Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/D7BE18A439A311F1B885E7F4CE1D38B0.roa
File: D7BE18A439A311F1B885E7F4CE1D38B0.roa (raw, json)
Hash identifier: NpwIFtX4DBsyUR/vBteqUJP4vgDiznh4KFHPBXtlwEU=
Subject key identifier: 56:D5:8B:E4:C6:D5:15:11:FB:5F:B4:97:AB:AC:60:BE:82:DD:07:D5
Certificate issuer: /CN=F367B216AF/serialNumber=2F407FECD8B7DDDCA5D5B90A5E19589D06C101DC
Certificate serial: 0943
Authority key identifier: 2F:40:7F:EC:D8:B7:DD:DC:A5:D5:B9:0A:5E:19:58:9D:06:C1:01:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/L0B_7Ni33dyl1bkKXhlYnQbBAdw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/D7BE18A439A311F1B885E7F4CE1D38B0.roa
Signing time: Thu 16 Apr 2026 14:52:09 +0000
ROA not before: Thu 16 Apr 2026 14:52:04 +0000
ROA not after: Tue 01 Apr 2031 14:52:04 +0000
asID: 20940
IP address blocks: 2c0f:fc00:b011::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/L0B_7Ni33dyl1bkKXhlYnQbBAdw.crl
rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/L0B_7Ni33dyl1bkKXhlYnQbBAdw.mft
rsync://rpki.afrinic.net/repository/afrinic/L0B_7Ni33dyl1bkKXhlYnQbBAdw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 00:07:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2371 (0x943)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367B216AF, serialNumber=2F407FECD8B7DDDCA5D5B90A5E19589D06C101DC
Validity
Not Before: Apr 16 14:52:04 2026 GMT
Not After : Apr 1 14:52:04 2031 GMT
Subject: CN=69e0f799-8867
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:b6:d2:76:f1:52:f3:1e:4f:67:1a:1c:79:99:
72:f7:b6:46:e5:35:dc:cc:ed:41:a8:f7:83:0d:e8:
10:bd:be:f2:12:ec:02:96:5b:30:b4:45:b9:d7:c5:
e5:10:02:5a:f8:48:00:22:c2:1d:0b:4d:79:ff:ea:
01:76:73:2c:59:50:00:d1:53:ab:24:f2:6f:69:2b:
57:fa:d3:ad:b7:c1:2a:2d:b8:1e:cf:2a:79:04:37:
a6:26:63:a1:0f:6a:45:a3:f6:40:eb:8a:20:73:af:
ea:90:79:a8:21:dc:aa:ba:52:d3:26:bf:af:b7:84:
88:01:be:ff:f0:bd:f3:88:b7:aa:aa:ab:b1:6f:a3:
1a:ae:93:0e:d1:2f:82:a1:21:5c:c0:a0:36:c3:ad:
a6:6c:2c:e4:aa:70:f3:78:f6:51:37:40:24:2b:ab:
b1:8b:3b:d9:18:74:f3:cf:a4:d7:8d:c5:a6:db:18:
d7:0f:d1:de:45:d3:88:bc:9f:a8:bb:ba:3b:c6:62:
ea:12:7c:c5:89:14:e2:28:45:71:54:4f:cf:a1:e2:
52:81:e1:c6:67:19:2d:28:df:fe:7c:a9:6a:6f:34:
c7:e9:37:f7:5a:c9:be:9f:0a:d0:d0:29:f6:1e:6a:
48:89:bd:32:00:a5:12:16:e3:33:7b:43:8b:ca:12:
47:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:D5:8B:E4:C6:D5:15:11:FB:5F:B4:97:AB:AC:60:BE:82:DD:07:D5
X509v3 Authority Key Identifier:
keyid:2F:40:7F:EC:D8:B7:DD:DC:A5:D5:B9:0A:5E:19:58:9D:06:C1:01:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/L0B_7Ni33dyl1bkKXhlYnQbBAdw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/L0B_7Ni33dyl1bkKXhlYnQbBAdw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/D7BE18A439A311F1B885E7F4CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:fc00:b011::/48
Signature Algorithm: sha256WithRSAEncryption
91:5c:7b:94:11:25:13:0a:28:0f:09:68:9e:0c:6f:8e:97:6f:
50:64:33:e5:31:b0:25:82:97:04:92:4b:de:a8:fb:55:aa:ce:
fb:aa:29:d9:b4:fa:cb:30:22:f7:7e:bc:9b:68:4a:03:e0:aa:
2c:d9:95:9a:80:5e:1f:e2:3a:c1:7b:4c:1a:3a:8d:57:02:42:
47:75:4d:b1:19:20:85:6a:97:9f:02:64:3c:7c:49:5b:ab:db:
e1:24:ae:c1:0b:e4:ed:bc:1e:ec:5a:d7:0b:1d:97:b7:47:e4:
e6:67:26:d9:4e:26:3e:66:05:82:99:c1:4b:8d:82:40:cc:c2:
39:d7:4c:f7:84:80:86:b9:80:c0:92:2e:9b:8d:ea:04:db:26:
4b:73:9a:2b:78:99:46:65:b2:2e:b3:83:2f:7b:45:4a:77:c6:
38:f7:24:5b:07:38:69:c6:64:6e:7d:82:66:f8:8a:dc:7e:7d:
68:bd:db:05:79:e7:c3:0f:7a:af:b4:e1:a3:a1:c2:68:68:78:
91:3c:30:26:de:3a:a1:a0:56:5f:11:3d:26:5b:21:09:d4:d8:
38:30:c1:2e:11:e8:4a:00:07:4c:1a:c6:3d:b4:8f:a3:2a:fe:
28:2c:19:bb:d5:cd:cc:d7:2f:46:38:45:0f:e5:ba:a2:d2:8f:
ba:f6:8a:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 03:34:44 2026 by rpki-client