Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C65C6/0338D9B4CF5B11EBB2E7A516F8AEA228/0D517C901BC711F1BF231FB2DAE4EC9C.roa
File: 0D517C901BC711F1BF231FB2DAE4EC9C.roa (raw, json)
Hash identifier: i8YfmYkG2E4+BH+T/cPbjtE7eeYYd5GMcdC2q/a37FI=
Subject key identifier: 30:9E:0D:5A:E3:56:97:BF:31:BA:40:C1:77:8A:19:BF:80:1F:98:55
Certificate issuer: /CN=F36C65C6AF/serialNumber=C08F3EDC59158942C2DF39F1425E6EB82168BE3E
Certificate serial: 072A
Authority key identifier: C0:8F:3E:DC:59:15:89:42:C2:DF:39:F1:42:5E:6E:B8:21:68:BE:3E
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/wI8-3FkViULC3znxQl5uuCFovj4.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C65C6/0338D9B4CF5B11EBB2E7A516F8AEA228/0D517C901BC711F1BF231FB2DAE4EC9C.roa
Signing time: Mon 09 Mar 2026 14:48:36 +0000
ROA not before: Mon 09 Mar 2026 14:48:32 +0000
ROA not after: Sun 09 Mar 2036 14:48:32 +0000
asID: 327901
IP address blocks: 102.220.148.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C65C6/0338D9B4CF5B11EBB2E7A516F8AEA228/wI8-3FkViULC3znxQl5uuCFovj4.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C65C6/0338D9B4CF5B11EBB2E7A516F8AEA228/wI8-3FkViULC3znxQl5uuCFovj4.mft
rsync://rpki.afrinic.net/repository/afrinic/wI8-3FkViULC3znxQl5uuCFovj4.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 28 Mar 2026 00:07:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1834 (0x72a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C65C6AF, serialNumber=C08F3EDC59158942C2DF39F1425E6EB82168BE3E
Validity
Not Before: Mar 9 14:48:32 2026 GMT
Not After : Mar 9 14:48:32 2036 GMT
Subject: CN=69aeddc4-c9c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:34:5c:6d:8d:32:5e:ec:a7:8c:38:77:77:38:
36:7c:b4:cc:0d:79:1b:eb:a9:f4:37:82:f9:a4:72:
d8:e2:1a:d2:f8:bb:14:ab:c5:46:19:83:7b:4f:1f:
25:05:8b:2e:04:02:3d:b6:00:8a:7d:d1:c1:5e:96:
da:d3:39:d0:f1:10:fe:09:6c:6b:95:d4:30:32:a6:
34:cd:c3:52:6b:25:e3:12:bf:8a:d8:ca:7e:1a:63:
5c:80:ec:94:70:62:0c:7d:9e:cf:fb:75:bb:e2:a5:
64:ce:54:a1:64:2c:80:80:9b:47:09:84:c1:2c:c1:
ca:9c:51:44:e9:31:50:db:1d:1b:f3:3a:9a:d2:68:
4e:3a:2c:cc:46:a6:99:ce:ff:cb:f0:56:2c:e1:90:
6a:f8:09:ee:cb:9e:a5:d2:d4:a4:ef:1f:42:62:ce:
31:73:d9:ae:ea:3e:89:a6:b8:ee:a0:c5:cd:28:a5:
61:03:9b:3d:69:c2:97:d5:80:cc:be:ea:eb:3c:29:
98:5e:dc:84:4f:81:bc:f2:00:a6:6a:5d:93:01:bb:
96:b1:dd:e7:ea:6e:eb:4f:64:df:68:86:16:09:52:
58:fd:52:9c:d4:b7:b9:0f:a1:94:6d:f7:8c:94:dc:
f2:b3:61:3f:85:d8:a7:a6:98:98:f1:ea:89:d4:ce:
dd:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:9E:0D:5A:E3:56:97:BF:31:BA:40:C1:77:8A:19:BF:80:1F:98:55
X509v3 Authority Key Identifier:
keyid:C0:8F:3E:DC:59:15:89:42:C2:DF:39:F1:42:5E:6E:B8:21:68:BE:3E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C65C6/0338D9B4CF5B11EBB2E7A516F8AEA228/wI8-3FkViULC3znxQl5uuCFovj4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/wI8-3FkViULC3znxQl5uuCFovj4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C65C6/0338D9B4CF5B11EBB2E7A516F8AEA228/0D517C901BC711F1BF231FB2DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.220.148.0/22
Signature Algorithm: sha256WithRSAEncryption
69:2c:72:87:74:ee:fe:2f:ef:38:c3:f9:3a:a8:61:7f:aa:0c:
5c:29:e7:63:5d:15:39:ab:ff:43:ae:76:f2:15:42:38:8a:71:
30:cb:30:d9:d1:ba:39:ef:9d:22:b2:a8:b4:4e:2a:1e:1a:ea:
3b:10:56:f4:7c:24:59:38:37:cc:ce:f4:a2:0b:ea:17:ee:1f:
48:dc:04:e7:2f:2e:ec:1d:44:a1:a9:fc:d4:a0:00:87:dc:05:
76:8f:2e:91:43:c9:70:f4:0f:59:54:51:c3:88:3e:a4:8b:f3:
83:d7:c4:3b:2f:b2:5b:e7:eb:2b:f2:f3:e6:c9:13:70:d3:73:
29:57:96:27:ec:36:9e:4e:1c:47:cb:99:c6:f8:71:b6:b4:0c:
6a:e8:eb:1a:c9:41:05:06:ad:ce:4e:46:4c:11:6d:e0:07:33:
db:38:69:44:a1:b8:33:54:87:17:0f:28:bc:8c:ee:84:c1:de:
f0:df:57:59:9e:fc:01:ba:b7:c0:a1:0a:44:cc:9a:e9:ec:aa:
81:74:d2:66:99:2c:70:57:5d:59:5d:1c:13:73:a9:d1:0e:73:
ce:b8:5e:9c:1a:6b:98:58:64:70:33:6c:d1:65:df:97:38:96:
3f:c1:bc:ad:b1:56:f2:cb:bb:27:3f:68:1f:78:d9:a6:fe:86:
60:11:9a:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 21:47:48 2026 by rpki-client