Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36F0628/F0CCBE7CFBA011EBAB786C49D8A014CE/973F091E1FB311F18E80869FDAE4EC9C.roa
File: 973F091E1FB311F18E80869FDAE4EC9C.roa (raw, json)
Hash identifier: CzHZTufJFyhjGHkpFVZuM6wyww8c6DnqEF6oCbO8Cz0=
Subject key identifier: 88:43:4B:78:A1:57:7D:86:88:58:A0:66:AC:5E:6D:33:37:A8:F3:F6
Certificate issuer: /CN=F36F0628AF/serialNumber=8605D7599A0402F70EC2F258D6C16BD2E4E8D1FE
Certificate serial: 075D
Authority key identifier: 86:05:D7:59:9A:04:02:F7:0E:C2:F2:58:D6:C1:6B:D2:E4:E8:D1:FE
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/hgXXWZoEAvcOwvJY1sFr0uTo0f4.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36F0628/F0CCBE7CFBA011EBAB786C49D8A014CE/973F091E1FB311F18E80869FDAE4EC9C.roa
Signing time: Sat 14 Mar 2026 14:39:23 +0000
ROA not before: Sat 14 Mar 2026 14:39:18 +0000
ROA not after: Sun 14 Mar 2027 14:39:18 +0000
asID: 6079
IP address blocks: 196.44.126.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36F0628/F0CCBE7CFBA011EBAB786C49D8A014CE/hgXXWZoEAvcOwvJY1sFr0uTo0f4.crl
rsync://rpki.afrinic.net/repository/member_repository/F36F0628/F0CCBE7CFBA011EBAB786C49D8A014CE/hgXXWZoEAvcOwvJY1sFr0uTo0f4.mft
rsync://rpki.afrinic.net/repository/afrinic/hgXXWZoEAvcOwvJY1sFr0uTo0f4.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 28 Mar 2026 00:07:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1885 (0x75d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36F0628AF, serialNumber=8605D7599A0402F70EC2F258D6C16BD2E4E8D1FE
Validity
Not Before: Mar 14 14:39:18 2026 GMT
Not After : Mar 14 14:39:18 2027 GMT
Subject: CN=69b5731b-7d53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:38:cb:a9:ab:af:31:74:10:55:6b:44:39:0a:
69:90:32:15:ee:4a:37:6b:85:6e:fe:02:d9:62:68:
b6:d8:b2:e8:b0:5f:6e:c0:95:9d:eb:63:4f:5d:4d:
bf:5f:4e:3e:01:16:1d:2c:ee:d6:ad:5a:6d:3b:31:
11:fa:bc:33:74:7b:ab:8e:a9:6c:47:d6:b4:a4:0c:
52:79:13:0e:27:27:7e:6d:ce:64:b2:a9:5e:a2:8e:
ad:5b:d7:2d:4b:49:e3:a7:17:43:27:c3:e4:5d:4f:
be:e5:b8:f0:51:69:49:33:df:ff:22:28:1c:d5:d8:
44:1f:25:f7:47:c2:55:4b:6b:9b:9d:06:2b:7e:83:
d9:95:01:1d:b5:69:7d:da:ef:6d:0a:27:04:af:89:
0b:6b:7f:68:1a:08:f3:25:70:5d:6b:cb:0d:c8:ed:
ad:15:cf:e2:df:9b:be:f0:48:b0:37:7b:65:c1:39:
d2:0d:8f:a8:85:b1:3f:21:59:da:60:f9:41:b7:db:
ce:83:c6:19:55:0e:ed:02:e4:96:d0:af:1c:54:17:
b9:bc:29:27:4d:db:8b:eb:12:7c:15:25:4d:de:83:
18:32:4d:80:af:ba:28:40:e3:29:49:cd:6a:b4:55:
8b:29:b5:7b:6e:62:bf:12:dc:4e:df:4d:de:c7:3e:
a5:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:43:4B:78:A1:57:7D:86:88:58:A0:66:AC:5E:6D:33:37:A8:F3:F6
X509v3 Authority Key Identifier:
keyid:86:05:D7:59:9A:04:02:F7:0E:C2:F2:58:D6:C1:6B:D2:E4:E8:D1:FE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36F0628/F0CCBE7CFBA011EBAB786C49D8A014CE/hgXXWZoEAvcOwvJY1sFr0uTo0f4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/hgXXWZoEAvcOwvJY1sFr0uTo0f4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36F0628/F0CCBE7CFBA011EBAB786C49D8A014CE/973F091E1FB311F18E80869FDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.44.126.0/24
Signature Algorithm: sha256WithRSAEncryption
05:41:da:43:c2:87:11:e4:d2:77:ba:90:e6:9d:98:67:a7:8f:
cc:8b:7b:d6:f2:f4:29:c5:37:3a:48:ad:d3:b3:d2:1e:06:cf:
fb:7e:1d:c8:de:57:e2:d9:e3:0d:14:e3:ed:1c:a7:0c:42:3e:
45:68:9a:b0:45:34:b2:77:2f:ec:53:91:6d:58:67:28:5a:85:
20:c1:7f:3f:02:37:44:70:75:65:c6:85:6b:50:c4:81:62:3f:
cd:40:f3:a1:5b:ac:8c:49:24:9a:31:e7:c0:be:cc:f2:bd:84:
1b:8a:8c:73:b8:c2:5d:07:ea:26:1c:a4:43:ba:0e:d1:65:c2:
7c:21:af:42:a2:df:ec:1e:39:0e:0b:fd:8c:0b:82:24:aa:57:
78:e1:c2:75:c8:b2:f0:82:c7:2e:9d:8d:65:2a:59:e4:11:b8:
61:57:e2:bf:b6:ad:af:a2:f8:dd:66:87:07:6b:41:85:2f:bd:
9a:d3:62:39:89:cd:da:8e:e0:29:78:84:96:89:92:23:1c:da:
18:29:78:39:29:a6:cc:4d:95:15:2a:9d:2f:1d:42:11:03:a2:
8e:a1:cf:73:17:5b:bf:64:f2:d2:02:33:4d:9b:ff:fe:15:9c:
04:38:23:6d:d9:fa:d7:96:16:40:25:aa:4d:3a:35:68:df:b5:
19:b4:a1:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 13:43:27 2026 by rpki-client