Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36EF7D0/36E40A16F2FB11ED821B9D804AD9E6FC/6FC0C0143B5411F191DBC8C9CE1D38B0.roa
File: 6FC0C0143B5411F191DBC8C9CE1D38B0.roa (raw, json)
Hash identifier: zQPoJkNhYZSRhY05WrlzxxCyYLOEWanKyNp+GepbRmk=
Subject key identifier: 4A:09:38:96:1F:1F:15:D2:24:91:D4:D6:62:56:49:B3:EB:8B:C7:57
Certificate issuer: /CN=F36EF7D0AF/serialNumber=3A553B6EF80BF922312F96B8DDC1F219A8C4121B
Certificate serial: 04E9
Authority key identifier: 3A:55:3B:6E:F8:0B:F9:22:31:2F:96:B8:DD:C1:F2:19:A8:C4:12:1B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/OlU7bvgL-SIxL5a43cHyGajEEhs.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36EF7D0/36E40A16F2FB11ED821B9D804AD9E6FC/6FC0C0143B5411F191DBC8C9CE1D38B0.roa
Signing time: Sat 18 Apr 2026 18:28:47 +0000
ROA not before: Sat 18 Apr 2026 18:28:41 +0000
ROA not after: Thu 18 Apr 2030 18:28:41 +0000
asID: 328769
IP address blocks: 102.211.232.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36EF7D0/36E40A16F2FB11ED821B9D804AD9E6FC/OlU7bvgL-SIxL5a43cHyGajEEhs.crl
rsync://rpki.afrinic.net/repository/member_repository/F36EF7D0/36E40A16F2FB11ED821B9D804AD9E6FC/OlU7bvgL-SIxL5a43cHyGajEEhs.mft
rsync://rpki.afrinic.net/repository/afrinic/OlU7bvgL-SIxL5a43cHyGajEEhs.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 15 May 2026 00:07:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1257 (0x4e9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36EF7D0AF, serialNumber=3A553B6EF80BF922312F96B8DDC1F219A8C4121B
Validity
Not Before: Apr 18 18:28:41 2026 GMT
Not After : Apr 18 18:28:41 2030 GMT
Subject: CN=69e3cd5e-0e01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:38:76:be:46:e5:dd:93:1b:b6:6a:c9:4d:5c:
85:72:72:30:f9:12:ab:e6:31:a0:f7:08:c9:36:a2:
55:b4:07:8b:f7:f4:b0:a4:e4:9a:c8:8d:ef:dc:87:
ec:9a:91:00:5a:59:30:fe:a2:ab:f1:ee:fa:4a:fe:
9d:35:3f:0e:ae:27:fe:e8:24:21:4f:48:e2:be:02:
9a:e4:6f:d9:58:f8:52:78:c2:b1:24:33:b6:bc:e9:
a8:f3:89:b2:05:24:2c:38:a2:a9:61:c1:a2:fc:01:
7e:53:76:33:86:5c:3b:fb:17:9a:2a:63:ed:9e:12:
36:c1:31:59:8c:a2:c8:eb:02:59:bc:fc:e3:ce:73:
5a:51:62:84:dd:02:7e:f6:15:ab:24:c6:0f:6b:14:
30:76:03:ce:09:0a:c1:89:77:75:2c:d1:7a:d5:d0:
3b:08:e6:da:fe:72:bc:5b:46:da:04:26:78:d4:14:
ee:18:12:cf:3e:b7:da:8d:4a:eb:f2:ca:16:0b:67:
2c:3d:38:00:78:b6:9f:a2:4a:c6:35:c8:4d:12:3c:
ff:d4:61:5d:89:ed:81:96:21:02:a8:15:12:6f:9b:
f7:e5:21:d6:61:32:96:88:fb:20:8a:2f:96:2d:f4:
57:19:d3:4b:21:d1:0d:f4:ef:5a:cb:b8:5a:8f:12:
ca:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:09:38:96:1F:1F:15:D2:24:91:D4:D6:62:56:49:B3:EB:8B:C7:57
X509v3 Authority Key Identifier:
keyid:3A:55:3B:6E:F8:0B:F9:22:31:2F:96:B8:DD:C1:F2:19:A8:C4:12:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36EF7D0/36E40A16F2FB11ED821B9D804AD9E6FC/OlU7bvgL-SIxL5a43cHyGajEEhs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/OlU7bvgL-SIxL5a43cHyGajEEhs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36EF7D0/36E40A16F2FB11ED821B9D804AD9E6FC/6FC0C0143B5411F191DBC8C9CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.211.232.0/24
Signature Algorithm: sha256WithRSAEncryption
55:96:3f:89:52:e5:a3:a5:06:31:24:43:f2:44:7c:de:d7:a3:
a2:0e:49:00:63:1b:f8:b6:e3:b4:5e:d5:ef:a0:98:1c:7e:8a:
de:a9:b4:2d:00:28:09:0a:32:c5:43:63:30:e5:4a:25:ee:56:
d4:90:f2:57:c9:1b:60:9a:f9:df:68:99:7e:29:f9:19:c1:96:
8b:00:a7:7e:02:dc:a6:0f:d8:88:09:2b:97:37:47:cd:60:c8:
f3:ce:02:b6:cb:8d:15:99:57:cb:8a:6b:91:4c:a5:b2:16:af:
99:0b:8e:7f:3b:ea:e1:fe:70:ca:b0:1c:46:6f:59:a9:57:3d:
f2:5d:c2:9f:28:33:5a:f5:b3:4f:d7:d8:bf:d4:0b:38:0f:82:
8b:d7:f2:b9:a8:82:70:07:b2:32:7d:9e:2b:9b:91:e9:0e:36:
0e:17:03:74:ca:b9:9e:81:87:bf:dd:13:1b:5f:4b:c2:f3:2f:
fc:b5:1d:f9:0c:f9:22:fc:51:57:16:52:f0:59:7b:69:29:4f:
f1:5a:76:f5:52:3e:5e:f9:a1:20:ab:8a:cf:2e:d5:bb:b9:65:
91:e9:82:12:66:90:0c:f4:b6:59:63:ab:b6:e7:4f:17:d7:9f:
7d:17:b6:f0:04:ca:f2:da:ee:aa:d9:71:05:54:d0:23:a2:63:
eb:60:ae:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 05:55:42 2026 by rpki-client