Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3663CEE/1FBC442083BE11EA8A65B730F8AEA228/7780EF6C630A11F180A1E4B2CE1D38B0.roa
File: 7780EF6C630A11F180A1E4B2CE1D38B0.roa (raw, json)
Hash identifier: fkIhbGcLK27MDR00HJfXuZdrNmz7WeoBwxqN+OBnQWA=
Subject key identifier: CE:3D:EE:3A:49:F9:4A:17:42:27:82:2C:9F:34:52:CC:6A:DA:26:EA
Certificate issuer: /CN=F3663CEEAF/serialNumber=CB88587527B383916CC0B1D8866653C33431E45D
Certificate serial: 0906
Authority key identifier: CB:88:58:75:27:B3:83:91:6C:C0:B1:D8:86:66:53:C3:34:31:E4:5D
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/y4hYdSezg5FswLHYhmZTwzQx5F0.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3663CEE/1FBC442083BE11EA8A65B730F8AEA228/7780EF6C630A11F180A1E4B2CE1D38B0.roa
Signing time: Mon 08 Jun 2026 07:20:03 +0000
ROA not before: Mon 08 Jun 2026 07:19:57 +0000
ROA not after: Sun 08 Jun 2036 07:19:57 +0000
asID: 327693
IP address blocks: 41.76.224.0/21 maxlen: 24
102.67.176.0/21 maxlen: 24
154.73.184.0/21 maxlen: 24
2c0f:f708::/32 maxlen: 48
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3663CEE/1FBC442083BE11EA8A65B730F8AEA228/y4hYdSezg5FswLHYhmZTwzQx5F0.crl
rsync://rpki.afrinic.net/repository/member_repository/F3663CEE/1FBC442083BE11EA8A65B730F8AEA228/y4hYdSezg5FswLHYhmZTwzQx5F0.mft
rsync://rpki.afrinic.net/repository/afrinic/y4hYdSezg5FswLHYhmZTwzQx5F0.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 15 Jun 2026 00:07:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2310 (0x906)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3663CEEAF, serialNumber=CB88587527B383916CC0B1D8866653C33431E45D
Validity
Not Before: Jun 8 07:19:57 2026 GMT
Not After : Jun 8 07:19:57 2036 GMT
Subject: CN=6a266d23-ddf5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:4d:03:60:b1:f8:78:60:ff:fb:7b:90:ea:f0:
67:b5:95:c2:30:9f:4a:1b:41:75:c0:c5:30:d5:f4:
04:35:c2:cc:7e:4e:e5:8e:2d:48:57:1f:38:c6:83:
f8:96:7a:c4:64:48:52:62:09:c4:a0:28:e2:2e:01:
e3:a0:c5:e3:a1:7a:34:1f:21:2f:21:c2:90:be:16:
66:fc:8d:bb:33:dd:94:8d:c1:ac:91:d8:e7:a9:19:
5b:f9:e9:3c:c8:1a:83:85:a6:bc:e5:9c:f5:dd:b4:
b9:e2:de:4d:81:38:f9:2b:9c:20:bb:5a:7d:85:44:
d6:7d:cb:4d:b3:b2:4b:25:ff:2a:25:2c:ea:6f:04:
b4:bd:e2:e3:66:1b:b7:db:e8:dd:aa:69:ee:49:af:
da:2c:59:f9:31:51:ac:27:92:46:04:41:af:a4:4d:
32:5e:ce:a5:b6:25:a4:34:e0:1c:5e:2e:d5:fc:a0:
72:68:a8:7a:55:62:c5:64:10:67:d9:41:23:67:40:
6a:f5:0c:9d:ec:07:17:c7:56:fd:27:2e:f1:fc:6f:
8c:f1:a1:3e:c9:6f:42:1d:e8:46:84:a6:f5:45:61:
ad:a1:ed:8f:48:53:fb:fe:33:48:4b:4c:97:ed:eb:
ff:82:6d:2b:d4:5d:e8:36:12:8b:d3:ec:b9:10:81:
7a:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:3D:EE:3A:49:F9:4A:17:42:27:82:2C:9F:34:52:CC:6A:DA:26:EA
X509v3 Authority Key Identifier:
keyid:CB:88:58:75:27:B3:83:91:6C:C0:B1:D8:86:66:53:C3:34:31:E4:5D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3663CEE/1FBC442083BE11EA8A65B730F8AEA228/y4hYdSezg5FswLHYhmZTwzQx5F0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/y4hYdSezg5FswLHYhmZTwzQx5F0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3663CEE/1FBC442083BE11EA8A65B730F8AEA228/7780EF6C630A11F180A1E4B2CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.76.224.0/21
102.67.176.0/21
154.73.184.0/21
IPv6:
2c0f:f708::/32
Signature Algorithm: sha256WithRSAEncryption
63:4f:d6:b0:03:f9:a7:6e:fb:36:c3:11:9b:f4:08:b9:72:bc:
b9:6e:b1:9c:4c:03:ca:c9:dd:3a:e4:3d:32:99:93:97:2e:3c:
70:4c:2d:f7:20:d0:2a:fd:64:f2:90:f6:78:76:11:38:c3:41:
70:08:25:59:dd:2e:85:c5:f5:5c:54:88:18:04:29:32:20:10:
91:d8:ce:95:70:1e:6e:1b:7b:b3:07:92:c7:d3:36:71:a5:b8:
d5:a9:e2:54:56:85:89:4c:0b:1e:3c:cc:0e:c3:8e:e5:02:0a:
ae:2b:5a:99:17:21:3b:9e:b0:1a:bb:40:a7:7a:bd:60:98:2f:
08:44:91:18:89:d4:96:12:f9:00:91:ab:04:6f:3f:f8:db:93:
33:8d:4c:6e:f9:64:fb:7c:32:38:b7:d4:22:d8:8c:0a:50:45:
ca:fc:d4:ed:35:52:80:b8:27:19:b2:aa:e8:4b:ad:a5:28:46:
55:b5:dc:e5:7b:23:ee:45:20:25:e0:4e:8b:31:c1:e4:78:e0:
bc:c1:b8:ad:8f:23:52:19:16:d8:41:7b:43:40:c6:e3:68:77:
3a:ff:9a:b3:47:83:c8:93:93:f1:fa:cb:f7:0a:c5:bf:d1:4a:
6e:d9:8a:ff:25:20:57:e9:0e:79:42:2e:83:32:fe:7a:09:4c:
50:1d:ac:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 05:53:59 2026 by rpki-client