Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F369BAF0/129844362CBB11ECB2D8366ED8A014CE/B3BD4FFA28C911F1BAB1DA99DAE4EC9C.roa
File: B3BD4FFA28C911F1BAB1DA99DAE4EC9C.roa (raw, json)
Hash identifier: 2Lhyg9HENr7nMb6qF0oSS50hWjaCOuUpDm6G/xYCc3c=
Subject key identifier: DA:01:D8:95:79:92:2C:2E:E0:C2:1D:EE:7D:23:A4:AE:83:7E:95:AA
Certificate issuer: /CN=F369BAF0AF/serialNumber=27319BFD9C6EC5953E5629599AFFE2D26A9404F2
Certificate serial: 068F
Authority key identifier: 27:31:9B:FD:9C:6E:C5:95:3E:56:29:59:9A:FF:E2:D2:6A:94:04:F2
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JzGb_ZxuxZU-VilZmv_i0mqUBPI.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F369BAF0/129844362CBB11ECB2D8366ED8A014CE/B3BD4FFA28C911F1BAB1DA99DAE4EC9C.roa
Signing time: Thu 26 Mar 2026 04:10:20 +0000
ROA not before: Thu 26 Mar 2026 04:10:14 +0000
ROA not after: Wed 26 Mar 2036 04:10:14 +0000
asID: 328068
IP address blocks: 2c0f:f398::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F369BAF0/129844362CBB11ECB2D8366ED8A014CE/JzGb_ZxuxZU-VilZmv_i0mqUBPI.crl
rsync://rpki.afrinic.net/repository/member_repository/F369BAF0/129844362CBB11ECB2D8366ED8A014CE/JzGb_ZxuxZU-VilZmv_i0mqUBPI.mft
rsync://rpki.afrinic.net/repository/afrinic/JzGb_ZxuxZU-VilZmv_i0mqUBPI.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 28 Mar 2026 00:07:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1679 (0x68f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F369BAF0AF, serialNumber=27319BFD9C6EC5953E5629599AFFE2D26A9404F2
Validity
Not Before: Mar 26 04:10:14 2026 GMT
Not After : Mar 26 04:10:14 2036 GMT
Subject: CN=69c4b1ac-d72d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:eb:fc:8d:3d:22:e3:d4:60:bf:d3:79:ad:70:
4d:74:a0:16:03:77:1f:ea:6f:03:e3:5d:4d:54:80:
c4:ee:43:b9:ff:6d:ab:59:64:fb:5c:f4:63:06:ee:
a3:1e:2e:1c:0a:32:61:42:0c:26:60:34:a2:ee:dd:
dc:7a:0e:ae:f2:49:6d:db:2c:40:e6:0e:b6:31:bb:
b4:6f:fb:87:16:22:0e:67:66:db:a5:a1:25:e7:76:
5d:c6:01:bf:c3:4c:c4:46:cd:a5:bb:f7:a2:76:d2:
a9:0e:d5:32:45:2d:4b:4a:6b:68:ca:92:d1:e2:50:
8c:f8:4e:41:6a:ce:2a:3c:49:5f:f1:6d:4e:25:ba:
f3:95:b9:7d:d4:d8:d1:8d:79:dd:a7:ff:51:8d:4d:
08:73:14:4b:4e:75:a5:98:16:33:e4:1b:08:8f:38:
55:1f:a6:ef:a2:40:cc:5e:91:df:e9:ba:ff:5f:37:
51:0e:14:3c:83:f6:01:79:cc:fe:69:3c:d5:f3:86:
a1:c6:54:c9:ab:c1:85:8e:98:3d:dc:bb:34:c0:34:
a6:ab:6d:b8:8f:b2:06:72:45:c6:66:2a:ea:75:49:
76:84:7e:d7:60:1b:86:c4:e3:1e:82:e8:c4:ad:a5:
8c:58:ec:ce:aa:15:16:41:30:03:9c:13:b0:c1:8c:
b6:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:01:D8:95:79:92:2C:2E:E0:C2:1D:EE:7D:23:A4:AE:83:7E:95:AA
X509v3 Authority Key Identifier:
keyid:27:31:9B:FD:9C:6E:C5:95:3E:56:29:59:9A:FF:E2:D2:6A:94:04:F2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F369BAF0/129844362CBB11ECB2D8366ED8A014CE/JzGb_ZxuxZU-VilZmv_i0mqUBPI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JzGb_ZxuxZU-VilZmv_i0mqUBPI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F369BAF0/129844362CBB11ECB2D8366ED8A014CE/B3BD4FFA28C911F1BAB1DA99DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:f398::/32
Signature Algorithm: sha256WithRSAEncryption
37:a4:a8:2b:17:f4:cd:13:de:89:15:9a:47:b5:05:ac:28:f1:
9f:75:df:80:c9:f0:e6:d6:90:c3:d6:d1:fe:76:bf:59:87:79:
f4:9b:2c:dd:ed:c1:eb:98:c2:85:15:26:0a:23:f8:93:da:c4:
fb:d0:6c:50:16:84:b2:84:ef:37:e2:24:0e:32:a5:ff:2d:bf:
81:81:1b:38:05:17:42:59:0e:5b:44:5d:da:72:99:01:42:7f:
54:b1:72:ff:f2:7a:d1:0b:dc:c3:82:c2:79:3a:aa:49:62:c1:
fb:87:25:8a:a1:ac:ed:f0:ed:b5:e0:a0:12:7d:1b:60:06:62:
5d:76:60:c3:90:e4:c2:e8:f1:87:34:2e:83:1c:cd:84:3f:51:
18:e2:2b:f1:d8:80:8e:fc:3b:f7:2e:4c:0b:7f:33:a5:78:b0:
e1:b1:8f:fa:bf:3f:e1:63:22:c8:ae:a1:5a:0f:79:7e:23:4a:
e5:06:44:9e:46:2b:b7:db:dc:23:17:0b:04:91:55:4f:1a:8a:
66:60:fb:d4:c3:9f:49:6a:f6:9b:b2:27:e2:a1:2a:c6:3b:26:
99:ad:42:3f:b2:00:72:66:37:e5:15:83:48:cc:57:fe:98:f8:
f3:4d:fd:d7:14:7a:8b:ca:3a:69:22:29:1c:6a:92:75:85:4b:
3e:8c:ff:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 27 00:08:53 2026 by rpki-client