Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/D032727E244011F18702BCAEDAE4EC9C.roa
File: D032727E244011F18702BCAEDAE4EC9C.roa (raw, json)
Hash identifier: qaDK/nh2MI9iO4E8u4sqyzIk1Cx5eV3KUZQLJlT7Fl4=
Subject key identifier: CF:DF:58:DB:D5:9D:30:36:A9:88:25:06:67:C5:AF:ED:C0:E9:CD:54
Certificate issuer: /CN=F363BA19AF/serialNumber=6AEA24B099C32B22E4E48BB9F26CF578BEF6BFF3
Certificate serial: 10B6
Authority key identifier: 6A:EA:24:B0:99:C3:2B:22:E4:E4:8B:B9:F2:6C:F5:78:BE:F6:BF:F3
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/D032727E244011F18702BCAEDAE4EC9C.roa
Signing time: Fri 20 Mar 2026 09:40:22 +0000
ROA not before: Fri 20 Mar 2026 09:40:15 +0000
ROA not after: Wed 31 Mar 2027 09:40:15 +0000
asID: 6079
IP address blocks: 102.135.8.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.crl
rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.mft
rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 28 Mar 2026 00:07:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4278 (0x10b6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363BA19AF, serialNumber=6AEA24B099C32B22E4E48BB9F26CF578BEF6BFF3
Validity
Not Before: Mar 20 09:40:15 2026 GMT
Not After : Mar 31 09:40:15 2027 GMT
Subject: CN=69bd1606-361a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:3d:42:7c:6b:f5:81:a5:27:9f:5b:e6:57:ca:
85:94:49:40:ed:6c:11:a3:a5:51:7a:4d:c8:01:81:
75:f9:31:04:01:d1:1b:fd:4a:ff:e3:9f:bd:db:f7:
75:2c:43:c8:3a:8f:eb:79:21:cd:fb:9d:64:51:0a:
5f:56:24:26:8b:60:35:3f:8b:25:a4:4f:22:08:eb:
32:bf:1c:01:a9:13:95:f0:36:5f:20:f0:75:48:fe:
da:5b:ff:5d:8d:0b:7e:71:9a:9b:54:48:ee:19:cd:
e7:d0:39:07:eb:95:b0:65:10:50:31:fc:7d:a4:42:
5f:61:3d:51:5a:0a:b6:57:15:95:ff:11:19:7e:8b:
8d:cc:80:df:40:98:c6:09:6b:3c:c5:2c:20:cb:5a:
58:29:3c:12:86:1a:59:fd:17:68:16:af:87:6c:9f:
a2:2f:aa:e4:93:6e:16:34:34:d0:30:90:3f:38:4e:
59:7d:d6:0d:9f:18:8f:c8:ee:33:54:d6:56:7e:b7:
20:c1:35:27:01:bc:57:ac:fb:d5:b3:9e:c5:2b:81:
c6:05:87:66:8a:64:43:ac:a4:81:89:b0:77:df:f0:
da:26:b6:c8:5f:31:fa:61:69:f2:1d:7b:72:f9:d0:
91:ac:64:c7:6c:fc:9b:81:d8:f2:1c:47:1a:c2:49:
0a:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:DF:58:DB:D5:9D:30:36:A9:88:25:06:67:C5:AF:ED:C0:E9:CD:54
X509v3 Authority Key Identifier:
keyid:6A:EA:24:B0:99:C3:2B:22:E4:E4:8B:B9:F2:6C:F5:78:BE:F6:BF:F3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/D032727E244011F18702BCAEDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.135.8.0/24
Signature Algorithm: sha256WithRSAEncryption
36:b7:2f:1e:2c:71:35:f1:ea:62:3b:a5:aa:25:31:df:05:6c:
7b:1e:60:1d:f1:1a:8b:af:e7:1a:2a:66:61:83:74:f2:db:2d:
88:98:06:7d:67:0f:7a:94:b8:4b:0c:c2:41:a5:06:d3:5e:95:
20:a6:72:5e:d3:09:1c:7d:12:cc:49:e9:51:82:3b:1e:6d:d3:
34:e6:c1:ab:eb:92:b0:47:15:5c:b3:34:e4:ab:4f:ca:6c:10:
37:db:e1:c1:d7:cc:64:d9:0d:dd:14:2c:03:87:fd:d7:e8:ce:
12:b6:31:d4:e5:cc:4b:8c:f1:4f:c8:ba:bd:b1:80:e5:cf:48:
76:eb:c9:dc:28:bc:0a:65:da:c0:14:c7:41:a0:37:53:9d:bf:
43:f1:4f:dd:66:f6:8e:8c:02:cd:b5:ab:17:b3:aa:0e:f3:fe:
9f:bc:8c:83:b2:cd:30:7a:e4:6b:cf:d6:cb:53:18:70:9d:94:
16:a4:b3:5a:36:7c:b4:ed:79:01:3a:8b:39:e7:52:30:2e:c0:
65:58:ef:41:88:e4:c5:8f:25:14:33:06:82:13:6a:74:54:e9:
17:4a:cb:16:ea:27:9e:b3:1e:de:a6:cd:91:74:d8:24:b9:33:
87:1a:36:90:b5:c6:22:4a:18:9a:d0:89:7c:66:30:80:af:b6:
f4:38:d8:8b
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICELYwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
M0JBMTlBRjExMC8GA1UEBRMoNkFFQTI0QjA5OUMzMkIyMkU0RTQ4QkI5RjI2Q0Y1
NzhCRUY2QkZGMzAeFw0yNjAzMjAwOTQwMTVaFw0yNzAzMzEwOTQwMTVaMBgxFjAU
BgNVBAMTDTY5YmQxNjA2LTM2MWEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQC+PUJ8a/WBpSefW+ZXyoWUSUDtbBGjpVF6TcgBgXX5MQQB0Rv9Sv/jn73b
93UsQ8g6j+t5Ic37nWRRCl9WJCaLYDU/iyWkTyII6zK/HAGpE5XwNl8g8HVI/tpb
/12NC35xmptUSO4ZzefQOQfrlbBlEFAx/H2kQl9hPVFaCrZXFZX/ERl+i43MgN9A
mMYJazzFLCDLWlgpPBKGGln9F2gWr4dsn6IvquSTbhY0NNAwkD84Tll91g2fGI/I
7jNU1lZ+tyDBNScBvFes+9WznsUrgcYFh2aKZEOspIGJsHff8NomtshfMfphafId
e3L50JGsZMds/JuB2PIcRxrCSQrjAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUz99Y
29WdMDapiCUGZ8Wv7cDpzVQwHwYDVR0jBBgwFoAUauoksJnDKyLk5Iu58mz1eL72
v/MwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjNCQTE5LzBFN0YxREY2OTYyQTExRUM4NjcxRTZFMDVBNDBENTc3L2F1b2tz
Sm5ES3lMazVJdTU4bXoxZUw3MnZfTS5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL2F1b2tzSm5ES3lMazVJdTU4bXoxZUw3MnZfTS5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjNCQTE5LzBFN0YxREY2OTYyQTExRUM4NjcxRTZFMDVB
NDBENTc3L0QwMzI3MjdFMjQ0MDExRjE4NzAyQkNBRURBRTRFQzlDLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABmhwgwDQYJKoZIhvcNAQEL
BQADggEBADa3Lx4scTXx6mI7paolMd8FbHseYB3xGouv5xoqZmGDdPLbLYiYBn1n
D3qUuEsMwkGlBtNelSCmcl7TCRx9EsxJ6VGCOx5t0zTmwavrkrBHFVyzNOSrT8ps
EDfb4cHXzGTZDd0ULAOH/dfozhK2MdTlzEuM8U/Iur2xgOXPSHbrydwovApl2sAU
x0GgN1Odv0PxT91m9o6MAs21qxezqg7z/p+8jIOyzTB65GvP1stTGHCdlBaks1o2
fLTteQE6iznnUjAuwGVY70GI5MWPJRQzBoITanRU6RdKyxbqJ56zHt6mzZF02CS5
M4caNpC1xiJKGJrQiXxmMICvtvQ42Is=
-----END CERTIFICATE-----
Generated at Thu Mar 26 09:33:46 2026 by rpki-client