Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F369BAF0/129844362CBB11ECB2D8366ED8A014CE/9A33DCE228CA11F196365C9FDAE4EC9C.roa
File: 9A33DCE228CA11F196365C9FDAE4EC9C.roa (raw, json)
Hash identifier: oH0IVcHq3gD09d0vYVREytolp0W9EMsMMXjiuaCN3pA=
Subject key identifier: 5F:81:1D:96:1D:FD:41:83:13:FB:9F:1A:21:E3:F5:F8:C9:AC:39:F4
Certificate issuer: /CN=F369BAF0AF/serialNumber=27319BFD9C6EC5953E5629599AFFE2D26A9404F2
Certificate serial: 0691
Authority key identifier: 27:31:9B:FD:9C:6E:C5:95:3E:56:29:59:9A:FF:E2:D2:6A:94:04:F2
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JzGb_ZxuxZU-VilZmv_i0mqUBPI.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F369BAF0/129844362CBB11ECB2D8366ED8A014CE/9A33DCE228CA11F196365C9FDAE4EC9C.roa
Signing time: Thu 26 Mar 2026 04:16:46 +0000
ROA not before: Thu 26 Mar 2026 04:16:42 +0000
ROA not after: Wed 26 Mar 2036 04:16:42 +0000
asID: 328068
IP address blocks: 2c0f:f398::/36 maxlen: 36
2c0f:f398:1000::/36 maxlen: 36
2c0f:f398:2000::/36 maxlen: 36
2c0f:f398:3000::/36 maxlen: 36
2c0f:f398:4000::/36 maxlen: 36
2c0f:f398:5000::/36 maxlen: 36
2c0f:f398:6000::/36 maxlen: 36
2c0f:f398:7000::/36 maxlen: 36
2c0f:f398:8000::/36 maxlen: 36
2c0f:f398:9000::/36 maxlen: 36
2c0f:f398:a000::/36 maxlen: 36
2c0f:f398:b000::/36 maxlen: 36
2c0f:f398:c000::/36 maxlen: 36
2c0f:f398:d000::/36 maxlen: 36
2c0f:f398:e000::/36 maxlen: 36
2c0f:f398:f000::/36 maxlen: 36
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F369BAF0/129844362CBB11ECB2D8366ED8A014CE/JzGb_ZxuxZU-VilZmv_i0mqUBPI.crl
rsync://rpki.afrinic.net/repository/member_repository/F369BAF0/129844362CBB11ECB2D8366ED8A014CE/JzGb_ZxuxZU-VilZmv_i0mqUBPI.mft
rsync://rpki.afrinic.net/repository/afrinic/JzGb_ZxuxZU-VilZmv_i0mqUBPI.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 28 Mar 2026 00:07:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1681 (0x691)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F369BAF0AF, serialNumber=27319BFD9C6EC5953E5629599AFFE2D26A9404F2
Validity
Not Before: Mar 26 04:16:42 2026 GMT
Not After : Mar 26 04:16:42 2036 GMT
Subject: CN=69c4b32e-0a64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:07:c9:e5:fd:8e:ad:97:c8:19:b3:6c:91:ed:
c6:db:82:4f:22:41:fb:ff:df:0e:de:0e:7c:3a:8c:
9f:a5:d9:5c:73:6b:b7:80:bf:99:a1:e9:fe:95:9a:
2d:25:dc:06:03:b2:05:c4:53:13:9a:2b:e8:8b:31:
2c:b1:ed:e8:16:5b:52:24:23:9d:f3:ac:c2:e3:53:
2d:ff:25:db:6b:78:dd:91:1e:ad:e6:70:4b:9b:75:
ef:36:bc:b9:72:c6:40:b9:a5:c4:78:c9:64:45:41:
37:15:9f:a0:ab:c7:29:88:99:3d:d8:55:f1:97:70:
41:4b:d0:24:77:0e:13:c8:61:4c:70:9b:c2:06:93:
4a:fc:20:15:0a:69:8f:31:3b:2f:2a:0d:d0:75:c7:
f6:95:2e:bf:5b:36:b5:44:2f:54:7a:fa:3b:f3:1a:
5f:c1:3d:1d:12:55:8f:46:28:f8:32:3f:4c:7a:3f:
3f:bf:ad:71:1f:13:0f:75:84:a1:d8:cf:e1:fc:86:
9b:3c:ce:78:de:41:f0:35:18:f3:92:1b:7f:4e:11:
94:d4:35:ca:7b:c9:14:a3:cf:07:e6:f1:84:cf:e9:
96:9b:de:d6:4a:9c:39:b5:89:0c:60:aa:16:0f:38:
38:5b:ae:39:c8:ba:06:b1:50:a6:b4:76:af:8c:09:
65:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:81:1D:96:1D:FD:41:83:13:FB:9F:1A:21:E3:F5:F8:C9:AC:39:F4
X509v3 Authority Key Identifier:
keyid:27:31:9B:FD:9C:6E:C5:95:3E:56:29:59:9A:FF:E2:D2:6A:94:04:F2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F369BAF0/129844362CBB11ECB2D8366ED8A014CE/JzGb_ZxuxZU-VilZmv_i0mqUBPI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JzGb_ZxuxZU-VilZmv_i0mqUBPI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F369BAF0/129844362CBB11ECB2D8366ED8A014CE/9A33DCE228CA11F196365C9FDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:f398::/32
Signature Algorithm: sha256WithRSAEncryption
18:15:3e:ba:0f:f1:49:dd:9d:97:e0:a8:2c:b7:6d:9a:f5:99:
2a:26:b0:cf:c8:de:36:08:82:56:37:bc:a6:eb:b8:f7:ab:a9:
16:69:75:f5:10:73:08:bb:6f:72:10:51:5e:d8:02:4e:c0:a5:
85:85:3a:6d:8e:38:9d:4e:43:f1:12:b1:80:e3:4a:e8:25:1c:
dc:5b:0f:6e:e3:39:cd:14:23:dc:8c:d9:19:c7:49:a7:d5:72:
c7:23:2c:99:18:9d:de:94:8b:4d:7e:5b:6d:8f:ff:92:43:44:
28:6b:38:aa:aa:c9:e6:8e:3c:e4:12:e9:40:33:ce:4c:6c:b8:
39:ea:6a:d6:a6:81:d3:a5:22:92:35:60:9a:89:4e:bf:ba:8b:
2a:1c:29:ea:23:2b:69:bd:db:b9:ee:2f:24:e7:d8:49:12:8a:
2b:d5:19:94:01:94:c3:0d:75:34:ee:bc:e7:96:70:45:be:77:
a0:34:d5:5a:da:61:0f:cf:c1:aa:0e:f9:94:6e:f6:c3:6f:ff:
f8:ca:c7:56:c4:3b:1c:11:5c:ba:08:5a:1d:15:11:84:db:fe:
1b:af:51:c1:4b:0c:ea:ba:46:02:ef:88:39:1a:65:09:4d:d3:
37:ef:0e:42:55:0f:b0:71:77:cb:98:0e:78:59:ed:e6:29:d3:
a2:2e:7e:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 27 00:08:33 2026 by rpki-client