Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C65C6/0338D9B4CF5B11EBB2E7A516F8AEA228/08FE94EE1BC611F18BFB45ABDAE4EC9C.roa
File: 08FE94EE1BC611F18BFB45ABDAE4EC9C.roa (raw, json)
Hash identifier: aw8mhciUc9JjZSntEyMggNvxrLq0CK4dHcDnmilyzK8=
Subject key identifier: 43:3C:27:DA:1D:54:1B:B1:3F:EA:11:10:5E:4B:E5:46:71:29:4B:7F
Certificate issuer: /CN=F36C65C6AF/serialNumber=C08F3EDC59158942C2DF39F1425E6EB82168BE3E
Certificate serial: 0724
Authority key identifier: C0:8F:3E:DC:59:15:89:42:C2:DF:39:F1:42:5E:6E:B8:21:68:BE:3E
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/wI8-3FkViULC3znxQl5uuCFovj4.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C65C6/0338D9B4CF5B11EBB2E7A516F8AEA228/08FE94EE1BC611F18BFB45ABDAE4EC9C.roa
Signing time: Mon 09 Mar 2026 14:41:19 +0000
ROA not before: Mon 09 Mar 2026 14:41:15 +0000
ROA not after: Sun 09 Mar 2036 14:41:15 +0000
asID: 327901
IP address blocks: 196.201.232.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C65C6/0338D9B4CF5B11EBB2E7A516F8AEA228/wI8-3FkViULC3znxQl5uuCFovj4.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C65C6/0338D9B4CF5B11EBB2E7A516F8AEA228/wI8-3FkViULC3znxQl5uuCFovj4.mft
rsync://rpki.afrinic.net/repository/afrinic/wI8-3FkViULC3znxQl5uuCFovj4.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 28 Mar 2026 00:07:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1828 (0x724)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C65C6AF, serialNumber=C08F3EDC59158942C2DF39F1425E6EB82168BE3E
Validity
Not Before: Mar 9 14:41:15 2026 GMT
Not After : Mar 9 14:41:15 2036 GMT
Subject: CN=69aedc0f-4577
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:48:e6:2e:cd:40:0e:fd:97:ea:9b:ba:14:53:
58:1d:b3:86:35:0b:b2:76:f4:2b:80:7a:a2:d6:ab:
45:92:94:c4:34:0d:69:36:08:f0:f8:9c:96:f3:1f:
f2:8b:75:1d:34:63:04:ed:b8:15:73:b9:b3:23:bf:
7c:e3:12:3a:10:9c:60:2f:07:af:41:eb:02:67:14:
15:38:88:a7:d7:dc:5a:dc:a0:ec:2d:b6:dc:06:08:
6c:94:f6:64:01:fb:e6:5a:32:3d:5c:1c:b1:87:98:
5f:e3:c2:93:db:cd:f0:56:11:79:53:43:82:ae:75:
85:e2:17:7e:6f:8f:2b:ae:76:e1:63:ab:2a:78:16:
70:06:90:df:3b:a4:a3:5a:6c:5b:7a:23:8a:12:a1:
ab:4b:00:ec:d4:10:98:f0:16:db:cf:99:13:71:25:
18:0e:5e:d6:aa:65:2b:38:f8:bd:08:bb:57:4c:ab:
8c:fc:45:d1:42:1e:45:5b:ee:42:8f:f2:34:80:2f:
a8:5d:4a:49:f7:2f:d3:1d:9c:57:08:bf:f3:75:ad:
e3:93:83:7d:b3:b7:c2:80:a2:69:04:81:a4:fa:62:
1a:9d:9a:93:17:7d:94:32:a6:44:dd:6b:dd:1f:7e:
e7:6f:2f:a8:c5:87:9c:36:5d:63:c1:4e:0f:5f:68:
15:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:3C:27:DA:1D:54:1B:B1:3F:EA:11:10:5E:4B:E5:46:71:29:4B:7F
X509v3 Authority Key Identifier:
keyid:C0:8F:3E:DC:59:15:89:42:C2:DF:39:F1:42:5E:6E:B8:21:68:BE:3E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C65C6/0338D9B4CF5B11EBB2E7A516F8AEA228/wI8-3FkViULC3znxQl5uuCFovj4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/wI8-3FkViULC3znxQl5uuCFovj4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C65C6/0338D9B4CF5B11EBB2E7A516F8AEA228/08FE94EE1BC611F18BFB45ABDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.201.232.0/21
Signature Algorithm: sha256WithRSAEncryption
75:33:4b:c7:99:88:b1:29:a0:b0:5e:40:cb:40:2a:a1:e2:22:
1a:c6:61:7c:bf:9b:a8:43:73:f1:1b:c2:9b:6d:23:6d:14:85:
97:18:c0:2c:b4:cf:2c:bd:88:a4:a0:e9:f4:2d:fa:7f:33:86:
23:46:91:df:f4:8b:93:15:ce:35:d6:b4:bb:1d:31:c9:74:c3:
a4:d4:db:0b:aa:2b:41:d6:64:9b:a3:b8:8f:89:d3:a4:77:69:
98:31:12:16:50:dd:83:c4:18:c4:78:0e:b3:bb:32:4e:a6:c3:
76:4c:4c:a7:b3:d3:41:10:92:71:93:1c:f3:5a:2e:5e:7c:ce:
0f:d7:18:43:ae:c9:9b:9c:f8:ba:f7:90:0e:2a:c0:48:27:69:
0a:ef:eb:6b:ae:24:e0:ed:a9:88:86:fe:f8:20:13:81:df:3c:
4f:20:2f:78:66:fc:13:7d:48:ae:62:7c:87:79:32:2c:36:53:
26:86:15:13:6d:db:15:30:f5:08:26:84:c2:79:be:a8:8b:c9:
e1:47:95:03:e0:96:37:c9:5d:9c:24:57:41:15:a7:46:f5:22:
a4:40:a8:05:9c:d4:a4:5a:76:ab:af:39:f7:5b:d6:f9:fa:44:
d3:9d:d3:90:12:5a:67:9f:02:f4:99:8d:8d:7a:bd:d6:ff:7a:
22:47:6b:10
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICByQwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
QzY1QzZBRjExMC8GA1UEBRMoQzA4RjNFREM1OTE1ODk0MkMyREYzOUYxNDI1RTZF
QjgyMTY4QkUzRTAeFw0yNjAzMDkxNDQxMTVaFw0zNjAzMDkxNDQxMTVaMBgxFjAU
BgNVBAMTDTY5YWVkYzBmLTQ1NzcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDGSOYuzUAO/Zfqm7oUU1gds4Y1C7J29CuAeqLWq0WSlMQ0DWk2CPD4nJbz
H/KLdR00YwTtuBVzubMjv3zjEjoQnGAvB69B6wJnFBU4iKfX3FrcoOwtttwGCGyU
9mQB++ZaMj1cHLGHmF/jwpPbzfBWEXlTQ4KudYXiF35vjyuuduFjqyp4FnAGkN87
pKNabFt6I4oSoatLAOzUEJjwFtvPmRNxJRgOXtaqZSs4+L0Iu1dMq4z8RdFCHkVb
7kKP8jSAL6hdSkn3L9MdnFcIv/N1reOTg32zt8KAomkEgaT6YhqdmpMXfZQypkTd
a90ffudvL6jFh5w2XWPBTg9faBW1AgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUQzwn
2h1UG7E/6hEQXkvlRnEpS38wHwYDVR0jBBgwFoAUwI8+3FkViULC3znxQl5uuCFo
vj4wDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNkM2NUM2LzAzMzhEOUI0Q0Y1QjExRUJCMkU3QTUxNkY4QUVBMjI4L3dJOC0z
RmtWaVVMQzN6bnhRbDV1dUNGb3ZqNC5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL3dJOC0zRmtWaVVMQzN6bnhRbDV1dUNGb3ZqNC5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNkM2NUM2LzAzMzhEOUI0Q0Y1QjExRUJCMkU3QTUxNkY4
QUVBMjI4LzA4RkU5NEVFMUJDNjExRjE4QkZCNDVBQkRBRTRFQzlDLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAPEyegwDQYJKoZIhvcNAQEL
BQADggEBAHUzS8eZiLEpoLBeQMtAKqHiIhrGYXy/m6hDc/EbwpttI20UhZcYwCy0
zyy9iKSg6fQt+n8zhiNGkd/0i5MVzjXWtLsdMcl0w6TU2wuqK0HWZJujuI+J06R3
aZgxEhZQ3YPEGMR4DrO7Mk6mw3ZMTKez00EQknGTHPNaLl58zg/XGEOuyZuc+Lr3
kA4qwEgnaQrv62uuJODtqYiG/vggE4HfPE8gL3hm/BN9SK5ifId5Miw2UyaGFRNt
2xUw9QgmhMJ5vqiLyeFHlQPgljfJXZwkV0EVp0b1IqRAqAWc1KRadquvOfdb1vn6
RNOd05ASWmefAvSZjY16vdb/eiJHaxA=
-----END CERTIFICATE-----
Generated at Thu Mar 26 23:01:28 2026 by rpki-client