Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36E373D/4D22ACD68B7311E9A49A4368F8AEA228/A0F84E4E22B411F1A094D2A9DAE4EC9C.roa
File: A0F84E4E22B411F1A094D2A9DAE4EC9C.roa (raw, json)
Hash identifier: RVM1tl7LuX44NxHiJWipsP33NfLSDKNOMeT1ioVv3KI=
Subject key identifier: B7:5F:BB:6F:DF:2F:98:36:17:B5:22:CA:28:02:5A:27:EF:C4:CE:60
Certificate issuer: /CN=F36E373DAF/serialNumber=FD8E045884B1669EBD430AE566721D97404A6CE8
Certificate serial: 0A39
Authority key identifier: FD:8E:04:58:84:B1:66:9E:BD:43:0A:E5:66:72:1D:97:40:4A:6C:E8
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/_Y4EWISxZp69QwrlZnIdl0BKbOg.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36E373D/4D22ACD68B7311E9A49A4368F8AEA228/A0F84E4E22B411F1A094D2A9DAE4EC9C.roa
Signing time: Wed 18 Mar 2026 10:24:22 +0000
ROA not before: Wed 18 Mar 2026 10:24:17 +0000
ROA not after: Tue 18 Mar 2036 10:24:17 +0000
asID: 327733
IP address blocks: 102.216.162.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36E373D/4D22ACD68B7311E9A49A4368F8AEA228/_Y4EWISxZp69QwrlZnIdl0BKbOg.crl
rsync://rpki.afrinic.net/repository/member_repository/F36E373D/4D22ACD68B7311E9A49A4368F8AEA228/_Y4EWISxZp69QwrlZnIdl0BKbOg.mft
rsync://rpki.afrinic.net/repository/afrinic/_Y4EWISxZp69QwrlZnIdl0BKbOg.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 28 Mar 2026 00:07:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2617 (0xa39)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36E373DAF, serialNumber=FD8E045884B1669EBD430AE566721D97404A6CE8
Validity
Not Before: Mar 18 10:24:17 2026 GMT
Not After : Mar 18 10:24:17 2036 GMT
Subject: CN=69ba7d56-b58b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:2b:44:b2:a6:99:09:b8:4f:5d:eb:ba:00:30:
b4:f8:a1:28:65:af:49:f7:40:5a:f5:7d:1d:67:b9:
e4:24:4d:57:9a:a8:6a:b6:98:46:b1:0e:31:87:cd:
5d:b7:e3:66:29:10:e5:27:7c:0f:42:8e:b4:16:19:
ea:be:84:ba:27:9b:2d:4a:2a:cc:4b:0b:9c:46:ad:
73:9b:e3:52:08:af:d6:d1:98:e4:72:6a:01:5f:ff:
05:60:88:35:bf:7f:0f:e0:23:7d:0b:bf:d1:18:09:
29:2a:5c:f4:89:d5:69:de:99:5b:63:5a:22:65:9f:
fa:20:1e:c8:50:df:24:98:3d:96:8f:82:a7:4c:a0:
20:17:0b:ee:bf:44:76:41:cc:19:e7:b2:a1:68:d5:
f8:ff:b5:59:d4:a8:8e:e2:d7:e9:a9:e8:d9:63:a7:
5b:90:d8:40:fc:93:e2:2d:76:d9:e3:01:ce:eb:f4:
ce:69:d3:6a:e8:f1:9e:22:47:73:33:9c:f2:a7:9d:
e6:f9:c5:ec:c2:a3:bb:6d:b2:aa:3d:6b:23:c4:ae:
0f:77:7c:4d:1f:9b:aa:09:2d:05:e6:84:d4:5d:06:
7f:b8:f6:88:38:d6:28:f5:7d:93:3b:ff:ac:b6:ed:
d9:5a:c0:50:42:2c:cd:ee:d8:d9:0a:4a:1e:1f:91:
92:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:5F:BB:6F:DF:2F:98:36:17:B5:22:CA:28:02:5A:27:EF:C4:CE:60
X509v3 Authority Key Identifier:
keyid:FD:8E:04:58:84:B1:66:9E:BD:43:0A:E5:66:72:1D:97:40:4A:6C:E8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36E373D/4D22ACD68B7311E9A49A4368F8AEA228/_Y4EWISxZp69QwrlZnIdl0BKbOg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/_Y4EWISxZp69QwrlZnIdl0BKbOg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36E373D/4D22ACD68B7311E9A49A4368F8AEA228/A0F84E4E22B411F1A094D2A9DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.216.162.0/24
Signature Algorithm: sha256WithRSAEncryption
63:33:7a:bb:1f:b4:96:e0:23:3d:4f:c8:0d:dc:b4:f6:60:a8:
39:8e:fa:b4:c5:0d:1b:75:0d:5a:3e:24:b2:7a:10:63:aa:a1:
0f:0f:aa:44:6c:d3:2a:24:bd:fa:65:0e:cb:4b:7e:49:be:f6:
6e:f9:a1:5f:8c:99:81:9b:50:e3:9e:c3:39:fe:24:28:c5:c0:
a0:a9:1f:93:92:1a:a2:9f:e6:d2:fb:f1:6b:66:4e:31:73:29:
91:21:0a:fb:98:08:ae:59:e7:83:b1:90:32:4f:f6:0b:3a:41:
92:45:61:a7:72:a0:84:ae:50:76:17:66:14:41:48:15:28:e0:
05:9d:56:7f:f7:bb:99:12:ce:43:4a:ac:ee:eb:f1:c1:13:0c:
2d:29:d9:85:6e:b6:0a:23:e2:83:31:5d:5a:03:6c:a6:34:44:
ea:91:d5:cf:4d:09:a3:cf:43:1d:70:86:32:b6:9c:98:f1:87:
f0:e6:ef:99:05:9e:09:39:1d:c6:df:d4:ed:cc:28:53:5a:7b:
cd:54:85:39:82:15:58:f8:93:0e:18:64:b0:2f:8a:03:e8:6c:
4b:ff:ec:6a:55:d1:43:f4:83:3c:b0:ff:4f:64:c8:cc:f8:f0:
59:57:14:e2:f0:e6:13:09:16:a0:f0:16:e4:f0:8c:50:68:d6:
98:03:0c:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 22:46:58 2026 by rpki-client