Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3611BE3/41ACFDB2D36911EBAC3AEA5BF8AEA228/1F605E1E5F6111F1B1647BE1CE1D38B0.roa
File: 1F605E1E5F6111F1B1647BE1CE1D38B0.roa (raw, json)
Hash identifier: yl0CwDRjIuSM+Md9J2J9BKDh29YuO7n0un1E5blyL5s=
Subject key identifier: 8B:75:A6:73:EE:62:7A:A4:7C:A8:DB:27:89:8B:5A:70:A6:09:1F:14
Certificate issuer: /CN=F3611BE3AF/serialNumber=ED6C9C2BDF76F362655A7E047B976DB2B0D02BEC
Certificate serial: 0762
Authority key identifier: ED:6C:9C:2B:DF:76:F3:62:65:5A:7E:04:7B:97:6D:B2:B0:D0:2B:EC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/7WycK99282JlWn4Ee5dtsrDQK-w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3611BE3/41ACFDB2D36911EBAC3AEA5BF8AEA228/1F605E1E5F6111F1B1647BE1CE1D38B0.roa
Signing time: Wed 03 Jun 2026 15:30:17 +0000
ROA not before: Wed 03 Jun 2026 15:30:12 +0000
ROA not after: Mon 02 Jun 2031 15:30:12 +0000
asID: 36943
IP address blocks: 41.61.0.0/16 maxlen: 24
41.185.0.0/16 maxlen: 24
196.43.195.0/24 maxlen: 24
196.220.32.0/19 maxlen: 24
2c0f:fe90::/32 maxlen: 48
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3611BE3/41ACFDB2D36911EBAC3AEA5BF8AEA228/7WycK99282JlWn4Ee5dtsrDQK-w.crl
rsync://rpki.afrinic.net/repository/member_repository/F3611BE3/41ACFDB2D36911EBAC3AEA5BF8AEA228/7WycK99282JlWn4Ee5dtsrDQK-w.mft
rsync://rpki.afrinic.net/repository/afrinic/7WycK99282JlWn4Ee5dtsrDQK-w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 15 Jun 2026 00:07:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1890 (0x762)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3611BE3AF, serialNumber=ED6C9C2BDF76F362655A7E047B976DB2B0D02BEC
Validity
Not Before: Jun 3 15:30:12 2026 GMT
Not After : Jun 2 15:30:12 2031 GMT
Subject: CN=6a204889-f8a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:c0:2c:f0:63:b3:d1:dd:a9:43:db:4d:24:a5:
ab:11:f4:32:f0:07:1c:78:08:b1:6d:6d:02:6e:68:
a4:36:74:23:4a:f4:b2:54:77:46:ef:08:da:0f:ee:
96:6b:bc:59:31:d2:4b:e0:25:3b:46:b3:d3:92:4e:
49:b2:aa:9d:43:59:91:bf:7c:fa:d8:11:bc:84:c3:
e6:89:17:3c:f8:28:0e:c8:ae:60:fa:14:18:ba:29:
b6:66:68:63:b7:91:05:e1:49:83:b7:3f:af:07:d4:
53:b4:b5:43:71:dd:c7:b1:71:d9:77:dd:60:e6:50:
39:a4:02:4f:ed:a7:97:1a:b4:5a:b7:b9:f0:9f:8b:
bb:9e:7b:e8:31:d5:01:8e:8c:0f:dc:56:06:3b:c3:
0f:44:57:e1:2d:81:55:65:18:4a:62:05:04:51:1e:
18:39:45:0a:cf:46:bc:ba:66:b0:89:5d:a1:10:f2:
48:4f:e9:d9:b0:fe:c0:b3:b8:93:67:0f:30:8a:37:
39:a4:c8:b2:cd:64:69:d2:ed:a1:00:b8:73:56:32:
40:78:67:e4:5d:b8:68:24:c2:6f:fa:4b:26:92:01:
fb:61:6f:fd:27:b7:2d:05:6a:56:1a:95:a9:20:56:
a4:08:7e:6c:83:53:61:97:26:5a:51:16:50:d0:ca:
a5:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:75:A6:73:EE:62:7A:A4:7C:A8:DB:27:89:8B:5A:70:A6:09:1F:14
X509v3 Authority Key Identifier:
keyid:ED:6C:9C:2B:DF:76:F3:62:65:5A:7E:04:7B:97:6D:B2:B0:D0:2B:EC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3611BE3/41ACFDB2D36911EBAC3AEA5BF8AEA228/7WycK99282JlWn4Ee5dtsrDQK-w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/7WycK99282JlWn4Ee5dtsrDQK-w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3611BE3/41ACFDB2D36911EBAC3AEA5BF8AEA228/1F605E1E5F6111F1B1647BE1CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.61.0.0/16
41.185.0.0/16
196.43.195.0/24
196.220.32.0/19
IPv6:
2c0f:fe90::/32
Signature Algorithm: sha256WithRSAEncryption
bd:ff:b9:43:dc:70:97:df:f4:8a:8b:61:75:fc:6b:d3:95:78:
cf:38:28:7b:84:95:36:79:c3:51:29:ff:c2:04:ba:33:5a:ce:
c1:ce:63:32:6d:a9:92:93:29:d8:35:f9:25:bf:6b:ec:67:b9:
25:d0:f9:e7:a4:87:5e:7c:91:5a:30:b8:21:6c:6c:3f:c8:55:
17:3a:ae:10:79:75:23:86:99:84:5b:bd:42:65:a6:a9:8a:5e:
db:00:86:6d:7d:84:c0:f6:6d:ad:cd:c2:9f:76:10:55:5e:75:
3a:51:ce:9a:ff:05:c9:1b:47:06:09:a1:45:17:2e:a5:b5:6c:
ab:0e:03:b1:96:41:8f:08:9f:b1:cb:85:ad:68:e3:59:ed:de:
64:e5:78:eb:76:bc:49:ca:27:a6:30:f7:69:d4:97:9a:a5:4f:
ab:a5:0c:b8:b1:d7:16:c9:63:a8:99:9f:e2:d7:a7:e5:11:c1:
03:5a:74:00:7d:53:7a:ad:62:94:b5:49:43:83:dd:3a:b7:8e:
a2:f2:8f:c8:4a:1d:49:d5:95:d6:d2:64:34:0d:d6:b2:1a:94:
5f:ef:5d:77:17:a0:cb:f1:cf:6f:94:99:8e:ec:13:d3:11:12:
8d:4f:f2:be:7c:d4:3b:1c:ad:12:ce:b8:a8:ca:d8:a1:53:e2:
bc:91:fe:9a
-----BEGIN CERTIFICATE-----
MIIFojCCBIqgAwIBAgICB2IwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
MTFCRTNBRjExMC8GA1UEBRMoRUQ2QzlDMkJERjc2RjM2MjY1NUE3RTA0N0I5NzZE
QjJCMEQwMkJFQzAeFw0yNjA2MDMxNTMwMTJaFw0zMTA2MDIxNTMwMTJaMBgxFjAU
BgNVBAMTDTZhMjA0ODg5LWY4YTMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQCiwCzwY7PR3alD200kpasR9DLwBxx4CLFtbQJuaKQ2dCNK9LJUd0bvCNoP
7pZrvFkx0kvgJTtGs9OSTkmyqp1DWZG/fPrYEbyEw+aJFzz4KA7IrmD6FBi6KbZm
aGO3kQXhSYO3P68H1FO0tUNx3cexcdl33WDmUDmkAk/tp5catFq3ufCfi7uee+gx
1QGOjA/cVgY7ww9EV+EtgVVlGEpiBQRRHhg5RQrPRry6ZrCJXaEQ8khP6dmw/sCz
uJNnDzCKNzmkyLLNZGnS7aEAuHNWMkB4Z+RduGgkwm/6SyaSAfthb/0nty0FalYa
lakgVqQIfmyDU2GXJlpRFlDQyqUfAgMBAAGjggLEMIICwDAdBgNVHQ4EFgQUi3Wm
c+5ieqR8qNsniYtacKYJHxQwHwYDVR0jBBgwFoAU7WycK99282JlWn4Ee5dtsrDQ
K+wwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjExQkUzLzQxQUNGREIyRDM2OTExRUJBQzNBRUE1QkY4QUVBMjI4LzdXeWNL
OTkyODJKbFduNEVlNWR0c3JEUUstdy5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljLzdXeWNLOTkyODJKbFduNEVlNWR0c3JEUUstdy5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjExQkUzLzQxQUNGREIyRDM2OTExRUJBQzNBRUE1QkY4
QUVBMjI4LzFGNjA1RTFFNUY2MTExRjFCMTY0N0JFMUNFMUQzOEIwLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwPgYIKwYBBQUHAQcBAf8ELzAtMBwEAgABMBYDAwApPQMDACm5AwQAxCvDAwQF
xNwgMA0EAgACMAcDBQAsD/6QMA0GCSqGSIb3DQEBCwUAA4IBAQC9/7lD3HCX3/SK
i2F1/GvTlXjPOCh7hJU2ecNRKf/CBLozWs7BzmMybamSkynYNfklv2vsZ7kl0Pnn
pIdefJFaMLghbGw/yFUXOq4QeXUjhpmEW71CZaapil7bAIZtfYTA9m2tzcKfdhBV
XnU6Uc6a/wXJG0cGCaFFFy6ltWyrDgOxlkGPCJ+xy4WtaONZ7d5k5XjrdrxJyiem
MPdp1JeapU+rpQy4sdcWyWOomZ/i16flEcEDWnQAfVN6rWKUtUlDg906t46i8o/I
Sh1J1ZXW0mQ0DdayGpRf7113F6DL8c9vlJmO7BPTERKNT/K+fNQ7HK0Szrioytih
U+K8kf6a
-----END CERTIFICATE-----
Generated at Sat Jun 13 13:41:30 2026 by rpki-client