Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36A1387/9872DBD6364811EFAFF89080762E951A/C191D4E8276611F184C60C89DAE4EC9C.roa
File: C191D4E8276611F184C60C89DAE4EC9C.roa (raw, json)
Hash identifier: J7SzOeOkxkBYSb/+dDFTPApl1RYzIVpPAgJtDYPneX8=
Subject key identifier: 2D:02:8E:DC:58:BF:37:67:ED:87:6F:D7:9A:AB:E7:B3:DA:73:C5:B6
Certificate issuer: /CN=F36A1387AF/serialNumber=A7776A1BE55AA98C5705FD779C84DD0106FEC582
Certificate serial: 0292
Authority key identifier: A7:77:6A:1B:E5:5A:A9:8C:57:05:FD:77:9C:84:DD:01:06:FE:C5:82
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/p3dqG-VaqYxXBf13nITdAQb-xYI.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36A1387/9872DBD6364811EFAFF89080762E951A/C191D4E8276611F184C60C89DAE4EC9C.roa
Signing time: Tue 24 Mar 2026 09:49:32 +0000
ROA not before: Tue 24 Mar 2026 09:49:27 +0000
ROA not after: Thu 01 Mar 2040 09:49:27 +0000
asID: 329437
IP address blocks: 102.204.90.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36A1387/9872DBD6364811EFAFF89080762E951A/p3dqG-VaqYxXBf13nITdAQb-xYI.crl
rsync://rpki.afrinic.net/repository/member_repository/F36A1387/9872DBD6364811EFAFF89080762E951A/p3dqG-VaqYxXBf13nITdAQb-xYI.mft
rsync://rpki.afrinic.net/repository/afrinic/p3dqG-VaqYxXBf13nITdAQb-xYI.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 28 Mar 2026 00:07:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 658 (0x292)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36A1387AF, serialNumber=A7776A1BE55AA98C5705FD779C84DD0106FEC582
Validity
Not Before: Mar 24 09:49:27 2026 GMT
Not After : Mar 1 09:49:27 2040 GMT
Subject: CN=69c25e2c-8d6e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:ca:15:0b:6c:33:f1:e5:2e:e3:94:59:62:b6:
d9:bb:b1:57:72:13:be:29:aa:00:89:0d:ba:68:d7:
e3:21:cb:7d:49:ce:c9:8d:44:ff:79:71:5c:1a:65:
9f:17:ba:c6:3a:26:ea:7e:a3:e6:31:43:e3:28:b3:
75:e8:d2:70:fb:9b:76:07:af:ae:9a:05:90:6b:60:
5c:79:3d:8e:a6:59:85:96:dc:cf:16:a1:13:9f:d3:
3d:10:12:30:0d:d6:69:bf:ea:5f:92:2f:c0:58:81:
95:62:02:19:67:f9:de:8f:81:ca:04:1c:12:a2:04:
18:69:43:03:0d:6e:ee:59:a9:cf:33:63:1e:54:b9:
ba:1a:f5:f5:62:de:ce:05:e3:67:17:0c:7a:ea:9d:
b3:c5:7c:7f:72:48:24:1e:a9:0d:bc:9f:17:88:e1:
0b:e2:a8:80:62:24:02:0b:a9:88:8a:f6:72:17:16:
84:6d:82:0d:38:29:4a:bb:32:48:3b:02:cc:4b:e4:
0c:35:07:51:16:d6:d7:85:d1:ad:14:08:86:db:6c:
fd:8b:68:84:65:67:2e:99:bd:fb:80:26:86:1e:4e:
79:5f:b2:aa:2f:ac:c2:05:4d:f7:80:00:3b:58:b3:
cc:39:90:c3:b4:84:7e:32:d4:40:b5:0c:1a:2e:2f:
c2:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:02:8E:DC:58:BF:37:67:ED:87:6F:D7:9A:AB:E7:B3:DA:73:C5:B6
X509v3 Authority Key Identifier:
keyid:A7:77:6A:1B:E5:5A:A9:8C:57:05:FD:77:9C:84:DD:01:06:FE:C5:82
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36A1387/9872DBD6364811EFAFF89080762E951A/p3dqG-VaqYxXBf13nITdAQb-xYI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/p3dqG-VaqYxXBf13nITdAQb-xYI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36A1387/9872DBD6364811EFAFF89080762E951A/C191D4E8276611F184C60C89DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.204.90.0/24
Signature Algorithm: sha256WithRSAEncryption
48:e0:f1:f7:4d:8c:31:44:6e:ab:57:00:7b:93:e6:22:a0:4d:
43:cd:df:14:40:61:e5:7e:30:90:ff:5d:21:1d:a7:37:b4:62:
49:84:00:94:ca:c2:88:bd:51:c5:e0:05:be:c2:ab:32:11:09:
99:d8:d2:52:7a:41:03:a9:c1:84:86:9e:81:d7:db:60:ee:ae:
1e:e6:b7:b1:7c:e7:d4:76:01:7e:85:b9:c8:44:a2:ac:31:5a:
ae:08:e7:73:58:af:f5:e9:73:e1:a6:5e:6e:28:e5:c2:dd:72:
c6:91:c8:a5:bd:35:12:0b:16:4e:d8:69:13:75:c9:9f:b1:dd:
5b:4c:ec:cc:a2:bd:1a:07:7f:89:6e:bb:1e:46:a6:17:79:14:
c3:56:fc:6c:cb:b9:40:45:15:19:02:79:93:fc:21:84:1d:c9:
90:3d:60:5b:45:a5:c9:8d:e4:c8:db:a4:aa:30:39:ed:fb:92:
f6:3f:bb:66:26:2f:4d:a4:83:ba:57:4c:9a:23:3e:49:39:6e:
42:ee:1a:73:6b:a9:11:b9:b8:71:e2:ce:93:04:b6:23:c7:8d:
ee:44:ad:02:34:44:68:58:7d:80:b1:4e:fb:90:e9:b9:4d:a8:
7e:75:ac:1c:5a:fa:d2:4c:fc:8a:9c:9d:1f:8a:f4:db:c2:57:
12:20:8b:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 22:53:09 2026 by rpki-client