Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36BA482/00E56E9E51ED11EF932A6172762E951A/51D633A828E011F1B5EC19A7DAE4EC9C.roa
File: 51D633A828E011F1B5EC19A7DAE4EC9C.roa (raw, json)
Hash identifier: 9HJBCfxyN3JJa5qVSQU2P6mbjYZKQYUaO4UYv+qOONw=
Subject key identifier: A2:DE:1A:1E:F1:AC:91:D8:CC:34:23:C2:64:CD:C3:CF:94:84:36:F5
Certificate issuer: /CN=F36BA482AF/serialNumber=EFAE0B3D7DB8829363AEDFC05A84EDB9D404C739
Certificate serial: 0272
Authority key identifier: EF:AE:0B:3D:7D:B8:82:93:63:AE:DF:C0:5A:84:ED:B9:D4:04:C7:39
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/764LPX24gpNjrt_AWoTtudQExzk.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36BA482/00E56E9E51ED11EF932A6172762E951A/51D633A828E011F1B5EC19A7DAE4EC9C.roa
Signing time: Thu 26 Mar 2026 06:52:14 +0000
ROA not before: Thu 26 Mar 2026 06:52:08 +0000
ROA not after: Wed 31 Mar 2027 06:52:08 +0000
asID: 329379
IP address blocks: 102.210.100.0/23 maxlen: 23
102.210.100.0/24 maxlen: 24
102.210.101.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36BA482/00E56E9E51ED11EF932A6172762E951A/764LPX24gpNjrt_AWoTtudQExzk.crl
rsync://rpki.afrinic.net/repository/member_repository/F36BA482/00E56E9E51ED11EF932A6172762E951A/764LPX24gpNjrt_AWoTtudQExzk.mft
rsync://rpki.afrinic.net/repository/afrinic/764LPX24gpNjrt_AWoTtudQExzk.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 28 Mar 2026 00:07:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 626 (0x272)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36BA482AF, serialNumber=EFAE0B3D7DB8829363AEDFC05A84EDB9D404C739
Validity
Not Before: Mar 26 06:52:08 2026 GMT
Not After : Mar 31 06:52:08 2027 GMT
Subject: CN=69c4d79e-c663
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:5d:ee:9d:3b:60:ba:34:b4:60:11:08:40:2e:
89:6b:d8:e6:1a:c8:09:16:ee:23:d6:3d:10:94:40:
18:d4:62:82:a6:84:e7:a0:61:f7:64:01:81:1e:62:
c7:eb:43:cd:dd:0b:b4:20:0e:ab:f3:86:5f:fb:18:
8f:13:b2:ed:52:58:f3:a8:6f:aa:da:f9:95:d4:b7:
d5:61:e9:79:d8:30:dc:95:0a:b6:74:47:7f:88:07:
94:84:53:6e:1f:89:19:1a:21:75:54:2d:75:05:d1:
7e:b5:f3:62:b6:5a:93:e6:8b:18:4b:0b:f5:9c:d1:
fc:0a:d8:9c:79:5b:d8:1b:06:1a:81:f4:7c:ee:69:
ba:2d:77:55:72:26:ea:19:3b:0a:e0:b3:58:be:e4:
48:fa:e1:f0:84:a9:f4:67:80:9f:e8:f1:ae:a0:0e:
f2:2e:b7:8e:d8:05:9b:e6:be:52:65:1c:65:62:6c:
88:cc:93:ae:ff:12:fd:7a:06:ac:75:fa:39:96:4a:
e8:69:19:11:ce:3f:57:11:24:1b:42:32:5b:38:94:
56:26:77:05:a6:2e:a1:ad:78:01:1c:02:92:71:03:
25:ff:a5:a3:3c:db:9d:50:6f:ef:cd:6b:ba:bf:a6:
32:55:b5:6d:a8:69:eb:c0:36:ee:1e:3a:d7:7c:b4:
86:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:DE:1A:1E:F1:AC:91:D8:CC:34:23:C2:64:CD:C3:CF:94:84:36:F5
X509v3 Authority Key Identifier:
keyid:EF:AE:0B:3D:7D:B8:82:93:63:AE:DF:C0:5A:84:ED:B9:D4:04:C7:39
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36BA482/00E56E9E51ED11EF932A6172762E951A/764LPX24gpNjrt_AWoTtudQExzk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/764LPX24gpNjrt_AWoTtudQExzk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36BA482/00E56E9E51ED11EF932A6172762E951A/51D633A828E011F1B5EC19A7DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.210.100.0/23
Signature Algorithm: sha256WithRSAEncryption
49:15:61:fa:4c:ee:2a:cf:65:4d:63:0c:17:7a:ee:c8:ad:b7:
04:c3:7d:8d:93:12:9e:fa:f1:de:0c:4f:7c:8c:63:06:6e:84:
1f:b7:92:53:77:e3:1e:a8:5f:ec:03:48:47:d5:57:0b:e1:fa:
8b:58:a3:19:82:4d:54:e6:9b:f4:48:d0:bb:97:af:4f:ca:45:
b7:d3:f8:61:48:32:68:1c:18:40:07:bd:cc:b3:6a:2d:ee:11:
4e:ee:83:4a:80:5e:26:84:5b:9e:1d:d7:e7:d0:26:c8:9a:5d:
d0:3f:ba:3f:73:f9:d7:ff:ad:d5:df:ad:42:ca:29:5c:19:fd:
b2:f9:86:0f:a2:2b:97:83:e9:2c:79:15:d9:52:56:69:d2:d5:
53:02:13:ee:eb:8a:02:86:18:82:58:3a:bb:04:35:af:0b:68:
ac:7e:06:bb:d4:62:3b:34:f9:87:30:a9:2e:06:37:05:2c:3b:
1f:86:e4:01:0b:71:37:17:78:17:21:b5:8b:f9:74:8f:56:50:
e7:d8:0e:d2:61:6d:0a:22:d3:ea:ab:c8:66:5e:9e:6c:27:6c:
43:d5:ec:49:15:31:3a:35:94:72:b8:46:54:7b:af:67:37:e3:
4b:09:dc:f8:13:91:a7:72:0f:fb:4c:ac:29:b0:54:cc:b5:96:
25:5c:9f:49
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICAnIwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
QkE0ODJBRjExMC8GA1UEBRMoRUZBRTBCM0Q3REI4ODI5MzYzQUVERkMwNUE4NEVE
QjlENDA0QzczOTAeFw0yNjAzMjYwNjUyMDhaFw0yNzAzMzEwNjUyMDhaMBgxFjAU
BgNVBAMTDTY5YzRkNzllLWM2NjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDiXe6dO2C6NLRgEQhALolr2OYayAkW7iPWPRCUQBjUYoKmhOegYfdkAYEe
YsfrQ83dC7QgDqvzhl/7GI8Tsu1SWPOob6ra+ZXUt9Vh6XnYMNyVCrZ0R3+IB5SE
U24fiRkaIXVULXUF0X6182K2WpPmixhLC/Wc0fwK2Jx5W9gbBhqB9Hzuabotd1Vy
JuoZOwrgs1i+5Ej64fCEqfRngJ/o8a6gDvIut47YBZvmvlJlHGVibIjMk67/Ev16
Bqx1+jmWSuhpGRHOP1cRJBtCMls4lFYmdwWmLqGteAEcApJxAyX/paM8251Qb+/N
a7q/pjJVtW2oaevANu4eOtd8tIb1AgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUot4a
HvGskdjMNCPCZM3Dz5SENvUwHwYDVR0jBBgwFoAU764LPX24gpNjrt/AWoTtudQE
xzkwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNkJBNDgyLzAwRTU2RTlFNTFFRDExRUY5MzJBNjE3Mjc2MkU5NTFBLzc2NExQ
WDI0Z3BOanJ0X0FXb1R0dWRRRXh6ay5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljLzc2NExQWDI0Z3BOanJ0X0FXb1R0dWRRRXh6ay5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNkJBNDgyLzAwRTU2RTlFNTFFRDExRUY5MzJBNjE3Mjc2
MkU5NTFBLzUxRDYzM0E4MjhFMDExRjFCNUVDMTlBN0RBRTRFQzlDLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFm0mQwDQYJKoZIhvcNAQEL
BQADggEBAEkVYfpM7irPZU1jDBd67sittwTDfY2TEp768d4MT3yMYwZuhB+3klN3
4x6oX+wDSEfVVwvh+otYoxmCTVTmm/RI0LuXr0/KRbfT+GFIMmgcGEAHvcyzai3u
EU7ug0qAXiaEW54d1+fQJsiaXdA/uj9z+df/rdXfrULKKVwZ/bL5hg+iK5eD6Sx5
FdlSVmnS1VMCE+7rigKGGIJYOrsENa8LaKx+BrvUYjs0+YcwqS4GNwUsOx+G5AEL
cTcXeBchtYv5dI9WUOfYDtJhbQoi0+qryGZenmwnbEPV7EkVMTo1lHK4RlR7r2c3
40sJ3PgTkadyD/tMrCmwVMy1liVcn0k=
-----END CERTIFICATE-----
Generated at Thu Mar 26 17:46:20 2026 by rpki-client