Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3633DE5/FCF32D62108111F1BB49558FDAE4EC9C/07F034A0118911F189A69ED3DAE4EC9C.roa
File: 07F034A0118911F189A69ED3DAE4EC9C.roa (raw, json)
Hash identifier: 7d03e258Z45lOJ6Bi0wf1CYWNnr0zvsz3BVx70CiUAU=
Subject key identifier: 7E:09:7C:09:5F:87:D3:18:AD:73:83:04:21:BA:D4:46:0A:DA:76:89
Certificate issuer: /CN=F3633DE5AF/serialNumber=5B44F82434AA717A05F645279483D6986F76BAD4
Certificate serial: 09
Authority key identifier: 5B:44:F8:24:34:AA:71:7A:05:F6:45:27:94:83:D6:98:6F:76:BA:D4
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/W0T4JDSqcXoF9kUnlIPWmG92utQ.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3633DE5/FCF32D62108111F1BB49558FDAE4EC9C/07F034A0118911F189A69ED3DAE4EC9C.roa
Signing time: Tue 24 Feb 2026 13:59:27 +0000
ROA not before: Tue 24 Feb 2026 13:59:23 +0000
ROA not after: Mon 01 Mar 2027 13:59:23 +0000
asID: 328555
IP address blocks: 102.36.228.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3633DE5/FCF32D62108111F1BB49558FDAE4EC9C/W0T4JDSqcXoF9kUnlIPWmG92utQ.crl
rsync://rpki.afrinic.net/repository/member_repository/F3633DE5/FCF32D62108111F1BB49558FDAE4EC9C/W0T4JDSqcXoF9kUnlIPWmG92utQ.mft
rsync://rpki.afrinic.net/repository/afrinic/W0T4JDSqcXoF9kUnlIPWmG92utQ.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 03 Mar 2026 03:42:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9 (0x9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3633DE5AF, serialNumber=5B44F82434AA717A05F645279483D6986F76BAD4
Validity
Not Before: Feb 24 13:59:23 2026 GMT
Not After : Mar 1 13:59:23 2027 GMT
Subject: CN=699daebf-405a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:e6:7b:69:4b:e3:b1:26:60:0d:c6:40:07:4e:
7f:9c:9f:a1:ab:ef:5a:c4:dc:78:30:d2:b8:46:9f:
a2:95:1d:80:36:ed:b1:6c:47:8c:d0:9a:33:9b:cb:
d9:59:72:85:2a:1a:7c:37:16:6a:4f:42:44:e4:ef:
3a:47:0b:03:db:7a:26:0b:d1:bb:78:90:b1:d2:5e:
f7:c1:c7:3c:38:5a:e9:58:ca:e7:6b:e9:f6:7f:38:
63:ba:4c:fd:1b:8d:0a:b7:33:8b:ac:10:94:77:17:
53:e9:95:37:51:13:cb:87:4e:f3:f9:bd:c5:46:5f:
f5:0e:8b:06:2e:7e:93:93:6e:d7:5e:ee:20:f5:a8:
93:10:f5:99:21:57:56:55:ec:99:d5:89:e9:40:52:
3c:21:4f:f9:f0:d7:65:75:23:94:84:9b:d2:6b:5c:
fa:a2:e8:b6:bd:72:fe:ca:76:af:ed:d2:a4:67:b7:
8d:ae:c0:91:3d:e1:09:c0:80:e6:c9:a1:ad:cf:98:
02:6e:c2:7c:ec:55:ef:2f:da:c2:9b:17:ee:40:09:
06:1a:cd:5c:c6:44:83:4a:bc:63:d4:99:3f:e7:8d:
53:10:6e:68:66:71:aa:43:af:53:2d:95:f6:ca:18:
a9:79:b5:c9:e1:93:59:89:7e:9a:d8:da:a5:f7:9e:
cf:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:09:7C:09:5F:87:D3:18:AD:73:83:04:21:BA:D4:46:0A:DA:76:89
X509v3 Authority Key Identifier:
keyid:5B:44:F8:24:34:AA:71:7A:05:F6:45:27:94:83:D6:98:6F:76:BA:D4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3633DE5/FCF32D62108111F1BB49558FDAE4EC9C/W0T4JDSqcXoF9kUnlIPWmG92utQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/W0T4JDSqcXoF9kUnlIPWmG92utQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3633DE5/FCF32D62108111F1BB49558FDAE4EC9C/07F034A0118911F189A69ED3DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.36.228.0/22
Signature Algorithm: sha256WithRSAEncryption
0f:74:00:43:ae:ed:83:af:55:fc:3a:93:6a:5a:f6:2f:3b:66:
dd:51:8d:5a:10:7d:ad:02:67:b8:bd:65:eb:da:7a:73:fc:78:
bc:7e:6b:aa:14:41:48:bc:35:33:5c:3b:e5:fc:41:4d:ca:07:
59:88:8a:ce:88:9c:cc:8c:1c:dc:ec:13:22:68:b3:f8:ff:7a:
d6:7f:da:70:3b:de:7b:7c:9f:d5:e6:e0:92:37:8b:b8:67:6b:
20:d7:a2:88:0c:07:fb:2f:50:c6:30:38:3c:1e:20:67:1a:bf:
54:fb:a1:cc:19:e2:68:92:a7:8b:41:40:59:94:f6:60:8f:3c:
5e:fd:47:56:02:82:ce:3b:5f:f0:18:aa:95:a2:e1:46:3b:2b:
77:e1:8d:49:d2:91:6e:7d:4b:64:b1:06:d2:7b:53:15:4a:d7:
e5:98:f5:0f:42:0b:79:bd:e0:6d:7c:7e:22:2d:09:db:e4:1f:
2b:9e:9a:40:f9:02:d9:f4:70:43:5c:79:42:4c:8a:79:ad:25:
66:d4:fa:6f:94:96:20:20:5a:64:e8:15:f8:af:0e:53:67:24:
8a:da:54:f5:9c:68:d1:b8:02:21:78:95:6a:39:5f:c7:4e:27:
bd:dd:95:f7:81:0d:42:bd:df:fe:a6:9d:a9:20:17:d7:1b:83:
ae:dc:1a:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 04:25:09 2026 by rpki-client