Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36426B7/862E8F282FBD11F0B637FFE1DAE4EC9C/B4A0F8A6520711F1BF72BDA6CE1D38B0.roa
File: B4A0F8A6520711F1BF72BDA6CE1D38B0.roa (raw, json)
Hash identifier: oRF4h5IZqjsI7CIR7BIVA64gPDt3TUtVrtZGjoTOFL8=
Subject key identifier: CD:9A:8A:1B:76:6A:34:DD:B7:67:9B:F9:44:4B:5B:21:1B:AF:9D:DA
Certificate issuer: /CN=F36426B7AF/serialNumber=606F5AB880BF259D4DCB66A061E153ECC8ED56BC
Certificate serial: 017C
Authority key identifier: 60:6F:5A:B8:80:BF:25:9D:4D:CB:66:A0:61:E1:53:EC:C8:ED:56:BC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/YG9auIC_JZ1Ny2agYeFT7MjtVrw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36426B7/862E8F282FBD11F0B637FFE1DAE4EC9C/B4A0F8A6520711F1BF72BDA6CE1D38B0.roa
Signing time: Sun 17 May 2026 15:47:28 +0000
ROA not before: Sun 17 May 2026 15:47:23 +0000
ROA not after: Wed 31 Mar 2027 15:47:23 +0000
asID: 30990
IP address blocks: 41.189.224.0/19 maxlen: 24
102.202.232.0/22 maxlen: 24
196.201.192.0/20 maxlen: 24
197.241.0.0/17 maxlen: 24
2001:4298::/32 maxlen: 128
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36426B7/862E8F282FBD11F0B637FFE1DAE4EC9C/YG9auIC_JZ1Ny2agYeFT7MjtVrw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36426B7/862E8F282FBD11F0B637FFE1DAE4EC9C/YG9auIC_JZ1Ny2agYeFT7MjtVrw.mft
rsync://rpki.afrinic.net/repository/afrinic/YG9auIC_JZ1Ny2agYeFT7MjtVrw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 14 Jun 2026 04:51:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 380 (0x17c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36426B7AF, serialNumber=606F5AB880BF259D4DCB66A061E153ECC8ED56BC
Validity
Not Before: May 17 15:47:23 2026 GMT
Not After : Mar 31 15:47:23 2027 GMT
Subject: CN=6a09e310-c43f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:50:b8:0d:ed:f9:01:d6:52:4f:78:ed:fd:2a:
7c:d6:5e:39:2b:4b:47:0a:52:0e:ba:06:60:de:24:
0a:cb:aa:e5:c8:26:e8:2e:b2:e7:26:e1:29:87:67:
b4:dc:3b:4d:0f:53:88:13:9d:c5:dd:04:7b:c5:a0:
3f:18:09:f3:fa:db:b5:63:df:44:db:1e:b8:61:d9:
12:c3:db:4f:62:4e:48:a8:4c:ab:21:fe:c0:d7:23:
0d:d0:49:af:a0:7d:95:99:9c:9f:e0:61:07:86:bb:
65:0d:8b:2d:c6:1a:5b:9c:dc:01:e4:c3:76:72:d1:
54:7b:e0:f4:11:24:be:3e:a7:6a:b3:71:8d:f8:7f:
20:18:07:1d:9e:62:98:67:d0:bd:02:5c:2c:86:dd:
1b:8c:1e:a1:3b:07:ba:80:d6:87:55:6e:43:72:3f:
03:16:c1:e5:77:32:19:bd:11:65:a8:20:fd:a5:59:
d7:3d:2f:40:74:7b:9a:13:20:80:d1:33:68:14:6b:
8b:a1:8e:04:f5:26:aa:02:57:e7:ab:de:81:cf:37:
52:a4:23:48:49:8c:90:d8:26:9a:12:95:c9:db:a3:
89:97:2a:04:5d:d4:21:91:2d:97:91:c5:3b:47:fa:
10:60:ab:54:db:df:84:61:ed:bc:33:6d:d2:53:b8:
4a:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:9A:8A:1B:76:6A:34:DD:B7:67:9B:F9:44:4B:5B:21:1B:AF:9D:DA
X509v3 Authority Key Identifier:
keyid:60:6F:5A:B8:80:BF:25:9D:4D:CB:66:A0:61:E1:53:EC:C8:ED:56:BC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36426B7/862E8F282FBD11F0B637FFE1DAE4EC9C/YG9auIC_JZ1Ny2agYeFT7MjtVrw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/YG9auIC_JZ1Ny2agYeFT7MjtVrw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36426B7/862E8F282FBD11F0B637FFE1DAE4EC9C/B4A0F8A6520711F1BF72BDA6CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.189.224.0/19
102.202.232.0/22
196.201.192.0/20
197.241.0.0/17
IPv6:
2001:4298::/32
Signature Algorithm: sha256WithRSAEncryption
1f:69:a1:fa:da:50:d5:7a:aa:db:3f:c0:c7:60:7d:99:c0:cf:
06:00:30:bd:0e:8c:71:2e:a5:3f:49:26:78:7b:3e:91:04:26:
62:ca:b4:8d:9f:f3:a5:25:18:23:13:3e:3b:4e:0e:ff:b1:1e:
ab:e5:ec:1b:3c:6d:86:d1:90:4f:4c:40:6b:2d:de:53:c9:ab:
90:3f:c4:50:cb:c4:3c:93:9c:6d:69:2f:35:4e:ea:e6:80:7f:
73:df:60:79:83:ea:a0:50:01:08:1b:4f:b6:b5:a3:34:49:d6:
5a:86:18:a4:5a:f6:14:89:d6:63:94:a5:5c:68:28:4a:ef:b2:
36:eb:6c:5c:62:bc:c6:02:db:e0:7b:25:30:68:43:bf:96:83:
39:ba:1f:83:49:fd:19:e0:92:b5:90:19:98:2d:dd:5d:24:d0:
2b:b9:95:c6:53:c1:7d:e7:d0:e8:1c:4d:ab:76:20:85:e2:3b:
99:50:cb:61:fd:4f:50:01:21:e3:39:3c:99:19:58:0e:c9:99:
30:a4:73:b3:9c:1e:d8:dc:13:85:21:de:c2:6a:39:89:a7:90:
1b:80:48:b7:b2:a5:2d:40:56:da:0c:6a:e2:1f:82:0c:87:48:
2b:30:c4:ff:b4:8e:40:fe:b9:9c:02:7d:31:8c:df:99:fb:9c:
3d:11:43:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 05:52:53 2026 by rpki-client