Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3642818/9224B30A49FD11ED86901991F1222468/7318CAFC068B11F1B3ADE4C5DAE4EC9C.roa
File: 7318CAFC068B11F1B3ADE4C5DAE4EC9C.roa (raw, json)
Hash identifier: n40nUjLwRlCqHskgafPlAGCOiGivJPI1YmSXzTyPafc=
Subject key identifier: C8:60:2A:DF:EA:53:87:1F:9C:F0:1A:1C:61:71:80:62:7F:6B:1C:19
Certificate issuer: /CN=F3642818AF/serialNumber=8EAD4B914B6F7C928E12FE38D1C440BC5309C133
Certificate serial: 04F1
Authority key identifier: 8E:AD:4B:91:4B:6F:7C:92:8E:12:FE:38:D1:C4:40:BC:53:09:C1:33
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/jq1LkUtvfJKOEv440cRAvFMJwTM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3642818/9224B30A49FD11ED86901991F1222468/7318CAFC068B11F1B3ADE4C5DAE4EC9C.roa
Signing time: Tue 10 Feb 2026 14:19:03 +0000
ROA not before: Tue 10 Feb 2026 14:18:58 +0000
ROA not after: Mon 10 Feb 2031 14:18:58 +0000
asID: 36890
IP address blocks: 2c0f:f860::/32 maxlen: 128
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3642818/9224B30A49FD11ED86901991F1222468/jq1LkUtvfJKOEv440cRAvFMJwTM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3642818/9224B30A49FD11ED86901991F1222468/jq1LkUtvfJKOEv440cRAvFMJwTM.mft
rsync://rpki.afrinic.net/repository/afrinic/jq1LkUtvfJKOEv440cRAvFMJwTM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 04 Mar 2026 00:07:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1265 (0x4f1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3642818AF, serialNumber=8EAD4B914B6F7C928E12FE38D1C440BC5309C133
Validity
Not Before: Feb 10 14:18:58 2026 GMT
Not After : Feb 10 14:18:58 2031 GMT
Subject: CN=698b3e57-4138
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:23:10:9e:b8:cb:d1:0d:38:66:cf:a8:2a:9f:
ff:73:d7:d4:f9:be:89:73:c4:c7:bc:0f:b2:5f:dc:
6c:94:c3:77:c1:44:0e:5a:0c:24:26:56:81:cb:b9:
a7:ce:05:a6:cd:57:48:4b:d3:f8:60:12:6a:84:fc:
5d:d9:f6:63:15:b3:af:c1:ba:5b:da:c8:81:b9:7a:
82:46:0e:77:a2:0c:fc:7c:48:22:d0:53:91:e6:66:
ef:07:32:ca:6f:37:28:1d:d6:a3:68:02:03:0c:f9:
37:42:d4:87:e1:35:b4:6c:f3:bc:21:d5:11:60:2a:
90:72:84:b5:d2:aa:e1:03:ca:97:62:b7:e7:6f:9a:
87:07:29:82:ee:78:3a:a4:44:fb:ed:e9:24:56:cf:
b6:eb:1a:e3:9c:e7:dc:7e:be:63:bc:2b:0e:10:b2:
d8:b1:e4:d9:e8:17:ac:eb:84:45:d6:46:bc:58:f5:
0a:11:95:9c:a7:a9:eb:93:f3:45:d0:a1:11:e9:a6:
50:49:cc:91:79:44:d1:21:ad:5a:26:93:65:75:f6:
e4:f6:17:ac:6b:a1:99:6e:40:d8:9e:b5:99:72:21:
64:c7:a4:78:2e:2c:54:b5:e1:1b:ea:4f:cc:a3:67:
f6:26:10:cf:dc:60:61:ee:3d:22:fc:f9:6a:68:67:
eb:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:60:2A:DF:EA:53:87:1F:9C:F0:1A:1C:61:71:80:62:7F:6B:1C:19
X509v3 Authority Key Identifier:
keyid:8E:AD:4B:91:4B:6F:7C:92:8E:12:FE:38:D1:C4:40:BC:53:09:C1:33
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3642818/9224B30A49FD11ED86901991F1222468/jq1LkUtvfJKOEv440cRAvFMJwTM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/jq1LkUtvfJKOEv440cRAvFMJwTM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3642818/9224B30A49FD11ED86901991F1222468/7318CAFC068B11F1B3ADE4C5DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:f860::/32
Signature Algorithm: sha256WithRSAEncryption
9a:f9:45:24:32:5a:a8:5c:3b:11:aa:ae:b8:0b:e3:25:32:db:
1c:70:d8:d3:7b:b1:ff:94:51:0b:b1:52:7e:1c:6f:86:eb:bb:
e6:e8:9e:e6:23:50:d0:6b:05:78:45:c7:94:3b:8e:a5:96:27:
22:73:92:17:27:f7:fe:9f:36:7b:c3:00:00:31:f1:ec:4a:37:
4e:f5:05:a9:ed:20:7c:5d:cf:70:9b:0e:23:ae:9d:aa:1b:a0:
06:79:99:e7:49:86:1a:b6:b9:63:30:ed:1f:23:b7:f3:5b:ce:
fc:8c:61:3f:e0:5a:1e:04:1f:03:96:f1:e0:3f:ad:99:f0:a0:
4c:d1:08:d0:94:75:06:c0:57:97:3b:e9:7f:42:cd:be:0a:cd:
7a:ad:03:14:41:f6:40:11:2c:b5:2a:d8:53:6c:3d:08:68:ea:
99:ec:13:3b:a6:69:9d:12:f9:8f:3a:23:7b:a2:4a:66:3f:c1:
24:07:15:ec:58:61:73:e5:22:e6:cd:f1:d5:d8:ee:44:82:0a:
3e:6c:28:05:d2:a3:f5:89:ad:4c:4e:72:14:3f:66:9e:53:ba:
b5:50:25:78:d2:5d:73:8a:b0:c3:f6:53:06:5d:17:f9:78:de:
70:c0:e6:7f:d7:66:40:50:81:e8:23:ca:87:af:82:41:61:a3:
5d:7f:df:04
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICBPEwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
NDI4MThBRjExMC8GA1UEBRMoOEVBRDRCOTE0QjZGN0M5MjhFMTJGRTM4RDFDNDQw
QkM1MzA5QzEzMzAeFw0yNjAyMTAxNDE4NThaFw0zMTAyMTAxNDE4NThaMBgxFjAU
BgNVBAMTDTY5OGIzZTU3LTQxMzgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDGIxCeuMvRDThmz6gqn/9z19T5volzxMe8D7Jf3GyUw3fBRA5aDCQmVoHL
uafOBabNV0hL0/hgEmqE/F3Z9mMVs6/BulvayIG5eoJGDneiDPx8SCLQU5HmZu8H
MspvNygd1qNoAgMM+TdC1IfhNbRs87wh1RFgKpByhLXSquEDypdit+dvmocHKYLu
eDqkRPvt6SRWz7brGuOc59x+vmO8Kw4Qstix5NnoF6zrhEXWRrxY9QoRlZynqeuT
80XQoRHpplBJzJF5RNEhrVomk2V19uT2F6xroZluQNietZlyIWTHpHguLFS14Rvq
T8yjZ/YmEM/cYGHuPSL8+WpoZ+tBAgMBAAGjggKmMIICojAdBgNVHQ4EFgQUyGAq
3+pThx+c8BocYXGAYn9rHBkwHwYDVR0jBBgwFoAUjq1LkUtvfJKOEv440cRAvFMJ
wTMwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjQyODE4LzkyMjRCMzBBNDlGRDExRUQ4NjkwMTk5MUYxMjIyNDY4L2pxMUxr
VXR2ZkpLT0V2NDQwY1JBdkZNSndUTS5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL2pxMUxrVXR2ZkpLT0V2NDQwY1JBdkZNSndUTS5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjQyODE4LzkyMjRCMzBBNDlGRDExRUQ4NjkwMTk5MUYx
MjIyNDY4LzczMThDQUZDMDY4QjExRjFCM0FERTRDNURBRTRFQzlDLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAsD/hgMA0GCSqGSIb3DQEB
CwUAA4IBAQCa+UUkMlqoXDsRqq64C+MlMtsccNjTe7H/lFELsVJ+HG+G67vm6J7m
I1DQawV4RceUO46llicic5IXJ/f+nzZ7wwAAMfHsSjdO9QWp7SB8Xc9wmw4jrp2q
G6AGeZnnSYYatrljMO0fI7fzW878jGE/4FoeBB8DlvHgP62Z8KBM0QjQlHUGwFeX
O+l/Qs2+Cs16rQMUQfZAESy1KthTbD0IaOqZ7BM7pmmdEvmPOiN7okpmP8EkBxXs
WGFz5SLmzfHV2O5Eggo+bCgF0qP1ia1MTnIUP2aeU7q1UCV40l1zirDD9lMGXRf5
eN5wwOZ/12ZAUIHoI8qHr4JBYaNdf98E
-----END CERTIFICATE-----
Generated at Mon Mar 2 19:21:37 2026 by rpki-client