Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3650567/33E3302674BA11EEAA94C1734AD9E6FC/AE083B9A221D11F1B6A7C7B1DAE4EC9C.roa
File: AE083B9A221D11F1B6A7C7B1DAE4EC9C.roa (raw, json)
Hash identifier: BZz928+JG9DymUs/tfXn2o5xj9tzz1PFhKTIyjMNWuU=
Subject key identifier: DD:15:5E:47:0B:7A:C0:9D:4D:C2:52:31:8D:4B:9F:50:05:B5:01:B4
Certificate issuer: /CN=F3650567AF/serialNumber=5FC37DECEB7008BBA741347845B76B47677AEA69
Certificate serial: 0391
Authority key identifier: 5F:C3:7D:EC:EB:70:08:BB:A7:41:34:78:45:B7:6B:47:67:7A:EA:69
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/X8N97OtwCLunQTR4RbdrR2d66mk.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3650567/33E3302674BA11EEAA94C1734AD9E6FC/AE083B9A221D11F1B6A7C7B1DAE4EC9C.roa
Signing time: Tue 17 Mar 2026 16:23:50 +0000
ROA not before: Tue 17 Mar 2026 16:23:45 +0000
ROA not after: Fri 17 Mar 2028 16:23:45 +0000
asID: 37073
IP address blocks: 41.216.144.0/20 maxlen: 20
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3650567/33E3302674BA11EEAA94C1734AD9E6FC/X8N97OtwCLunQTR4RbdrR2d66mk.crl
rsync://rpki.afrinic.net/repository/member_repository/F3650567/33E3302674BA11EEAA94C1734AD9E6FC/X8N97OtwCLunQTR4RbdrR2d66mk.mft
rsync://rpki.afrinic.net/repository/afrinic/X8N97OtwCLunQTR4RbdrR2d66mk.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 28 Mar 2026 00:07:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 913 (0x391)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3650567AF, serialNumber=5FC37DECEB7008BBA741347845B76B47677AEA69
Validity
Not Before: Mar 17 16:23:45 2026 GMT
Not After : Mar 17 16:23:45 2028 GMT
Subject: CN=69b98016-5a7c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:09:6c:a0:d0:9e:5d:86:0a:b3:9f:25:8b:01:
34:32:44:57:75:75:3d:d1:a2:cf:7a:3a:51:fe:d0:
ed:39:97:50:0d:e3:12:37:7a:ae:a4:0c:65:48:41:
22:9e:ac:69:f5:68:88:3e:12:a7:74:3c:d0:e5:fc:
aa:d1:c8:55:13:63:57:3e:e6:01:df:be:c8:94:1e:
3c:9d:d6:a9:c6:1d:63:66:40:92:1d:83:05:d0:9e:
b5:47:48:b4:0b:5a:59:c5:c0:69:cb:83:db:c0:96:
8b:dd:04:c0:63:90:a3:e9:2a:af:c0:c6:17:1a:33:
37:cb:28:44:c2:6d:07:75:36:ba:5a:5d:5a:31:89:
58:20:9d:9c:b3:d9:68:54:c4:09:8f:6f:70:67:4f:
dd:65:24:fd:83:85:a2:ad:72:46:42:1d:a1:38:bb:
f2:61:c0:ca:bd:e2:5d:6e:74:68:89:85:8b:eb:b3:
eb:11:d3:0f:7a:86:2f:08:35:13:07:16:a4:6d:5d:
06:60:07:f9:87:6a:27:5b:91:94:f6:e0:ab:6a:87:
99:2f:0c:61:c5:a7:a3:97:7e:5c:fa:bd:58:31:45:
f7:00:4f:7c:c4:d9:4b:76:7c:87:0d:6d:fc:2d:ff:
21:29:78:d0:1c:32:88:e2:e0:74:ff:d6:3f:c6:55:
cd:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:15:5E:47:0B:7A:C0:9D:4D:C2:52:31:8D:4B:9F:50:05:B5:01:B4
X509v3 Authority Key Identifier:
keyid:5F:C3:7D:EC:EB:70:08:BB:A7:41:34:78:45:B7:6B:47:67:7A:EA:69
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3650567/33E3302674BA11EEAA94C1734AD9E6FC/X8N97OtwCLunQTR4RbdrR2d66mk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/X8N97OtwCLunQTR4RbdrR2d66mk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3650567/33E3302674BA11EEAA94C1734AD9E6FC/AE083B9A221D11F1B6A7C7B1DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.216.144.0/20
Signature Algorithm: sha256WithRSAEncryption
93:c1:0a:9f:fa:16:cc:3e:31:a7:6a:28:a1:4f:c1:2e:a7:41:
03:1b:30:2b:2b:08:b8:da:b2:b8:0f:22:65:5c:a8:f0:0d:9f:
0e:26:85:b9:96:c3:7b:2a:4b:a3:10:02:19:58:35:6f:cc:6b:
f6:a3:18:fb:0f:a4:89:54:24:d0:09:1c:07:71:87:69:c6:73:
5d:37:59:44:e3:34:7b:0d:ee:98:f7:af:f2:e7:7a:db:f6:99:
f5:06:bf:3d:4d:db:0d:c6:aa:39:73:06:12:15:2c:5d:2b:04:
a1:d8:cf:b5:03:63:64:09:4d:00:26:0b:7a:77:d5:8b:73:47:
aa:8e:9b:16:18:33:6a:eb:8d:55:96:b4:ab:84:53:0b:9d:76:
14:24:84:ac:12:57:fe:f1:04:22:eb:ce:3d:4d:2b:33:82:e0:
85:1a:9e:ff:ff:64:1c:18:e8:46:8a:f3:2f:27:d9:be:1e:47:
11:5c:f9:d4:17:0d:e6:bd:8b:3b:76:53:b5:75:46:df:b1:96:
a4:99:96:47:a3:3f:ff:8f:3c:c6:84:f3:01:89:90:91:b5:11:
b4:aa:ad:71:0e:ee:aa:5c:33:07:82:bd:7a:19:fb:55:bc:a6:
1f:b0:ca:c9:f3:92:8c:66:5f:5d:71:f3:4f:84:1b:4d:ab:a4:
67:97:68:57
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICA5EwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
NTA1NjdBRjExMC8GA1UEBRMoNUZDMzdERUNFQjcwMDhCQkE3NDEzNDc4NDVCNzZC
NDc2NzdBRUE2OTAeFw0yNjAzMTcxNjIzNDVaFw0yODAzMTcxNjIzNDVaMBgxFjAU
BgNVBAMTDTY5Yjk4MDE2LTVhN2MwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQC4CWyg0J5dhgqznyWLATQyRFd1dT3Ros96OlH+0O05l1AN4xI3eq6kDGVI
QSKerGn1aIg+Eqd0PNDl/KrRyFUTY1c+5gHfvsiUHjyd1qnGHWNmQJIdgwXQnrVH
SLQLWlnFwGnLg9vAlovdBMBjkKPpKq/AxhcaMzfLKETCbQd1NrpaXVoxiVggnZyz
2WhUxAmPb3BnT91lJP2DhaKtckZCHaE4u/JhwMq94l1udGiJhYvrs+sR0w96hi8I
NRMHFqRtXQZgB/mHaidbkZT24Ktqh5kvDGHFp6OXflz6vVgxRfcAT3zE2Ut2fIcN
bfwt/yEpeNAcMoji4HT/1j/GVc0ZAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQU3RVe
Rwt6wJ1NwlIxjUufUAW1AbQwHwYDVR0jBBgwFoAUX8N97OtwCLunQTR4RbdrR2d6
6mkwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjUwNTY3LzMzRTMzMDI2NzRCQTExRUVBQTk0QzE3MzRBRDlFNkZDL1g4Tjk3
T3R3Q0x1blFUUjRSYmRyUjJkNjZtay5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL1g4Tjk3T3R3Q0x1blFUUjRSYmRyUjJkNjZtay5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjUwNTY3LzMzRTMzMDI2NzRCQTExRUVBQTk0QzE3MzRB
RDlFNkZDL0FFMDgzQjlBMjIxRDExRjFCNkE3QzdCMURBRTRFQzlDLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAQp2JAwDQYJKoZIhvcNAQEL
BQADggEBAJPBCp/6Fsw+MadqKKFPwS6nQQMbMCsrCLjasrgPImVcqPANnw4mhbmW
w3sqS6MQAhlYNW/Ma/ajGPsPpIlUJNAJHAdxh2nGc103WUTjNHsN7pj3r/Lnetv2
mfUGvz1N2w3GqjlzBhIVLF0rBKHYz7UDY2QJTQAmC3p31YtzR6qOmxYYM2rrjVWW
tKuEUwuddhQkhKwSV/7xBCLrzj1NKzOC4IUanv//ZBwY6EaK8y8n2b4eRxFc+dQX
Dea9izt2U7V1Rt+xlqSZlkejP/+PPMaE8wGJkJG1EbSqrXEO7qpcMweCvXoZ+1W8
ph+wysnzkoxmX11x80+EG02rpGeXaFc=
-----END CERTIFICATE-----
Generated at Thu Mar 26 10:41:35 2026 by rpki-client