Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36EF7D0/36E40A16F2FB11ED821B9D804AD9E6FC/12A0DE58485311F1BABE7AACCE1D38B0.roa
File: 12A0DE58485311F1BABE7AACCE1D38B0.roa (raw, json)
Hash identifier: Wa9Xcp1VlXG+U+dIZ4lwvdUeyGmM+4/KoxJvrA1a/tk=
Subject key identifier: A2:43:6E:72:3D:D0:66:2A:04:AF:E2:37:D5:13:27:C5:04:68:D6:C6
Certificate issuer: /CN=F36EF7D0AF/serialNumber=3A553B6EF80BF922312F96B8DDC1F219A8C4121B
Certificate serial: 0505
Authority key identifier: 3A:55:3B:6E:F8:0B:F9:22:31:2F:96:B8:DD:C1:F2:19:A8:C4:12:1B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/OlU7bvgL-SIxL5a43cHyGajEEhs.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36EF7D0/36E40A16F2FB11ED821B9D804AD9E6FC/12A0DE58485311F1BABE7AACCE1D38B0.roa
Signing time: Tue 05 May 2026 07:21:46 +0000
ROA not before: Tue 05 May 2026 07:21:40 +0000
ROA not after: Sun 05 May 2030 07:21:40 +0000
asID: 26769
IP address blocks: 102.212.4.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36EF7D0/36E40A16F2FB11ED821B9D804AD9E6FC/OlU7bvgL-SIxL5a43cHyGajEEhs.crl
rsync://rpki.afrinic.net/repository/member_repository/F36EF7D0/36E40A16F2FB11ED821B9D804AD9E6FC/OlU7bvgL-SIxL5a43cHyGajEEhs.mft
rsync://rpki.afrinic.net/repository/afrinic/OlU7bvgL-SIxL5a43cHyGajEEhs.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 15 May 2026 00:07:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1285 (0x505)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36EF7D0AF, serialNumber=3A553B6EF80BF922312F96B8DDC1F219A8C4121B
Validity
Not Before: May 5 07:21:40 2026 GMT
Not After : May 5 07:21:40 2030 GMT
Subject: CN=69f99a8a-7ce3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:b7:62:c5:43:e6:67:e2:0b:2f:35:62:e8:6a:
0b:7e:0b:e5:94:56:ba:fe:66:01:aa:f7:47:62:6a:
52:5d:c1:be:84:96:ef:a1:49:f5:73:52:c0:c1:70:
a3:b6:9a:c6:b2:f7:02:84:80:c7:ed:6c:e0:d8:20:
9d:69:0f:24:0e:f8:de:8a:98:e3:1d:0d:d3:49:2b:
f7:77:6a:4e:e9:bf:24:3b:f6:7f:05:32:94:db:10:
0f:f7:5f:c6:f8:3f:9d:ff:57:e7:c6:4d:9f:3f:6e:
ef:9b:71:8d:47:69:c1:07:b4:c8:00:9b:e3:56:41:
4a:9a:80:51:5c:87:3f:1a:49:27:04:22:a6:82:9b:
ed:06:df:07:f1:6f:c8:52:8b:b9:d4:2d:a8:a9:b9:
bf:01:cd:58:d1:00:84:00:46:92:9f:ff:78:4d:2b:
47:29:cc:3a:6a:14:0c:66:94:00:5b:13:98:43:d5:
d8:eb:50:d8:e0:7f:72:6f:ce:62:b5:7c:d7:02:00:
87:46:5a:62:a2:ce:99:f8:d1:25:9a:d8:2c:16:28:
aa:3d:47:be:fe:51:b1:f6:ea:ac:4a:dd:cb:ea:bb:
a0:3b:c2:c6:b6:3c:8a:c2:d9:30:1a:4e:c4:50:f9:
ae:66:ed:85:aa:4d:72:06:83:d8:36:47:50:7b:87:
38:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:43:6E:72:3D:D0:66:2A:04:AF:E2:37:D5:13:27:C5:04:68:D6:C6
X509v3 Authority Key Identifier:
keyid:3A:55:3B:6E:F8:0B:F9:22:31:2F:96:B8:DD:C1:F2:19:A8:C4:12:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36EF7D0/36E40A16F2FB11ED821B9D804AD9E6FC/OlU7bvgL-SIxL5a43cHyGajEEhs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/OlU7bvgL-SIxL5a43cHyGajEEhs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36EF7D0/36E40A16F2FB11ED821B9D804AD9E6FC/12A0DE58485311F1BABE7AACCE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.212.4.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:6a:32:3f:8b:49:62:4f:30:88:6b:5d:bd:ad:2f:36:97:8f:
f9:bb:10:97:91:c2:23:62:97:b8:9f:5a:25:71:7b:44:9d:fc:
3d:31:e0:00:08:45:58:73:40:83:16:30:bf:87:32:76:2e:83:
ab:75:87:44:36:33:b9:40:75:39:18:0a:f6:b3:ce:5f:d3:fc:
4c:2c:13:7e:64:e6:53:3e:82:0e:12:30:00:96:de:f1:29:0a:
2c:79:0c:67:e6:c5:d0:a8:49:78:80:e0:d1:d0:b7:d6:49:1d:
65:d5:d6:02:1b:a9:81:f9:5c:ae:a9:78:96:35:1e:5b:68:1d:
c2:10:d3:dc:82:00:d7:12:d9:84:32:88:d0:44:8e:1e:d9:a5:
6d:d5:b2:76:9c:ba:ad:18:c4:a6:18:8f:f1:a4:59:fb:71:b3:
0a:10:92:6f:3d:2c:a8:53:3e:16:a4:97:bd:f6:eb:89:ef:9a:
1b:56:8c:e0:f5:b5:0e:6d:46:ed:74:d7:84:0a:71:a5:a8:75:
19:98:f3:7a:10:00:e9:7d:15:2c:23:44:09:e7:d4:99:a6:48:
97:51:83:a2:cc:14:ab:1d:84:41:10:e8:10:4e:a8:84:57:0f:
db:6d:ee:32:4b:98:ce:b6:05:ea:84:2c:59:d5:fb:c1:29:01:
10:14:ea:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 06:55:37 2026 by rpki-client