Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C65C6/0338D9B4CF5B11EBB2E7A516F8AEA228/B7AE4F561BC711F190BF25B6DAE4EC9C.roa
File: B7AE4F561BC711F190BF25B6DAE4EC9C.roa (raw, json)
Hash identifier: hc6YfOQ0mvK+PcKMXNxpU+IX4NFTaXJSaCnWU8MKTH4=
Subject key identifier: 45:FA:09:3D:3F:8C:7F:41:DB:77:BE:FF:83:8C:6F:28:76:B8:60:10
Certificate issuer: /CN=F36C65C6AF/serialNumber=C08F3EDC59158942C2DF39F1425E6EB82168BE3E
Certificate serial: 0733
Authority key identifier: C0:8F:3E:DC:59:15:89:42:C2:DF:39:F1:42:5E:6E:B8:21:68:BE:3E
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/wI8-3FkViULC3znxQl5uuCFovj4.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C65C6/0338D9B4CF5B11EBB2E7A516F8AEA228/B7AE4F561BC711F190BF25B6DAE4EC9C.roa
Signing time: Mon 09 Mar 2026 14:53:22 +0000
ROA not before: Mon 09 Mar 2026 14:53:17 +0000
ROA not after: Sun 09 Mar 2036 14:53:17 +0000
asID: 327901
IP address blocks: 102.217.200.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C65C6/0338D9B4CF5B11EBB2E7A516F8AEA228/wI8-3FkViULC3znxQl5uuCFovj4.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C65C6/0338D9B4CF5B11EBB2E7A516F8AEA228/wI8-3FkViULC3znxQl5uuCFovj4.mft
rsync://rpki.afrinic.net/repository/afrinic/wI8-3FkViULC3znxQl5uuCFovj4.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 28 Mar 2026 00:07:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1843 (0x733)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C65C6AF, serialNumber=C08F3EDC59158942C2DF39F1425E6EB82168BE3E
Validity
Not Before: Mar 9 14:53:17 2026 GMT
Not After : Mar 9 14:53:17 2036 GMT
Subject: CN=69aedee2-1c0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:0c:6e:b4:9d:fd:53:9a:a8:93:0f:cb:8c:de:
b5:79:7d:e9:b9:31:2e:1a:bb:08:44:f7:5f:d2:96:
07:8c:8f:65:8a:36:f0:17:10:4d:44:36:eb:e4:bc:
78:5e:54:4a:26:47:db:07:1b:14:f5:69:2c:37:7d:
54:f9:37:4d:82:01:7f:ea:ac:8e:8e:61:bc:5d:07:
e4:ed:99:ae:0a:eb:0f:1b:f2:31:4f:f2:4d:84:e8:
58:35:78:2a:49:af:4f:0f:c5:95:42:2b:be:09:27:
d3:04:6f:89:e7:a9:91:43:5b:ac:8b:11:17:79:bb:
d6:7a:7d:9c:68:f0:a3:cc:8b:cb:3a:ed:db:ca:0f:
48:f1:a5:67:9c:49:d7:9c:d2:96:22:c1:5d:5f:7b:
af:1d:85:49:e7:b8:75:1b:b9:99:fd:41:8c:43:6d:
dd:ae:47:28:22:8b:28:21:69:eb:22:65:6c:79:b9:
5d:52:e3:a3:ea:c5:94:50:87:dd:c4:73:be:bc:9f:
06:0b:07:b9:b9:b6:67:57:32:15:00:05:57:5f:c5:
e8:b3:b1:1c:6b:df:63:51:c8:ea:e7:87:34:0e:0e:
ed:ac:3c:11:81:54:8a:72:92:70:b3:70:9b:24:65:
a9:51:bc:38:c1:d6:24:14:5f:4d:d7:b9:dd:00:e4:
65:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:FA:09:3D:3F:8C:7F:41:DB:77:BE:FF:83:8C:6F:28:76:B8:60:10
X509v3 Authority Key Identifier:
keyid:C0:8F:3E:DC:59:15:89:42:C2:DF:39:F1:42:5E:6E:B8:21:68:BE:3E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C65C6/0338D9B4CF5B11EBB2E7A516F8AEA228/wI8-3FkViULC3znxQl5uuCFovj4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/wI8-3FkViULC3znxQl5uuCFovj4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C65C6/0338D9B4CF5B11EBB2E7A516F8AEA228/B7AE4F561BC711F190BF25B6DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.217.200.0/22
Signature Algorithm: sha256WithRSAEncryption
48:00:9d:22:06:09:a7:57:81:b2:fc:0a:87:56:8e:62:f2:df:
f4:96:da:52:c6:66:70:00:9b:de:2d:28:25:91:f4:3c:e7:f9:
45:f3:26:46:f8:c0:0b:2e:2c:12:73:d4:de:03:00:f3:72:36:
9b:26:20:d8:5f:75:af:3b:5a:52:3a:96:bf:a4:88:45:bf:53:
56:12:cd:f4:09:63:12:12:1c:cf:8d:6d:6e:e3:26:8f:77:97:
e4:66:8f:60:07:bd:f8:df:a5:4e:92:57:68:d6:fe:8b:34:eb:
c2:b3:0b:c2:54:bb:41:e1:35:83:77:b9:27:e4:db:8d:c0:ab:
d8:c3:ff:33:ea:d7:cf:26:28:6c:e7:d8:74:d0:78:93:b0:0b:
c2:5d:ea:c5:f2:b1:8b:39:00:20:52:39:62:a6:50:94:3c:15:
e8:3a:68:9a:de:b0:78:ad:c9:48:2b:10:a7:5f:a5:6c:5f:30:
81:f1:b6:14:86:17:70:f2:c1:c4:ec:ef:6c:27:0a:8c:b4:92:
6e:48:ec:35:17:7d:37:2e:ef:bf:a9:8b:f2:63:e9:4c:f4:0b:
74:30:21:40:c9:3a:38:59:64:51:04:ad:4a:73:43:14:12:5b:
73:2a:70:48:d7:7d:d2:26:3c:89:3e:1c:bd:41:fc:71:1d:94:
d7:e4:84:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 23:00:57 2026 by rpki-client