Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3633DE5/FCF32D62108111F1BB49558FDAE4EC9C/E212FF1A118811F1BB5DD4D1DAE4EC9C.roa
File: E212FF1A118811F1BB5DD4D1DAE4EC9C.roa (raw, json)
Hash identifier: LyN13ZxZWbnnocbTKmNDNHfltdE66o4GJwgUNjqQnHY=
Subject key identifier: FE:53:D0:DA:77:4F:FC:28:AC:69:A9:A8:88:3C:30:97:1E:B4:68:2D
Certificate issuer: /CN=F3633DE5AF/serialNumber=5B44F82434AA717A05F645279483D6986F76BAD4
Certificate serial: 07
Authority key identifier: 5B:44:F8:24:34:AA:71:7A:05:F6:45:27:94:83:D6:98:6F:76:BA:D4
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/W0T4JDSqcXoF9kUnlIPWmG92utQ.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3633DE5/FCF32D62108111F1BB49558FDAE4EC9C/E212FF1A118811F1BB5DD4D1DAE4EC9C.roa
Signing time: Tue 24 Feb 2026 13:58:23 +0000
ROA not before: Tue 24 Feb 2026 13:58:19 +0000
ROA not after: Mon 01 Mar 2027 13:58:19 +0000
asID: 328555
IP address blocks: 102.211.40.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3633DE5/FCF32D62108111F1BB49558FDAE4EC9C/W0T4JDSqcXoF9kUnlIPWmG92utQ.crl
rsync://rpki.afrinic.net/repository/member_repository/F3633DE5/FCF32D62108111F1BB49558FDAE4EC9C/W0T4JDSqcXoF9kUnlIPWmG92utQ.mft
rsync://rpki.afrinic.net/repository/afrinic/W0T4JDSqcXoF9kUnlIPWmG92utQ.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 03 Mar 2026 03:42:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7 (0x7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3633DE5AF, serialNumber=5B44F82434AA717A05F645279483D6986F76BAD4
Validity
Not Before: Feb 24 13:58:19 2026 GMT
Not After : Mar 1 13:58:19 2027 GMT
Subject: CN=699dae7f-e264
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:d0:60:5d:8b:78:4a:e2:4d:65:ea:5d:1f:0a:
48:5f:78:b8:83:5d:a4:20:0e:e3:40:45:ca:08:67:
1c:c1:14:73:2d:a0:da:81:47:59:ea:6a:f0:69:52:
be:0d:06:2a:32:35:80:16:39:f6:30:93:46:2a:45:
18:5d:68:7d:11:a6:33:44:df:28:3d:9e:64:c5:bc:
9b:73:26:ce:66:ab:c5:14:2c:0a:36:3e:35:c1:e8:
0f:de:02:c9:2f:3b:e6:fc:4a:f0:d5:5d:66:73:03:
6f:af:cf:ff:3d:22:50:89:ad:8e:fb:d7:fd:2f:7d:
ba:38:ac:7e:b0:12:62:f1:89:5b:8b:ec:25:a6:12:
51:d3:b9:76:9c:7a:ce:85:72:55:de:f9:e2:7d:36:
98:b8:72:40:f9:f1:a3:b7:3a:63:45:80:05:b2:14:
5d:ff:57:57:7b:e6:8a:0f:40:90:a4:45:b4:0e:e8:
c3:cc:a8:e2:39:cd:be:7b:5e:87:24:b1:30:64:61:
8a:7c:4d:91:72:c6:c8:2f:45:4a:6d:db:a3:40:56:
99:0d:7c:1a:5b:2a:ff:58:8a:3a:34:f8:aa:e6:c5:
e8:3f:2f:e7:aa:84:1f:74:59:d4:fd:36:44:0b:86:
aa:ac:68:e2:db:a9:b2:ca:3a:0f:7f:b3:f2:c3:9b:
92:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:53:D0:DA:77:4F:FC:28:AC:69:A9:A8:88:3C:30:97:1E:B4:68:2D
X509v3 Authority Key Identifier:
keyid:5B:44:F8:24:34:AA:71:7A:05:F6:45:27:94:83:D6:98:6F:76:BA:D4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3633DE5/FCF32D62108111F1BB49558FDAE4EC9C/W0T4JDSqcXoF9kUnlIPWmG92utQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/W0T4JDSqcXoF9kUnlIPWmG92utQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3633DE5/FCF32D62108111F1BB49558FDAE4EC9C/E212FF1A118811F1BB5DD4D1DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.211.40.0/22
Signature Algorithm: sha256WithRSAEncryption
88:1d:fd:97:15:cb:4b:24:93:71:eb:d4:97:60:a0:a8:9a:c4:
1c:f1:ef:0f:59:29:28:da:96:e8:7c:35:a0:2e:cc:8f:ce:e9:
06:c6:79:54:0e:ec:07:27:2b:69:3c:c7:74:84:ab:5a:83:37:
f7:6f:e0:44:17:cc:ba:26:ec:af:0a:b9:99:dd:6a:80:53:ea:
02:e7:a7:1b:aa:48:da:fe:bb:71:0e:7d:66:d3:bd:9d:82:ae:
d7:70:6e:cd:fb:c0:a1:ef:4d:ff:a9:d7:1a:a0:0d:10:29:e1:
a8:01:48:f5:2e:c4:a2:31:22:ca:74:5a:20:22:2f:35:0d:95:
1b:88:1a:fc:51:68:b6:e1:25:f0:4f:d2:a5:8f:59:99:8e:66:
57:19:4b:4b:18:84:f3:4a:dc:f0:3d:e5:f7:21:94:b3:20:bf:
86:c0:e5:0b:9c:12:9d:f7:43:32:c6:15:b9:f0:71:6b:c0:18:
81:94:3d:b7:9c:da:85:0e:2d:86:5e:33:57:45:b6:20:ca:6b:
7d:7d:94:be:58:62:56:dc:5d:04:83:0b:d7:cd:ef:af:dc:77:
dc:07:47:bd:4d:b9:99:77:9c:bd:b5:96:d5:26:5d:2a:6a:f0:
d1:b1:a1:56:04:84:85:86:bf:11:f8:eb:6f:7d:c2:2f:38:59:
ad:1f:a0:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 04:31:32 2026 by rpki-client