Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C65C6/0338D9B4CF5B11EBB2E7A516F8AEA228/33AD592A1BC911F19E383ABEDAE4EC9C.roa
File: 33AD592A1BC911F19E383ABEDAE4EC9C.roa (raw, json)
Hash identifier: vdTigpEvRSmZws/TPKnqcmEKXFoG1ddg7/1/HExLgDg=
Subject key identifier: 89:0E:4E:8E:76:DB:B2:15:82:31:CF:2A:ED:AA:AE:67:DC:E0:92:F2
Certificate issuer: /CN=F36C65C6AF/serialNumber=C08F3EDC59158942C2DF39F1425E6EB82168BE3E
Certificate serial: 0741
Authority key identifier: C0:8F:3E:DC:59:15:89:42:C2:DF:39:F1:42:5E:6E:B8:21:68:BE:3E
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/wI8-3FkViULC3znxQl5uuCFovj4.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C65C6/0338D9B4CF5B11EBB2E7A516F8AEA228/33AD592A1BC911F19E383ABEDAE4EC9C.roa
Signing time: Mon 09 Mar 2026 15:04:00 +0000
ROA not before: Mon 09 Mar 2026 15:03:55 +0000
ROA not after: Sun 09 Mar 2036 15:03:55 +0000
asID: 327901
IP address blocks: 102.219.116.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C65C6/0338D9B4CF5B11EBB2E7A516F8AEA228/wI8-3FkViULC3znxQl5uuCFovj4.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C65C6/0338D9B4CF5B11EBB2E7A516F8AEA228/wI8-3FkViULC3znxQl5uuCFovj4.mft
rsync://rpki.afrinic.net/repository/afrinic/wI8-3FkViULC3znxQl5uuCFovj4.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 28 Mar 2026 00:07:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1857 (0x741)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C65C6AF, serialNumber=C08F3EDC59158942C2DF39F1425E6EB82168BE3E
Validity
Not Before: Mar 9 15:03:55 2026 GMT
Not After : Mar 9 15:03:55 2036 GMT
Subject: CN=69aee160-4152
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:90:66:4e:9c:ce:9f:a7:22:e7:0b:50:0b:ac:
36:13:32:f5:ad:2b:87:bc:d5:c6:b4:2c:5f:3e:e1:
ce:44:88:36:41:6c:c0:83:4d:53:4d:13:f9:cd:2f:
46:2d:ee:ab:33:c0:64:42:b8:45:38:13:f3:ab:b9:
27:f1:f0:a0:7e:69:c2:68:22:a2:7d:ff:59:9c:7e:
f4:d5:ab:e5:36:2d:da:c2:18:66:8f:6f:bc:03:0d:
a4:07:a7:82:8e:12:22:cf:30:d2:58:e9:f3:f6:aa:
5a:74:02:2f:d1:f3:07:cc:f3:cc:19:55:90:70:7a:
37:43:ba:0e:4e:36:f8:ac:9e:14:37:7f:e3:f7:73:
04:ae:5a:8e:c0:40:60:5f:83:c4:16:fd:d6:c3:c9:
c5:ed:fa:99:30:2c:f0:cb:56:22:48:b8:fb:bf:9c:
9a:bc:4f:35:fb:34:84:9a:6a:54:6d:23:3e:87:15:
7a:49:c1:bc:8f:17:00:f3:4b:03:35:0a:dc:c3:76:
80:ac:44:9c:ee:5f:c2:e0:3a:97:9d:59:94:36:e3:
c8:73:eb:4d:d6:1c:c6:9d:23:f0:21:67:da:08:58:
08:41:7e:41:bf:a9:5d:3a:62:75:8c:14:13:f5:8a:
d7:90:bf:49:a9:6e:9f:92:ec:bc:ed:e2:0e:17:4b:
0b:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:0E:4E:8E:76:DB:B2:15:82:31:CF:2A:ED:AA:AE:67:DC:E0:92:F2
X509v3 Authority Key Identifier:
keyid:C0:8F:3E:DC:59:15:89:42:C2:DF:39:F1:42:5E:6E:B8:21:68:BE:3E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C65C6/0338D9B4CF5B11EBB2E7A516F8AEA228/wI8-3FkViULC3znxQl5uuCFovj4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/wI8-3FkViULC3znxQl5uuCFovj4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C65C6/0338D9B4CF5B11EBB2E7A516F8AEA228/33AD592A1BC911F19E383ABEDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.219.116.0/22
Signature Algorithm: sha256WithRSAEncryption
7c:3c:81:98:17:2a:43:f8:16:ea:c8:c0:d7:d5:60:9e:5f:8e:
24:1c:35:a8:68:1e:5a:81:77:3c:af:68:55:9c:63:c8:da:c9:
7e:27:24:06:0f:71:55:eb:16:d9:76:6d:bd:0d:75:f7:fb:4d:
56:57:29:db:b0:c0:67:7d:ef:9c:40:76:d6:91:de:32:f0:69:
5f:f3:84:e1:31:e0:84:d9:18:96:13:05:ad:04:fc:63:e2:b2:
5f:b0:79:3c:75:34:67:02:22:d1:28:25:89:9b:ed:66:8b:ed:
07:11:33:09:7a:f1:56:d5:40:3f:26:3c:0c:df:39:c3:76:d2:
64:5b:30:fa:91:58:0c:89:dc:d1:76:53:1b:7b:76:d0:59:fb:
7a:bf:95:43:4f:db:29:0c:db:f4:9e:c1:b5:66:7e:ef:ee:d8:
ae:ee:2f:4d:af:f5:a7:2b:6c:91:9d:1f:4e:a8:30:b3:c7:84:
47:2f:ac:4f:f1:36:28:fc:96:c3:77:2e:6e:10:9d:50:dc:22:
34:63:7d:e2:2b:50:03:5e:8a:75:16:47:b7:0a:98:f9:ec:5d:
30:14:0f:f3:28:da:1e:fb:39:49:8c:3b:63:7e:65:a5:33:4f:
cb:d6:d3:f9:e8:d1:ec:f7:b6:e9:70:36:57:4c:75:6d:9c:4d:
b8:50:7d:c0
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICB0EwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
QzY1QzZBRjExMC8GA1UEBRMoQzA4RjNFREM1OTE1ODk0MkMyREYzOUYxNDI1RTZF
QjgyMTY4QkUzRTAeFw0yNjAzMDkxNTAzNTVaFw0zNjAzMDkxNTAzNTVaMBgxFjAU
BgNVBAMTDTY5YWVlMTYwLTQxNTIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDOkGZOnM6fpyLnC1ALrDYTMvWtK4e81ca0LF8+4c5EiDZBbMCDTVNNE/nN
L0Yt7qszwGRCuEU4E/OruSfx8KB+acJoIqJ9/1mcfvTVq+U2LdrCGGaPb7wDDaQH
p4KOEiLPMNJY6fP2qlp0Ai/R8wfM88wZVZBwejdDug5ONvisnhQ3f+P3cwSuWo7A
QGBfg8QW/dbDycXt+pkwLPDLViJIuPu/nJq8TzX7NISaalRtIz6HFXpJwbyPFwDz
SwM1CtzDdoCsRJzuX8LgOpedWZQ248hz603WHMadI/AhZ9oIWAhBfkG/qV06YnWM
FBP1iteQv0mpbp+S7Lzt4g4XSwtDAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUiQ5O
jnbbshWCMc8q7aquZ9zgkvIwHwYDVR0jBBgwFoAUwI8+3FkViULC3znxQl5uuCFo
vj4wDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNkM2NUM2LzAzMzhEOUI0Q0Y1QjExRUJCMkU3QTUxNkY4QUVBMjI4L3dJOC0z
RmtWaVVMQzN6bnhRbDV1dUNGb3ZqNC5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL3dJOC0zRmtWaVVMQzN6bnhRbDV1dUNGb3ZqNC5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNkM2NUM2LzAzMzhEOUI0Q0Y1QjExRUJCMkU3QTUxNkY4
QUVBMjI4LzMzQUQ1OTJBMUJDOTExRjE5RTM4M0FCRURBRTRFQzlDLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJm23QwDQYJKoZIhvcNAQEL
BQADggEBAHw8gZgXKkP4FurIwNfVYJ5fjiQcNahoHlqBdzyvaFWcY8jayX4nJAYP
cVXrFtl2bb0Ndff7TVZXKduwwGd975xAdtaR3jLwaV/zhOEx4ITZGJYTBa0E/GPi
sl+weTx1NGcCItEoJYmb7WaL7QcRMwl68VbVQD8mPAzfOcN20mRbMPqRWAyJ3NF2
Uxt7dtBZ+3q/lUNP2ykM2/SewbVmfu/u2K7uL02v9acrbJGdH06oMLPHhEcvrE/x
Nij8lsN3Lm4QnVDcIjRjfeIrUANeinUWR7cKmPnsXTAUD/Mo2h77OUmMO2N+ZaUz
T8vW0/no0ez3tulwNldMdW2cTbhQfcA=
-----END CERTIFICATE-----
Generated at Thu Mar 26 21:47:45 2026 by rpki-client