Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367F176/947F74C4056511ECAECFA729D8A014CE/EAD3728A22BB11F1804B79D3DAE4EC9C.roa
File: EAD3728A22BB11F1804B79D3DAE4EC9C.roa (raw, json)
Hash identifier: L/u9CHVxjHqFq2RkIEdwQz5uVOsNvPvTRN90oLFbdBw=
Subject key identifier: 26:A4:2F:F1:57:77:60:D9:F9:7A:18:69:9F:7B:BC:59:50:75:E2:83
Certificate issuer: /CN=F367F176AF/serialNumber=7DD523582E855A9F9A6476040413BE8EC6C0B657
Certificate serial: 06B0
Authority key identifier: 7D:D5:23:58:2E:85:5A:9F:9A:64:76:04:04:13:BE:8E:C6:C0:B6:57
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/fdUjWC6FWp-aZHYEBBO-jsbAtlc.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367F176/947F74C4056511ECAECFA729D8A014CE/EAD3728A22BB11F1804B79D3DAE4EC9C.roa
Signing time: Wed 18 Mar 2026 11:16:32 +0000
ROA not before: Wed 18 Mar 2026 11:16:27 +0000
ROA not after: Tue 18 Mar 2036 11:16:27 +0000
asID: 37054
IP address blocks: 41.188.0.0/18 maxlen: 24
41.207.32.0/19 maxlen: 24
102.16.0.0/14 maxlen: 24
102.20.0.0/15 maxlen: 24
154.126.0.0/17 maxlen: 24
196.192.32.0/20 maxlen: 24
197.149.0.0/18 maxlen: 24
2c0f:fa28::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367F176/947F74C4056511ECAECFA729D8A014CE/fdUjWC6FWp-aZHYEBBO-jsbAtlc.crl
rsync://rpki.afrinic.net/repository/member_repository/F367F176/947F74C4056511ECAECFA729D8A014CE/fdUjWC6FWp-aZHYEBBO-jsbAtlc.mft
rsync://rpki.afrinic.net/repository/afrinic/fdUjWC6FWp-aZHYEBBO-jsbAtlc.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 28 Mar 2026 00:07:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1712 (0x6b0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367F176AF, serialNumber=7DD523582E855A9F9A6476040413BE8EC6C0B657
Validity
Not Before: Mar 18 11:16:27 2026 GMT
Not After : Mar 18 11:16:27 2036 GMT
Subject: CN=69ba8990-ab1b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:77:08:5f:da:8b:3f:b7:1b:60:8c:cd:87:99:
07:34:03:19:95:3a:d4:5b:73:a8:f8:ce:3d:30:60:
a2:73:23:ea:17:38:92:25:38:67:94:f8:c5:b0:35:
fb:66:42:f2:0a:8f:18:85:86:c3:d9:28:05:bd:9f:
49:7a:bb:8e:5c:d1:af:b2:ff:ef:e0:32:f2:0c:5e:
d2:92:02:1d:55:16:8d:18:c5:71:1b:c5:02:50:cd:
81:0d:d7:cc:d0:99:c0:19:36:0e:69:b2:dd:1c:7f:
a1:7c:d1:fe:9f:44:8f:f8:06:91:d9:a3:da:72:6a:
7e:f8:93:7d:52:5f:28:69:5b:69:c7:82:5f:1b:eb:
83:da:96:29:be:47:d8:04:2d:29:40:7c:2a:3a:b7:
46:df:9a:12:2f:2c:01:b3:f5:33:5f:7c:0c:6b:af:
f9:51:18:49:de:ff:57:93:a3:03:ef:00:9f:19:5f:
43:59:77:59:1b:a2:13:1e:d8:8f:71:d8:f6:af:d9:
ef:de:c3:a7:65:ef:fc:81:44:91:eb:d4:1a:a4:eb:
b4:97:00:0d:26:f9:51:b9:8a:ad:93:5c:5c:5f:d7:
11:5f:98:de:19:d0:a1:d1:64:c5:93:0f:e3:7a:50:
17:81:d9:38:ba:2c:7a:72:96:27:51:10:8a:b6:e0:
76:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:A4:2F:F1:57:77:60:D9:F9:7A:18:69:9F:7B:BC:59:50:75:E2:83
X509v3 Authority Key Identifier:
keyid:7D:D5:23:58:2E:85:5A:9F:9A:64:76:04:04:13:BE:8E:C6:C0:B6:57
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367F176/947F74C4056511ECAECFA729D8A014CE/fdUjWC6FWp-aZHYEBBO-jsbAtlc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/fdUjWC6FWp-aZHYEBBO-jsbAtlc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367F176/947F74C4056511ECAECFA729D8A014CE/EAD3728A22BB11F1804B79D3DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.188.0.0/18
41.207.32.0/19
102.16.0.0-102.21.255.255
154.126.0.0/17
196.192.32.0/20
197.149.0.0/18
IPv6:
2c0f:fa28::/32
Signature Algorithm: sha256WithRSAEncryption
70:10:a7:9c:de:2d:a0:aa:c3:7a:a6:3f:71:80:58:91:b9:a7:
9f:cb:16:8c:35:a6:77:1b:51:6a:05:7b:28:2b:93:c2:10:69:
ad:2d:4e:0f:c0:33:05:66:98:30:ed:9e:17:55:eb:73:3f:0a:
1c:d2:78:14:a4:4d:a8:b4:1c:3c:32:9c:79:a8:c0:b1:f6:c1:
72:07:83:5f:d4:9c:db:1b:58:55:b5:e6:47:71:fc:e4:aa:8d:
eb:f7:25:f9:84:5b:bc:06:db:a6:60:04:7b:a7:ec:5a:7f:c2:
3e:33:1a:cd:48:78:46:0e:24:66:17:6f:ac:9b:67:d4:8d:0a:
10:5c:0a:7c:ab:1f:4e:3b:c3:4e:04:a6:63:7d:af:e3:f2:5e:
a9:f5:ec:78:ea:dd:66:72:15:4b:c1:ad:5f:37:8d:f0:c3:df:
26:0f:dd:e1:f4:de:b3:28:f9:de:39:eb:bb:53:40:05:c8:6f:
a2:72:37:c6:b9:86:35:79:8b:cd:69:0f:45:d2:1c:97:84:b4:
67:9b:87:25:da:85:40:6c:d5:bb:b6:1b:3b:39:df:f0:ea:f3:
5f:ee:85:67:28:3d:92:c1:a0:3e:d5:57:19:b3:e8:0d:7c:1f:
c4:86:bc:61:df:a8:55:02:87:97:fb:07:6d:10:96:a9:00:bb:
f0:b7:32:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 13:31:18 2026 by rpki-client