Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F365C79E/1FC34BE6BEDA11EB8F5CE243F8AEA228/F2AE5BA0270C11F186A655EADAE4EC9C.roa
File: F2AE5BA0270C11F186A655EADAE4EC9C.roa (raw, json)
Hash identifier: 9JorJHXWwq0sbJOBnfh0uYUZoXJy5k1Hxib4ZHL4hlA=
Subject key identifier: 23:8C:6F:7B:49:C9:3C:CC:8D:1D:D0:B3:C7:14:3F:54:8B:42:39:5C
Certificate issuer: /CN=F365C79EAF/serialNumber=DD7499A8C8C12AB67E15EB492808A692ED4B59F4
Certificate serial: 0722
Authority key identifier: DD:74:99:A8:C8:C1:2A:B6:7E:15:EB:49:28:08:A6:92:ED:4B:59:F4
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/3XSZqMjBKrZ-FetJKAimku1LWfQ.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F365C79E/1FC34BE6BEDA11EB8F5CE243F8AEA228/F2AE5BA0270C11F186A655EADAE4EC9C.roa
Signing time: Mon 23 Mar 2026 23:06:39 +0000
ROA not before: Tue 24 Mar 2026 23:06:33 +0000
ROA not after: Wed 31 Mar 2027 23:06:33 +0000
asID: 328732
IP address blocks: 102.209.232.0/22 maxlen: 24
102.216.220.0/22 maxlen: 24
102.221.216.0/22 maxlen: 24
2c0f:e9a8::/32 maxlen: 128
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F365C79E/1FC34BE6BEDA11EB8F5CE243F8AEA228/3XSZqMjBKrZ-FetJKAimku1LWfQ.crl
rsync://rpki.afrinic.net/repository/member_repository/F365C79E/1FC34BE6BEDA11EB8F5CE243F8AEA228/3XSZqMjBKrZ-FetJKAimku1LWfQ.mft
rsync://rpki.afrinic.net/repository/afrinic/3XSZqMjBKrZ-FetJKAimku1LWfQ.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 29 Mar 2026 00:06:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1826 (0x722)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F365C79EAF, serialNumber=DD7499A8C8C12AB67E15EB492808A692ED4B59F4
Validity
Not Before: Mar 24 23:06:33 2026 GMT
Not After : Mar 31 23:06:33 2027 GMT
Subject: CN=69c1c77f-c58c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:c1:b7:38:c8:cb:5f:f6:f2:01:e6:ee:1e:24:
e2:1e:d5:24:24:30:55:c7:95:1d:87:ad:e2:47:ed:
5b:f3:93:89:ca:77:9d:02:19:30:02:d5:10:11:36:
e6:91:6e:16:c0:a2:4b:07:42:c5:0d:85:73:1d:08:
bc:87:bb:34:61:28:b4:da:a2:3d:3c:51:05:6d:d7:
25:8a:3a:62:01:40:eb:41:df:fd:81:65:e4:7e:7b:
b4:6e:91:80:7c:63:80:dd:99:ec:d3:24:0a:5d:c6:
f9:30:65:0f:61:03:60:0d:97:81:2d:d9:33:37:48:
ba:5c:8d:cf:df:2f:f4:93:06:a8:14:df:71:f7:4e:
51:7b:63:48:61:0c:8d:4b:1d:34:41:1f:4d:c6:4f:
6e:54:8a:07:18:48:cc:f2:a3:31:e0:a5:bc:76:c9:
28:d9:c7:d1:3d:1a:dd:fd:10:a6:01:90:5a:1f:cb:
d6:33:71:a9:bb:b4:1d:ba:5c:63:59:f0:4a:c0:49:
42:d4:35:d8:66:83:bf:7a:13:2e:f1:4b:fd:df:2f:
56:57:09:14:38:3b:87:af:5b:05:57:b7:3e:cf:61:
cc:03:f7:c5:7f:fe:62:1c:fd:b0:e3:ba:4c:00:78:
5b:69:ea:f6:fb:4b:3f:b1:32:7d:7a:4a:3d:5a:87:
a3:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:8C:6F:7B:49:C9:3C:CC:8D:1D:D0:B3:C7:14:3F:54:8B:42:39:5C
X509v3 Authority Key Identifier:
keyid:DD:74:99:A8:C8:C1:2A:B6:7E:15:EB:49:28:08:A6:92:ED:4B:59:F4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F365C79E/1FC34BE6BEDA11EB8F5CE243F8AEA228/3XSZqMjBKrZ-FetJKAimku1LWfQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/3XSZqMjBKrZ-FetJKAimku1LWfQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F365C79E/1FC34BE6BEDA11EB8F5CE243F8AEA228/F2AE5BA0270C11F186A655EADAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.209.232.0/22
102.216.220.0/22
102.221.216.0/22
IPv6:
2c0f:e9a8::/32
Signature Algorithm: sha256WithRSAEncryption
3f:8f:10:3f:43:1e:fc:8c:bf:d2:67:b0:29:44:e9:b0:65:75:
3f:80:48:f7:88:60:4e:f9:7b:9e:4c:45:46:57:cb:ed:85:f8:
a1:90:13:e7:1b:92:26:32:fc:7c:cf:20:4f:62:18:25:c9:3c:
7a:5c:ac:cc:21:80:5d:a8:1a:6e:c8:89:28:34:d6:4c:aa:a1:
d0:1c:fe:bb:20:79:8a:33:1b:14:ef:15:29:85:ed:cd:42:df:
a3:43:ea:f9:d8:a2:ed:ec:e2:74:e1:bb:56:ec:5c:02:53:20:
de:35:90:92:bf:51:96:c4:e7:cc:f7:1f:85:1f:9e:0b:8b:8a:
5f:cf:80:28:f5:4c:38:b2:c6:e3:90:a4:d1:ea:23:88:d5:17:
74:22:c0:51:99:f5:fe:e0:7e:f8:44:91:59:18:49:1d:10:68:
c6:a0:b0:d2:b7:71:97:53:b5:1a:14:30:a1:07:d4:0d:79:de:
34:df:be:4d:ac:49:5e:f6:12:d1:c5:6c:57:65:e3:fc:3d:88:
f4:c9:3f:93:4f:38:a3:af:0e:c5:35:4d:2c:d3:bc:fd:b6:ac:
47:c2:72:db:39:46:b2:47:b4:22:58:70:ce:66:e1:6e:c8:2f:
76:3f:95:99:7a:4d:ec:e1:95:19:27:fe:e5:a1:c9:17:25:3b:
7d:b2:2a:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 27 06:01:43 2026 by rpki-client