Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36B9F4B/61A2E1A28DE011E9AC14F632F8AEA228/C5D92C0222B811F18366ACC1DAE4EC9C.roa
File: C5D92C0222B811F18366ACC1DAE4EC9C.roa (raw, json)
Hash identifier: yt9D2W7TuyFxxrfbv+m6g165fT/jJdY/nJQ+GYDBVn0=
Subject key identifier: 06:60:9F:B3:01:1D:B0:FF:C7:C2:19:FC:80:36:4A:9D:B4:14:FC:13
Certificate issuer: /CN=F36B9F4BAF/serialNumber=9821C87221D270B42FF9DD826048B992C0E0E3F8
Certificate serial: 0A1D
Authority key identifier: 98:21:C8:72:21:D2:70:B4:2F:F9:DD:82:60:48:B9:92:C0:E0:E3:F8
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/mCHIciHScLQv-d2CYEi5ksDg4_g.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36B9F4B/61A2E1A28DE011E9AC14F632F8AEA228/C5D92C0222B811F18366ACC1DAE4EC9C.roa
Signing time: Wed 18 Mar 2026 10:54:02 +0000
ROA not before: Wed 18 Mar 2026 10:53:57 +0000
ROA not after: Tue 18 Mar 2036 10:53:57 +0000
asID: 2018
IP address blocks: 2001:4200::/32 maxlen: 64
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36B9F4B/61A2E1A28DE011E9AC14F632F8AEA228/mCHIciHScLQv-d2CYEi5ksDg4_g.crl
rsync://rpki.afrinic.net/repository/member_repository/F36B9F4B/61A2E1A28DE011E9AC14F632F8AEA228/mCHIciHScLQv-d2CYEi5ksDg4_g.mft
rsync://rpki.afrinic.net/repository/afrinic/mCHIciHScLQv-d2CYEi5ksDg4_g.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 28 Mar 2026 00:07:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2589 (0xa1d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36B9F4BAF, serialNumber=9821C87221D270B42FF9DD826048B992C0E0E3F8
Validity
Not Before: Mar 18 10:53:57 2026 GMT
Not After : Mar 18 10:53:57 2036 GMT
Subject: CN=69ba844a-d231
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:d9:9d:f0:83:d0:4a:54:73:e0:bf:61:99:b4:
1a:95:73:06:fe:8f:af:5d:d9:4e:ac:22:1f:c3:06:
48:e2:13:0b:31:a6:15:81:86:e6:56:61:ed:10:8c:
34:e7:1d:61:29:ce:c1:74:a1:38:27:31:af:7c:2a:
23:21:cf:7c:f6:59:6c:4c:da:01:bf:6d:30:05:e6:
28:af:d2:cc:b3:5f:03:96:2a:15:06:6a:e0:31:c8:
32:90:8a:dc:3b:8f:b4:43:b8:9d:96:1b:22:23:be:
69:74:37:fb:7f:7e:0f:3f:ba:2e:9c:6e:c4:19:96:
b5:ce:99:07:0d:0b:7b:1b:1f:93:ed:93:19:1b:b6:
35:c1:d9:1f:0c:34:8e:a9:7e:38:bd:fb:99:9c:10:
64:73:ff:23:4f:18:4c:d4:16:b2:66:b6:22:9f:e1:
bd:92:b3:8a:39:6f:1a:b1:c8:08:74:b2:17:15:67:
21:0d:c3:88:6e:d4:6d:93:7e:bd:5a:ac:3e:1f:86:
98:22:c6:ba:56:40:53:c9:8d:e8:4a:7f:ff:a5:8c:
d7:32:69:06:cd:e5:f3:94:2a:ad:83:6d:25:fe:c8:
d5:6f:25:6c:d3:a7:58:e8:d2:06:ae:b3:51:a7:a1:
c3:b9:fd:49:e0:42:19:b4:07:56:6c:93:92:16:6e:
a3:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:60:9F:B3:01:1D:B0:FF:C7:C2:19:FC:80:36:4A:9D:B4:14:FC:13
X509v3 Authority Key Identifier:
keyid:98:21:C8:72:21:D2:70:B4:2F:F9:DD:82:60:48:B9:92:C0:E0:E3:F8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36B9F4B/61A2E1A28DE011E9AC14F632F8AEA228/mCHIciHScLQv-d2CYEi5ksDg4_g.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/mCHIciHScLQv-d2CYEi5ksDg4_g.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36B9F4B/61A2E1A28DE011E9AC14F632F8AEA228/C5D92C0222B811F18366ACC1DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:4200::/32
Signature Algorithm: sha256WithRSAEncryption
67:d6:8a:3c:dd:76:36:e3:66:68:ba:4d:99:d2:4a:e0:9f:31:
b1:8d:30:01:f6:36:c1:42:0a:f8:a9:38:5b:fe:db:58:4b:79:
a2:d5:80:f5:cf:05:4c:b5:df:4a:74:9e:80:52:c8:31:3c:83:
89:50:1a:d8:f4:51:cc:a2:3a:ad:6f:f1:0c:15:34:d9:5c:82:
3f:df:04:c9:1c:9a:f3:23:2e:5d:bc:d2:1c:b1:ab:48:95:86:
2d:94:7b:ad:ac:e5:f0:b1:5e:99:8a:4f:c6:b3:a4:3b:cc:42:
00:b0:78:3c:0c:8a:e6:c9:76:d2:e3:a6:4b:02:3a:1b:13:4a:
b4:fb:1f:42:4e:4e:b5:f4:1d:9e:17:a4:e0:77:81:bc:61:20:
f0:36:7c:d9:58:5d:c6:2e:9e:66:8f:9f:35:a5:5a:5f:a4:2b:
69:64:f5:7d:61:10:40:64:1a:b1:2e:8a:62:28:31:e7:f7:d6:
2f:69:5a:09:7e:9d:3a:6d:d3:a4:4a:da:bf:82:06:43:68:20:
49:0b:c9:5e:49:1d:b4:ff:51:80:df:f8:07:23:d0:20:78:13:
07:0c:7f:17:59:40:0f:12:83:06:7c:ff:8a:00:bd:6d:81:8e:
2f:0f:19:bc:5c:f3:8e:6e:32:99:92:48:38:8f:50:31:e4:9a:
e1:54:8d:53
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICCh0wDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
QjlGNEJBRjExMC8GA1UEBRMoOTgyMUM4NzIyMUQyNzBCNDJGRjlERDgyNjA0OEI5
OTJDMEUwRTNGODAeFw0yNjAzMTgxMDUzNTdaFw0zNjAzMTgxMDUzNTdaMBgxFjAU
BgNVBAMTDTY5YmE4NDRhLWQyMzEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDW2Z3wg9BKVHPgv2GZtBqVcwb+j69d2U6sIh/DBkjiEwsxphWBhuZWYe0Q
jDTnHWEpzsF0oTgnMa98KiMhz3z2WWxM2gG/bTAF5iiv0syzXwOWKhUGauAxyDKQ
itw7j7RDuJ2WGyIjvml0N/t/fg8/ui6cbsQZlrXOmQcNC3sbH5PtkxkbtjXB2R8M
NI6pfji9+5mcEGRz/yNPGEzUFrJmtiKf4b2Ss4o5bxqxyAh0shcVZyENw4hu1G2T
fr1arD4fhpgixrpWQFPJjehKf/+ljNcyaQbN5fOUKq2DbSX+yNVvJWzTp1jo0gau
s1GnocO5/UngQhm0B1Zsk5IWbqMxAgMBAAGjggKmMIICojAdBgNVHQ4EFgQUBmCf
swEdsP/Hwhn8gDZKnbQU/BMwHwYDVR0jBBgwFoAUmCHIciHScLQv+d2CYEi5ksDg
4/gwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNkI5RjRCLzYxQTJFMUEyOERFMDExRTlBQzE0RjYzMkY4QUVBMjI4L21DSElj
aUhTY0xRdi1kMkNZRWk1a3NEZzRfZy5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL21DSEljaUhTY0xRdi1kMkNZRWk1a3NEZzRfZy5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNkI5RjRCLzYxQTJFMUEyOERFMDExRTlBQzE0RjYzMkY4
QUVBMjI4L0M1RDkyQzAyMjJCODExRjE4MzY2QUNDMURBRTRFQzlDLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAgAUIAMA0GCSqGSIb3DQEB
CwUAA4IBAQBn1oo83XY242Zouk2Z0krgnzGxjTAB9jbBQgr4qThb/ttYS3mi1YD1
zwVMtd9KdJ6AUsgxPIOJUBrY9FHMojqtb/EMFTTZXII/3wTJHJrzIy5dvNIcsatI
lYYtlHutrOXwsV6Zik/Gs6Q7zEIAsHg8DIrmyXbS46ZLAjobE0q0+x9CTk619B2e
F6Tgd4G8YSDwNnzZWF3GLp5mj581pVpfpCtpZPV9YRBAZBqxLopiKDHn99YvaVoJ
fp06bdOkStq/ggZDaCBJC8leSR20/1GA3/gHI9AgeBMHDH8XWUAPEoMGfP+KAL1t
gY4vDxm8XPOObjKZkkg4j1Ax5JrhVI1T
-----END CERTIFICATE-----
Generated at Thu Mar 26 23:40:27 2026 by rpki-client