Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3669EE9/A1CAC8E84DFB11F1AFCEE10DCF1D38B0/E127A5D44E1311F19B54FA1DCF1D38B0.roa
File: E127A5D44E1311F19B54FA1DCF1D38B0.roa (raw, json)
Hash identifier: FnXSA8tNVEjw9rutj36EjoV8J23eu9rphYEvvrXqSYg=
Subject key identifier: 5A:3F:6A:2B:54:ED:2E:81:14:BA:C9:0B:8D:E1:55:D0:71:8D:E1:1B
Certificate issuer: /CN=F3669EE9AF/serialNumber=F46171D43E28D8CBB70AD73D2947CD20096210DF
Certificate serial: 04
Authority key identifier: F4:61:71:D4:3E:28:D8:CB:B7:0A:D7:3D:29:47:CD:20:09:62:10:DF
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/9GFx1D4o2Mu3Ctc9KUfNIAliEN8.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3669EE9/A1CAC8E84DFB11F1AFCEE10DCF1D38B0/E127A5D44E1311F19B54FA1DCF1D38B0.roa
Signing time: Tue 12 May 2026 15:04:32 +0000
ROA not before: Tue 12 May 2026 15:04:27 +0000
ROA not after: Fri 12 May 2028 15:04:27 +0000
asID: 33786
IP address blocks: 196.29.224.0/24 maxlen: 24
196.29.225.0/24 maxlen: 24
196.29.226.0/24 maxlen: 24
196.29.227.0/24 maxlen: 24
196.29.228.0/24 maxlen: 24
196.29.229.0/24 maxlen: 24
196.29.230.0/24 maxlen: 24
196.29.231.0/24 maxlen: 24
196.29.232.0/24 maxlen: 24
196.29.233.0/24 maxlen: 24
196.29.234.0/24 maxlen: 24
196.29.235.0/24 maxlen: 24
196.29.236.0/24 maxlen: 24
196.29.237.0/24 maxlen: 24
196.29.238.0/24 maxlen: 24
196.29.239.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3669EE9/A1CAC8E84DFB11F1AFCEE10DCF1D38B0/9GFx1D4o2Mu3Ctc9KUfNIAliEN8.crl
rsync://rpki.afrinic.net/repository/member_repository/F3669EE9/A1CAC8E84DFB11F1AFCEE10DCF1D38B0/9GFx1D4o2Mu3Ctc9KUfNIAliEN8.mft
rsync://rpki.afrinic.net/repository/afrinic/9GFx1D4o2Mu3Ctc9KUfNIAliEN8.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 14 May 2026 15:19:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4 (0x4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3669EE9AF, serialNumber=F46171D43E28D8CBB70AD73D2947CD20096210DF
Validity
Not Before: May 12 15:04:27 2026 GMT
Not After : May 12 15:04:27 2028 GMT
Subject: CN=6a034180-62d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:8c:26:07:4d:5f:51:25:88:ae:52:ff:a5:cc:
4f:de:c4:57:d9:9f:ac:5f:37:40:5b:b1:60:30:8f:
b4:a6:ea:3d:b2:5e:9e:88:8d:38:19:2e:c2:92:e7:
51:8f:9c:aa:3a:0b:81:13:6c:a8:0b:fb:e9:01:1c:
d7:3b:a7:2c:99:2a:a6:a0:6a:80:f6:7f:f2:fa:b6:
fe:00:5c:af:5e:58:64:8b:3c:89:84:1a:1e:bb:e6:
52:06:4e:af:c1:cc:f8:0d:eb:2e:51:50:32:32:39:
a7:ae:5b:9b:58:d1:62:72:08:7b:6b:19:ad:7a:a4:
2e:95:69:1c:5e:e7:44:69:aa:17:bd:e3:d1:7b:3e:
18:bc:0f:75:53:2d:4f:de:26:0b:89:88:77:7d:3f:
d7:07:13:44:ff:f5:2b:22:9b:39:80:3f:e9:ed:0f:
42:77:ca:64:18:a9:4f:0d:96:46:31:70:2c:cc:39:
e1:7c:85:d4:73:1c:f4:b0:27:fd:7f:ff:69:f7:3c:
99:82:73:92:21:09:f7:07:eb:88:79:cd:e2:71:97:
05:18:d5:b6:1c:3f:8b:f9:66:bf:3d:61:68:20:03:
ed:7d:d4:0c:f6:c5:dd:27:79:e8:a8:a1:f3:46:b8:
49:80:82:bf:b1:bb:07:b6:b5:53:c3:1e:5a:4f:f1:
78:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:3F:6A:2B:54:ED:2E:81:14:BA:C9:0B:8D:E1:55:D0:71:8D:E1:1B
X509v3 Authority Key Identifier:
keyid:F4:61:71:D4:3E:28:D8:CB:B7:0A:D7:3D:29:47:CD:20:09:62:10:DF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3669EE9/A1CAC8E84DFB11F1AFCEE10DCF1D38B0/9GFx1D4o2Mu3Ctc9KUfNIAliEN8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/9GFx1D4o2Mu3Ctc9KUfNIAliEN8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3669EE9/A1CAC8E84DFB11F1AFCEE10DCF1D38B0/E127A5D44E1311F19B54FA1DCF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.29.224.0/20
Signature Algorithm: sha256WithRSAEncryption
d4:8b:1b:3b:88:3b:ff:11:c3:1a:61:85:60:82:0a:36:53:99:
76:01:e0:21:2a:c5:a5:17:7c:cf:de:54:ad:f5:83:44:e9:6f:
4b:50:5a:70:55:8b:ef:34:11:ee:ce:f4:3f:a1:3b:10:2f:ed:
cf:b3:fe:62:ad:10:ef:25:dd:20:3e:b4:76:f1:95:2f:30:02:
e7:f0:9c:66:0b:00:62:a1:85:35:c7:ab:25:09:cf:46:bd:b4:
50:30:1b:8d:07:9c:ba:54:e2:a9:c1:27:b2:85:22:09:c4:80:
6b:b9:48:1b:6d:ca:0e:ea:00:87:42:b7:1a:26:96:79:28:27:
ab:e9:98:91:5f:26:5f:3a:4a:30:f0:eb:10:37:24:a0:c8:04:
26:e1:d1:78:27:97:0d:c4:af:1b:f8:1b:ed:62:f5:5f:22:8a:
34:ec:25:aa:f6:8f:a1:d8:f3:59:47:6e:d8:98:d7:ec:ae:a7:
ff:ec:fc:cc:10:2a:40:c4:61:a9:ee:8e:ab:e9:31:6d:36:e0:
2b:1a:3f:6c:2c:e3:8b:40:df:7b:e6:77:73:32:fa:79:d3:9d:
d7:e0:6b:52:99:f2:ce:a9:85:84:2d:6e:96:29:ed:0e:84:5a:
b7:0e:0b:0c:78:a4:7b:fb:fb:de:85:67:e9:e3:60:53:34:6a:
54:1f:31:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 02:50:59 2026 by rpki-client