Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36EE1C1/050BE1D635B311ED9721E3F0F1222468/A572A8A416E111F19EA4E7ACDAE4EC9C.roa
File: A572A8A416E111F19EA4E7ACDAE4EC9C.roa (raw, json)
Hash identifier: n7gCG2uQxTeIhVaPEx4goN+jApSMUA/WmCugEwzQCJw=
Subject key identifier: 15:19:BC:64:AF:E0:0E:9B:AC:18:AA:AB:EF:9E:EF:59:1C:D6:CB:BF
Certificate issuer: /CN=F36EE1C1AF/serialNumber=45DF0E1C7FA534DACA20929ABA9E6328FBABFB51
Certificate serial: 051D
Authority key identifier: 45:DF:0E:1C:7F:A5:34:DA:CA:20:92:9A:BA:9E:63:28:FB:AB:FB:51
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/Rd8OHH-lNNrKIJKaup5jKPur-1E.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36EE1C1/050BE1D635B311ED9721E3F0F1222468/A572A8A416E111F19EA4E7ACDAE4EC9C.roa
Signing time: Tue 03 Mar 2026 09:16:22 +0000
ROA not before: Tue 03 Mar 2026 09:16:18 +0000
ROA not after: Thu 01 Aug 2030 09:16:18 +0000
asID: 329121
IP address blocks: 102.214.232.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36EE1C1/050BE1D635B311ED9721E3F0F1222468/Rd8OHH-lNNrKIJKaup5jKPur-1E.crl
rsync://rpki.afrinic.net/repository/member_repository/F36EE1C1/050BE1D635B311ED9721E3F0F1222468/Rd8OHH-lNNrKIJKaup5jKPur-1E.mft
rsync://rpki.afrinic.net/repository/afrinic/Rd8OHH-lNNrKIJKaup5jKPur-1E.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 28 Mar 2026 00:07:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1309 (0x51d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36EE1C1AF, serialNumber=45DF0E1C7FA534DACA20929ABA9E6328FBABFB51
Validity
Not Before: Mar 3 09:16:18 2026 GMT
Not After : Aug 1 09:16:18 2030 GMT
Subject: CN=69a6a6e6-6fc4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:7e:60:b2:a6:3c:1b:35:40:70:c1:00:7a:cf:
56:59:44:63:b7:a4:57:5f:5b:f2:c0:86:73:15:fa:
53:dd:af:ea:4b:cb:40:fe:19:be:65:58:aa:b8:11:
99:bf:8d:7b:d9:f1:9c:79:8e:51:7b:2f:0f:59:16:
09:4b:23:31:71:e9:3b:af:e1:1c:a9:92:3e:2e:47:
a2:9b:b3:79:d6:ea:3e:5b:9e:b8:db:05:3b:c6:3e:
6b:a7:53:3f:9e:39:c3:8b:46:8e:24:d1:03:1b:7b:
5e:3d:f4:df:8e:93:ee:fd:c9:c3:cd:9e:d8:e1:9d:
18:27:ec:32:b5:c2:7b:0b:93:9f:f7:33:39:9f:b7:
75:aa:59:d6:76:40:95:21:f0:3d:70:39:ef:d4:2c:
b4:4d:55:e8:73:02:e3:ce:3a:b4:f8:8c:e9:cb:b7:
51:11:77:cb:ae:d8:50:73:c7:4e:c6:df:c8:81:d7:
77:07:8b:e1:ad:a2:00:ee:3f:99:0e:46:39:ca:03:
4a:a5:78:b1:40:aa:9e:58:99:50:fc:eb:5f:27:65:
05:6a:b0:fe:d4:34:4e:72:8f:40:1c:f2:72:d2:55:
36:6a:20:1c:3f:9e:8d:d5:89:82:cb:7d:f2:1e:50:
f5:4b:57:be:4d:61:43:64:85:e8:97:55:72:16:58:
57:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:19:BC:64:AF:E0:0E:9B:AC:18:AA:AB:EF:9E:EF:59:1C:D6:CB:BF
X509v3 Authority Key Identifier:
keyid:45:DF:0E:1C:7F:A5:34:DA:CA:20:92:9A:BA:9E:63:28:FB:AB:FB:51
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36EE1C1/050BE1D635B311ED9721E3F0F1222468/Rd8OHH-lNNrKIJKaup5jKPur-1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/Rd8OHH-lNNrKIJKaup5jKPur-1E.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36EE1C1/050BE1D635B311ED9721E3F0F1222468/A572A8A416E111F19EA4E7ACDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.214.232.0/22
Signature Algorithm: sha256WithRSAEncryption
45:9b:57:54:80:3b:58:3f:fe:f7:7a:93:4d:98:83:d9:f8:c8:
ff:72:49:0d:e1:07:64:2d:ae:1a:15:94:46:fc:e2:6f:01:80:
e4:3e:a9:84:5e:ac:7f:f7:e4:9f:66:96:d7:d8:b3:dd:ca:4c:
50:61:45:78:ee:10:47:19:73:eb:8b:46:9c:b3:9e:2b:3b:31:
e7:6e:8a:c2:30:eb:4b:e4:a1:b1:d6:df:c1:a9:d7:c3:4c:bb:
6a:bb:66:52:4d:51:35:db:98:58:56:32:21:cc:78:42:30:01:
f7:da:fe:ca:ed:49:e9:0b:4b:ce:f4:48:9a:2c:a8:6d:ca:bd:
4c:c7:5a:3d:cb:ae:8c:91:d2:33:34:47:60:84:b6:86:e9:a8:
dd:7f:80:d2:eb:fb:02:45:f1:17:d5:78:60:79:19:e8:4a:a5:
5a:41:82:88:71:13:3f:03:01:57:51:d3:cd:bb:a9:20:f2:d5:
9b:6e:66:7b:b5:0b:25:ad:5a:2c:4d:97:8c:84:eb:9b:94:f6:
48:cb:76:e4:7c:f4:4b:d1:15:16:e7:c7:9a:e1:55:83:63:99:
51:5c:7f:62:01:7c:8d:56:04:a4:c5:13:1a:b8:4e:82:58:b0:
1d:23:08:0c:b9:bb:39:74:c7:34:7d:35:48:f8:45:4f:b7:eb:
e9:64:ec:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 27 02:08:30 2026 by rpki-client