Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36E373D/4D22ACD68B7311E9A49A4368F8AEA228/D836FE9222B311F1AE59E8A5DAE4EC9C.roa
File: D836FE9222B311F1AE59E8A5DAE4EC9C.roa (raw, json)
Hash identifier: Zo4dYOB2OMVvcxcANyuKsstxdleGAQAhhFqhzGOXqz0=
Subject key identifier: C8:6D:D0:5A:CE:3F:76:3A:8A:48:D7:98:5B:21:B1:DC:3A:4D:F3:C0
Certificate issuer: /CN=F36E373DAF/serialNumber=FD8E045884B1669EBD430AE566721D97404A6CE8
Certificate serial: 0A35
Authority key identifier: FD:8E:04:58:84:B1:66:9E:BD:43:0A:E5:66:72:1D:97:40:4A:6C:E8
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/_Y4EWISxZp69QwrlZnIdl0BKbOg.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36E373D/4D22ACD68B7311E9A49A4368F8AEA228/D836FE9222B311F1AE59E8A5DAE4EC9C.roa
Signing time: Wed 18 Mar 2026 10:18:45 +0000
ROA not before: Wed 18 Mar 2026 10:18:40 +0000
ROA not after: Tue 18 Mar 2036 10:18:40 +0000
asID: 327733
IP address blocks: 102.216.160.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36E373D/4D22ACD68B7311E9A49A4368F8AEA228/_Y4EWISxZp69QwrlZnIdl0BKbOg.crl
rsync://rpki.afrinic.net/repository/member_repository/F36E373D/4D22ACD68B7311E9A49A4368F8AEA228/_Y4EWISxZp69QwrlZnIdl0BKbOg.mft
rsync://rpki.afrinic.net/repository/afrinic/_Y4EWISxZp69QwrlZnIdl0BKbOg.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 28 Mar 2026 00:07:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2613 (0xa35)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36E373DAF, serialNumber=FD8E045884B1669EBD430AE566721D97404A6CE8
Validity
Not Before: Mar 18 10:18:40 2026 GMT
Not After : Mar 18 10:18:40 2036 GMT
Subject: CN=69ba7c05-0e87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:27:97:11:92:0e:5e:84:79:f6:ee:64:a6:d7:
cd:26:1d:73:73:0c:b0:c4:be:48:53:f7:33:41:33:
f9:92:75:80:79:48:6a:56:4e:92:cd:b8:3f:0e:3f:
18:6a:e0:25:e9:bc:32:94:cd:25:f3:14:1b:95:fb:
a8:fe:a2:76:c0:ff:3f:26:48:67:c9:9f:52:ca:5c:
d3:c9:19:99:4a:c4:2e:ce:c9:d6:e1:53:48:c1:47:
59:11:65:78:37:b6:76:8e:ce:31:0d:07:7c:b9:e9:
01:08:19:cc:a9:af:e9:fe:29:b1:36:bd:f8:f0:af:
81:c5:3a:35:3d:94:f1:25:11:92:ac:29:fb:15:6b:
6c:cd:44:e8:02:0c:c6:5a:55:b0:a3:37:3c:2f:e7:
6f:c8:f3:98:a7:6b:e4:05:0e:c8:43:3a:d5:46:64:
23:6d:0a:64:8b:fa:28:43:3f:c8:7c:d0:8c:4a:ea:
d2:03:44:1c:ee:02:87:3e:12:17:41:9a:a7:99:65:
02:4e:65:17:2f:7e:32:7d:e1:c3:4f:21:aa:ec:e0:
4d:67:45:fc:39:b5:f3:1e:98:23:a4:ed:97:ae:82:
aa:6a:01:57:e1:61:8e:0f:95:37:dc:98:01:4c:63:
22:3c:d8:43:56:a2:72:a2:be:b2:a8:d4:75:ca:b8:
d5:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:6D:D0:5A:CE:3F:76:3A:8A:48:D7:98:5B:21:B1:DC:3A:4D:F3:C0
X509v3 Authority Key Identifier:
keyid:FD:8E:04:58:84:B1:66:9E:BD:43:0A:E5:66:72:1D:97:40:4A:6C:E8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36E373D/4D22ACD68B7311E9A49A4368F8AEA228/_Y4EWISxZp69QwrlZnIdl0BKbOg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/_Y4EWISxZp69QwrlZnIdl0BKbOg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36E373D/4D22ACD68B7311E9A49A4368F8AEA228/D836FE9222B311F1AE59E8A5DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.216.160.0/22
Signature Algorithm: sha256WithRSAEncryption
66:cd:0a:12:5a:58:8a:cf:3c:36:ab:3e:3c:19:5c:03:ef:c8:
b8:c6:f1:9e:d3:ae:0b:65:56:f1:6a:e8:fe:46:01:6b:db:c0:
e1:2b:ca:0c:2d:3a:fd:a4:68:ee:ce:be:df:48:01:67:f7:e3:
0a:4e:c6:a6:13:6e:c7:85:a2:66:0b:97:cb:21:ce:27:45:fe:
4d:f6:81:2e:fa:68:54:f9:22:f9:a5:e1:71:0d:49:aa:19:02:
54:ae:e0:d7:88:e4:f3:4c:ab:dd:e6:f4:5d:4f:7d:64:78:54:
05:b7:c5:92:c7:e9:ff:8d:b3:69:95:a8:9f:88:c8:6e:36:ea:
93:14:49:3e:27:f7:a7:d3:fb:de:bc:5c:cc:c2:d5:df:71:ae:
6a:01:d4:3d:1d:41:84:bc:8d:15:9f:73:2c:5b:02:db:7f:fe:
90:bb:e3:fb:53:60:0e:8a:ed:79:1f:e8:b4:de:89:e3:a0:a4:
a6:b2:f8:5b:a9:01:a7:0b:e5:f0:0c:fb:0d:a0:84:8b:82:7b:
b9:6f:1e:ee:2b:52:fd:25:bb:c8:02:11:76:64:3d:42:3b:78:
e6:63:74:7a:67:3e:e4:85:41:c0:b1:96:88:29:96:dc:1f:ea:
70:1a:7b:c9:a0:46:a6:32:fb:19:c3:78:1c:4a:d6:ef:b3:60:
e8:a7:5b:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 22:22:28 2026 by rpki-client