Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F369C49A/6FB80BE2015C11EFB3D61AFB007001B1/24C76BB01CB611F180AD77A3DAE4EC9C.roa
File: 24C76BB01CB611F180AD77A3DAE4EC9C.roa (raw, json)
Hash identifier: WQDzjdynXr1/DFrDYosPyJCdGsQEmA9RMtr5aVeseUA=
Subject key identifier: 86:68:5F:3E:93:5C:88:21:15:CF:C7:80:F6:83:9B:86:AF:20:16:84
Certificate issuer: /CN=F369C49AAF/serialNumber=2ACFC68188405AC544505291C58E47F85E2B327D
Certificate serial: 02C2
Authority key identifier: 2A:CF:C6:81:88:40:5A:C5:44:50:52:91:C5:8E:47:F8:5E:2B:32:7D
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/Ks_GgYhAWsVEUFKRxY5H-F4rMn0.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F369C49A/6FB80BE2015C11EFB3D61AFB007001B1/24C76BB01CB611F180AD77A3DAE4EC9C.roa
Signing time: Tue 10 Mar 2026 19:20:06 +0000
ROA not before: Tue 10 Mar 2026 19:20:00 +0000
ROA not after: Mon 31 Mar 2036 19:20:00 +0000
asID: 328628
IP address blocks: 2c0f:4620::/32 maxlen: 48
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F369C49A/6FB80BE2015C11EFB3D61AFB007001B1/Ks_GgYhAWsVEUFKRxY5H-F4rMn0.crl
rsync://rpki.afrinic.net/repository/member_repository/F369C49A/6FB80BE2015C11EFB3D61AFB007001B1/Ks_GgYhAWsVEUFKRxY5H-F4rMn0.mft
rsync://rpki.afrinic.net/repository/afrinic/Ks_GgYhAWsVEUFKRxY5H-F4rMn0.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 28 Mar 2026 00:07:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 706 (0x2c2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F369C49AAF, serialNumber=2ACFC68188405AC544505291C58E47F85E2B327D
Validity
Not Before: Mar 10 19:20:00 2026 GMT
Not After : Mar 31 19:20:00 2036 GMT
Subject: CN=69b06ee5-070e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:87:1f:d2:89:4a:a8:1d:83:09:ad:55:45:ef:
cf:b0:00:dd:75:c5:81:7b:ae:1a:8e:dd:e3:d1:e5:
3c:f5:87:9d:4a:5a:73:3f:30:9d:30:22:fc:c3:76:
9d:5a:ca:7c:ac:78:8a:18:89:54:f5:09:eb:6a:6d:
30:a1:36:72:0b:4d:00:92:e4:d2:60:26:57:40:93:
1d:20:7c:75:bb:1c:e9:50:d5:e4:9b:69:25:42:a3:
cc:5e:39:7a:f7:3f:c9:81:f5:32:7e:05:77:46:f2:
3e:8b:69:11:95:4b:36:bb:e9:0b:a7:81:6c:a6:6e:
7a:e1:03:73:37:9d:7b:2b:49:76:c1:cc:3a:74:c4:
8d:ed:b1:36:b5:26:60:8e:2a:dc:31:ae:2e:7f:35:
c3:ea:28:43:09:ed:6d:21:37:75:26:78:a2:bb:e1:
2d:a0:0d:04:9a:41:18:64:5e:a2:59:7a:ba:ee:8c:
b2:89:a2:65:03:c1:12:91:6c:dc:ed:3a:a7:64:df:
e2:e5:27:ee:1b:ec:99:f6:2a:c5:5b:d8:16:06:16:
31:d9:58:92:68:4e:8c:0f:c1:4a:7f:bc:74:bd:46:
c2:95:78:9c:fe:d8:ab:f1:11:07:b8:bf:f4:f7:ab:
81:63:eb:13:ab:8b:2f:43:7f:ed:c9:b5:6a:b1:b8:
75:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:68:5F:3E:93:5C:88:21:15:CF:C7:80:F6:83:9B:86:AF:20:16:84
X509v3 Authority Key Identifier:
keyid:2A:CF:C6:81:88:40:5A:C5:44:50:52:91:C5:8E:47:F8:5E:2B:32:7D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F369C49A/6FB80BE2015C11EFB3D61AFB007001B1/Ks_GgYhAWsVEUFKRxY5H-F4rMn0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/Ks_GgYhAWsVEUFKRxY5H-F4rMn0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F369C49A/6FB80BE2015C11EFB3D61AFB007001B1/24C76BB01CB611F180AD77A3DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:4620::/32
Signature Algorithm: sha256WithRSAEncryption
8a:f6:ed:48:35:a4:23:47:5d:68:cd:82:c9:52:dd:a4:8c:cb:
08:3c:46:26:99:48:0f:bf:86:2a:de:e6:ef:e2:73:21:22:56:
eb:7e:b8:8c:3b:52:eb:2b:6a:a7:dc:41:7a:51:a3:77:65:09:
95:29:a0:20:be:f9:21:07:b4:96:c1:36:fe:34:b6:96:89:57:
4d:b7:4a:7e:d6:0c:92:55:6c:66:cb:3b:6e:ba:b5:7e:b4:38:
71:f8:19:7b:0a:12:3c:31:03:bf:f1:d3:5a:15:f5:13:c5:96:
48:8b:f7:2b:d6:aa:c9:94:d2:c5:4a:d2:33:d8:28:1b:3e:74:
9e:7c:98:42:39:b2:78:57:60:7e:6a:54:7b:ed:17:85:81:57:
c2:74:17:77:c1:99:bd:c8:d4:a7:91:c9:f7:92:80:ab:f0:84:
88:04:06:c5:59:12:e0:0d:30:d0:69:a7:eb:92:c6:56:63:c6:
2c:e8:e0:f3:30:25:4a:c5:5d:b2:f5:7d:a1:92:8c:cc:5c:99:
fd:b2:6b:0e:2c:59:84:c5:cb:7f:ae:66:6d:f1:e2:f4:86:89:
64:2d:23:82:5d:98:d7:03:9a:4d:27:23:e4:be:a5:0f:26:1a:
a8:90:f3:7e:4c:40:d6:36:d2:d5:20:e9:89:35:20:ce:f4:d6:
97:40:0c:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 19:00:55 2026 by rpki-client