Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36180A1/4EB508143F5A11EFB5925070762E951A/398848402D1311F1BAA22FD5DAE4EC9C.roa
File: 398848402D1311F1BAA22FD5DAE4EC9C.roa (raw, json)
Hash identifier: yP7+AAFHj7Sjoi+sbE5FIStkJLQJ5hzb+Bv5zDj3YPY=
Subject key identifier: 68:31:10:A7:81:56:7C:89:F4:59:75:DB:7F:C3:9E:9D:73:9D:47:A5
Certificate issuer: /CN=F36180A1AF/serialNumber=D09A5AAD5A1773D86B1D26DD5D1C444FCCACF6E4
Certificate serial: 0288
Authority key identifier: D0:9A:5A:AD:5A:17:73:D8:6B:1D:26:DD:5D:1C:44:4F:CC:AC:F6:E4
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/0JparVoXc9hrHSbdXRxET8ys9uQ.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36180A1/4EB508143F5A11EFB5925070762E951A/398848402D1311F1BAA22FD5DAE4EC9C.roa
Signing time: Tue 31 Mar 2026 15:06:42 +0000
ROA not before: Tue 31 Mar 2026 15:06:37 +0000
ROA not after: Sun 30 Mar 2036 15:06:37 +0000
asID: 37153
IP address blocks: 41.72.128.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36180A1/4EB508143F5A11EFB5925070762E951A/0JparVoXc9hrHSbdXRxET8ys9uQ.crl
rsync://rpki.afrinic.net/repository/member_repository/F36180A1/4EB508143F5A11EFB5925070762E951A/0JparVoXc9hrHSbdXRxET8ys9uQ.mft
rsync://rpki.afrinic.net/repository/afrinic/0JparVoXc9hrHSbdXRxET8ys9uQ.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 04:17:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 648 (0x288)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36180A1AF, serialNumber=D09A5AAD5A1773D86B1D26DD5D1C444FCCACF6E4
Validity
Not Before: Mar 31 15:06:37 2026 GMT
Not After : Mar 30 15:06:37 2036 GMT
Subject: CN=69cbe302-3edc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:c1:a0:74:bd:b6:38:cf:b8:06:42:fe:6f:93:
04:27:9c:e1:45:1c:2d:15:04:f9:a8:96:44:86:aa:
e0:b3:cd:4d:95:1a:9f:95:58:d0:ee:a7:94:a4:6c:
26:8c:13:48:74:4b:69:cf:e5:71:38:a6:fe:8b:e0:
75:ed:9d:95:6d:9c:ef:cb:8c:62:04:9c:0e:b1:33:
db:3b:8f:c0:fb:70:02:42:0a:b0:92:49:0e:69:02:
6f:f7:3b:d4:41:f1:32:c7:89:b4:32:67:da:61:08:
f0:84:43:65:55:1e:58:51:7f:7b:21:82:44:fb:5c:
2e:4e:fe:5c:0d:02:23:5b:6c:0f:d7:11:72:40:97:
1d:f8:12:50:99:c3:31:5f:98:0e:45:f5:73:e6:a5:
ac:e2:1e:3a:34:51:5f:38:c2:e7:07:ef:1a:13:aa:
bf:20:54:75:c0:01:0c:6f:38:d3:9c:d7:5a:bb:27:
80:35:69:c1:a1:b0:2c:8c:80:9b:15:ed:c2:19:01:
4b:be:9d:0f:0e:ef:1a:e6:36:b0:de:98:54:d8:91:
b9:83:b6:9d:e6:06:eb:4e:c7:2c:40:a2:d3:07:00:
23:79:c2:08:3b:e9:a0:37:95:ae:2d:6b:6e:e1:b5:
5f:89:e5:93:fc:4e:b9:91:7f:e9:50:3e:58:28:36:
d3:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:31:10:A7:81:56:7C:89:F4:59:75:DB:7F:C3:9E:9D:73:9D:47:A5
X509v3 Authority Key Identifier:
keyid:D0:9A:5A:AD:5A:17:73:D8:6B:1D:26:DD:5D:1C:44:4F:CC:AC:F6:E4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36180A1/4EB508143F5A11EFB5925070762E951A/0JparVoXc9hrHSbdXRxET8ys9uQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/0JparVoXc9hrHSbdXRxET8ys9uQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36180A1/4EB508143F5A11EFB5925070762E951A/398848402D1311F1BAA22FD5DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.72.128.0/19
Signature Algorithm: sha256WithRSAEncryption
62:dc:74:d6:e4:70:a3:5e:26:88:f4:32:b3:e9:7d:6e:df:76:
40:47:f3:8b:05:1a:1c:08:5f:80:ce:1c:b5:73:b2:7a:37:79:
3e:aa:3e:fb:c4:ac:27:bf:f9:c2:78:ee:57:ad:f3:fe:b4:28:
fc:cf:75:c1:34:98:63:cd:98:54:eb:75:d5:f6:24:b4:9b:95:
77:86:f7:a9:17:f0:11:a3:e7:c7:4b:86:45:3a:78:ff:1d:a5:
54:31:b5:4e:dc:4b:7f:8e:15:d0:4c:77:73:25:8d:9d:b1:80:
61:61:a8:e1:30:04:ea:2c:a0:ec:52:d3:95:eb:c4:d8:37:c4:
9a:30:03:98:95:b7:5e:3f:10:8c:27:94:4a:a9:cc:93:14:7b:
a1:58:7c:a3:96:77:9b:15:ad:22:19:0f:98:8e:4a:56:a8:f7:
65:b8:48:65:64:fe:bf:f9:19:64:e8:2f:0c:fd:61:7b:0f:cb:
c0:c5:57:8a:15:08:59:cf:2c:e4:09:5d:75:ba:15:d9:3c:ff:
30:ed:8b:f7:8e:18:d7:a2:03:53:1c:26:59:34:6d:5a:4e:da:
83:f5:67:68:29:e5:50:19:01:d6:89:97:22:dc:e6:f5:d8:dc:
f1:5d:75:bf:e2:dd:0f:fb:80:16:f9:bf:c4:c0:89:5d:9d:b3:
8a:aa:bb:d2
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICAogwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
MTgwQTFBRjExMC8GA1UEBRMoRDA5QTVBQUQ1QTE3NzNEODZCMUQyNkRENUQxQzQ0
NEZDQ0FDRjZFNDAeFw0yNjAzMzExNTA2MzdaFw0zNjAzMzAxNTA2MzdaMBgxFjAU
BgNVBAMTDTY5Y2JlMzAyLTNlZGMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDDwaB0vbY4z7gGQv5vkwQnnOFFHC0VBPmolkSGquCzzU2VGp+VWNDup5Sk
bCaME0h0S2nP5XE4pv6L4HXtnZVtnO/LjGIEnA6xM9s7j8D7cAJCCrCSSQ5pAm/3
O9RB8TLHibQyZ9phCPCEQ2VVHlhRf3shgkT7XC5O/lwNAiNbbA/XEXJAlx34ElCZ
wzFfmA5F9XPmpaziHjo0UV84wucH7xoTqr8gVHXAAQxvONOc11q7J4A1acGhsCyM
gJsV7cIZAUu+nQ8O7xrmNrDemFTYkbmDtp3mButOxyxAotMHACN5wgg76aA3la4t
a27htV+J5ZP8TrmRf+lQPlgoNtOtAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUaDEQ
p4FWfIn0WXXbf8OenXOdR6UwHwYDVR0jBBgwFoAU0JparVoXc9hrHSbdXRxET8ys
9uQwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjE4MEExLzRFQjUwODE0M0Y1QTExRUZCNTkyNTA3MDc2MkU5NTFBLzBKcGFy
Vm9YYzlockhTYmRYUnhFVDh5czl1US5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljLzBKcGFyVm9YYzlockhTYmRYUnhFVDh5czl1US5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjE4MEExLzRFQjUwODE0M0Y1QTExRUZCNTkyNTA3MDc2
MkU5NTFBLzM5ODg0ODQwMkQxMzExRjFCQUEyMkZENURBRTRFQzlDLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAUpSIAwDQYJKoZIhvcNAQEL
BQADggEBAGLcdNbkcKNeJoj0MrPpfW7fdkBH84sFGhwIX4DOHLVzsno3eT6qPvvE
rCe/+cJ47let8/60KPzPdcE0mGPNmFTrddX2JLSblXeG96kX8BGj58dLhkU6eP8d
pVQxtU7cS3+OFdBMd3MljZ2xgGFhqOEwBOosoOxS05XrxNg3xJowA5iVt14/EIwn
lEqpzJMUe6FYfKOWd5sVrSIZD5iOSlao92W4SGVk/r/5GWToLwz9YXsPy8DFV4oV
CFnPLOQJXXW6Fdk8/zDti/eOGNeiA1McJlk0bVpO2oP1Z2gp5VAZAdaJlyLc5vXY
3PFddb/i3Q/7gBb5v8TAiV2ds4qqu9I=
-----END CERTIFICATE-----
Generated at Fri Apr 17 17:51:38 2026 by rpki-client