Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36B4C8A/8F7B80A2CC3B11F09E4F4EE3DAE4EC9C/A4A4E4084D5211F188138C06CF1D38B0.roa
File: A4A4E4084D5211F188138C06CF1D38B0.roa (raw, json)
Hash identifier: gD7Kk/4a3hegKXdJuc7Q/pHLiQqWezxiBlrC81KKIrQ=
Subject key identifier: E3:20:40:23:49:34:76:AD:C5:97:05:6A:92:03:C5:29:5B:13:3C:B0
Certificate issuer: /CN=F36B4C8AAF/serialNumber=B0E334C3C1721A5B9BCA1892503E90524688293A
Certificate serial: AD
Authority key identifier: B0:E3:34:C3:C1:72:1A:5B:9B:CA:18:92:50:3E:90:52:46:88:29:3A
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/sOM0w8FyGlubyhiSUD6QUkaIKTo.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36B4C8A/8F7B80A2CC3B11F09E4F4EE3DAE4EC9C/A4A4E4084D5211F188138C06CF1D38B0.roa
Signing time: Mon 11 May 2026 16:01:17 +0000
ROA not before: Mon 11 May 2026 16:01:11 +0000
ROA not after: Fri 11 May 2029 16:01:11 +0000
asID: 329667
IP address blocks: 102.206.40.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36B4C8A/8F7B80A2CC3B11F09E4F4EE3DAE4EC9C/sOM0w8FyGlubyhiSUD6QUkaIKTo.crl
rsync://rpki.afrinic.net/repository/member_repository/F36B4C8A/8F7B80A2CC3B11F09E4F4EE3DAE4EC9C/sOM0w8FyGlubyhiSUD6QUkaIKTo.mft
rsync://rpki.afrinic.net/repository/afrinic/sOM0w8FyGlubyhiSUD6QUkaIKTo.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 14 May 2026 05:16:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 173 (0xad)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36B4C8AAF, serialNumber=B0E334C3C1721A5B9BCA1892503E90524688293A
Validity
Not Before: May 11 16:01:11 2026 GMT
Not After : May 11 16:01:11 2029 GMT
Subject: CN=6a01fd4d-775a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:23:47:30:67:cc:13:0e:ee:b0:3e:53:21:e2:
db:18:db:1e:37:e9:5d:ff:28:e8:7e:42:d1:f1:24:
ce:ed:43:2d:72:8b:5a:85:f2:e8:54:78:36:33:9d:
ad:bc:f7:2f:34:6d:19:a5:d9:6c:bd:a8:44:a8:f8:
d2:e7:42:fe:da:2a:ae:cf:b6:e0:ea:04:ec:7d:0b:
bd:e9:b3:6b:41:f2:b7:97:cc:c9:a4:c5:b5:19:ff:
d6:e0:ac:a5:95:05:fa:ff:2e:69:b7:4a:b6:f1:f3:
30:ed:32:36:14:bd:ad:54:65:96:53:d4:05:19:3f:
12:8d:47:6d:b8:d2:e6:25:92:e4:ef:3a:0d:f5:19:
8d:91:cb:ba:e3:27:c5:d7:13:20:e7:37:1e:07:31:
8c:16:96:ba:43:8f:1e:7a:8b:21:99:cd:13:81:f9:
d2:a7:e6:e3:ea:ab:d0:19:b1:7d:9c:92:21:47:0c:
22:8f:4a:45:20:6d:e2:a6:99:93:1b:20:5e:dd:28:
8f:54:b3:a0:15:b1:1a:ef:67:f3:e2:5a:38:fc:8b:
62:ae:a6:03:5f:9c:fd:42:4c:2b:00:39:8f:6b:c0:
21:a6:2f:e1:fd:db:ce:98:61:ea:4b:6e:34:f9:ed:
10:a9:0a:fd:5b:bf:07:7c:76:78:08:72:cd:e3:47:
2a:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:20:40:23:49:34:76:AD:C5:97:05:6A:92:03:C5:29:5B:13:3C:B0
X509v3 Authority Key Identifier:
keyid:B0:E3:34:C3:C1:72:1A:5B:9B:CA:18:92:50:3E:90:52:46:88:29:3A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36B4C8A/8F7B80A2CC3B11F09E4F4EE3DAE4EC9C/sOM0w8FyGlubyhiSUD6QUkaIKTo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/sOM0w8FyGlubyhiSUD6QUkaIKTo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36B4C8A/8F7B80A2CC3B11F09E4F4EE3DAE4EC9C/A4A4E4084D5211F188138C06CF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.206.40.0/22
Signature Algorithm: sha256WithRSAEncryption
4b:11:95:ec:bc:e9:a1:b8:4b:30:5e:4d:45:ed:5b:e3:c9:0b:
86:d0:5e:b9:6f:df:82:55:9a:60:5d:c7:f9:0f:ed:6c:9c:fd:
57:09:57:c0:11:75:ca:10:c7:15:9e:c3:c4:a8:78:bc:58:df:
4c:46:25:2a:9c:2c:eb:74:49:70:80:1b:ef:4b:cf:71:9b:25:
4d:40:93:f7:d5:9f:aa:97:66:da:b0:e2:9b:1e:41:62:69:7b:
10:5b:46:02:ad:f0:bd:ea:c0:a0:98:cf:00:a5:c6:43:35:46:
e2:8b:b2:63:3b:7e:b5:05:2b:63:05:b5:11:49:9d:2a:3f:43:
42:7e:29:98:61:89:bb:32:c6:bc:ac:f3:bb:d8:d5:52:ed:7e:
18:78:5b:0c:44:5f:60:cc:b6:8d:f9:7b:d7:7c:99:9c:9d:76:
8e:09:4f:8e:ab:80:98:45:56:8c:97:e1:0c:3b:39:17:62:77:
a7:f3:76:be:e0:93:b2:87:7e:df:23:e7:23:2b:68:45:ef:84:
67:b2:9e:10:e1:70:c9:56:24:c6:96:e0:9f:7f:87:5e:95:f7:
53:d5:e3:16:39:a8:b7:73:24:39:7a:e8:38:ae:4a:49:09:f0:
d5:7c:ab:3a:f0:1f:06:7c:f8:bd:81:8d:aa:92:10:91:86:da:
bf:de:3d:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 05:26:06 2026 by rpki-client