+6gvJFEuW330GQjL6rVtK7lt5Ov5B0U2RW8NQ8ANR +3Oaj66sTcMVv2LWhPR4Kt7rQGXlgtku9VxV28o0y7OuHDrQ4JA/mDV/FZ2zLWOs Zr0IhqDE3AlDsB8JY3gnIsWuudzsFokWTWrP0+DwfQ8efiKIdXA40x6sfvCcvp1t w7EcmrMHSBNZmVbCKBZAkzDhai0CAwEAAaOCAqQwggKgMB0GA1UdDgQWBBQYWmk8 EjYcVMZQgc2vU6EgH+oq4zAfBgNVHSMEGDAWgBTi/lav5mqw3z45Xt20GJPgDfau 9zAOBgNVHQ8BAf8EBAMCB4AwgZUGA1UdHwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6 Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv RjM2MjVEN0IvM0NFODhEMDhCREE5MTFGMDhDQTA4OTdBREFFNEVDOUMvNHY1V3It WnFzTjgtT1Y3ZHRCaVQ0QTMycnZjLmNybDBnBggrBgEFBQcBAQRbMFkwVwYIKwYB BQUHMAKGS3JzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L2Fmcmlu aWMvNHY1V3ItWnFzTjgtT1Y3ZHRCaVQ0QTMycnZjLmNlcjBPBgNVHSABAf8ERTBD MEEGCCsGAQUFBw4CMDUwMwYIKwYBBQUHAgEWJ2h0dHBzOi8vcnBraS5hZnJpbmlj Lm5ldC9wb2xpY3kvQ1BTLnBkZjCB2wYIKwYBBQUHAQsEgc4wgcswgZEGCCsGAQUF BzALhoGEcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVy X3JlcG9zaXRvcnkvRjM2MjVEN0IvM0NFODhEMDhCREE5MTFGMDhDQTA4OTdBREFF NEVDOUMvNjc2NjkwQ0NCREFDMTFGMDgzMUQxQzkwREFFNEVDOUMucm9hMDUGCCsG AQUFBzANhilodHRwczovL3JyZHAuYWZyaW5pYy5uZXQvbm90aWZpY2F0aW9uLnht bDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDAMTMMA0GCSqGSIb3DQEBCwUA A4IBAQAO7FkopAQ4ryz36ewr1ao3FcY/Ov2xoHSFM5wyKvbetcwnZoawn4AXWIsx zc2uzVZUpDZ3g6xblQemvUB80IvKxgJkHvBggUUN5LQ7gT8OhRUBgxr+2xkkq1Cg E/fwOn8m/rcSnLRX/W21Gu0wFdXtGW3ECMdAuNDpyoP+Ly3XxGxQlWJpd8Jhhwoj cR8IIj3TZJHKgesGwSAgL0I1B5ea8Ze9xgUA4qV59izVneG0sHi8dVe+/iI5kQ+0 dRVOqh53uYJxQlsw0dt9i4baYRGh8UWh/4pCudgGdZGkkfN7TM4bcgEtgJ93ZnAN SGmlXLyQAGT2n6TDgf7Y2ry5Rh5G -----END CERTIFICATE-----Generated at Mon Dec 8 18:04:44 2025 by rpki-client