Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367FECC/449EE63EEA3E11EB941D9B39D8A014CE/526901882CE611F1BF63EBD6DAE4EC9C.roa
File: 526901882CE611F1BF63EBD6DAE4EC9C.roa (raw, json)
Hash identifier: aw2Z7KwdzkCBr55pTjeJJCbVsjj0x/wKbNsblVOzb6E=
Subject key identifier: C9:23:02:89:54:88:8A:79:17:F1:44:E9:0F:E7:06:ED:B3:A4:13:82
Certificate issuer: /CN=F367FECCAF/serialNumber=D50B711CD77CF359183D3FDEE58A9954B6CF7708
Certificate serial: 06E7
Authority key identifier: D5:0B:71:1C:D7:7C:F3:59:18:3D:3F:DE:E5:8A:99:54:B6:CF:77:08
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/1QtxHNd881kYPT_e5YqZVLbPdwg.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367FECC/449EE63EEA3E11EB941D9B39D8A014CE/526901882CE611F1BF63EBD6DAE4EC9C.roa
Signing time: Tue 31 Mar 2026 09:45:17 +0000
ROA not before: Tue 31 Mar 2026 09:45:11 +0000
ROA not after: Mon 31 Mar 2036 09:45:11 +0000
asID: 328210
IP address blocks: 2c0f:ee30::/32 maxlen: 64
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367FECC/449EE63EEA3E11EB941D9B39D8A014CE/1QtxHNd881kYPT_e5YqZVLbPdwg.crl
rsync://rpki.afrinic.net/repository/member_repository/F367FECC/449EE63EEA3E11EB941D9B39D8A014CE/1QtxHNd881kYPT_e5YqZVLbPdwg.mft
rsync://rpki.afrinic.net/repository/afrinic/1QtxHNd881kYPT_e5YqZVLbPdwg.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 00:07:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1767 (0x6e7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367FECCAF, serialNumber=D50B711CD77CF359183D3FDEE58A9954B6CF7708
Validity
Not Before: Mar 31 09:45:11 2026 GMT
Not After : Mar 31 09:45:11 2036 GMT
Subject: CN=69cb97ac-1e75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:d8:0e:59:b6:e2:ed:06:9e:58:15:f5:7b:99:
ce:cf:14:0a:bb:e8:f2:6f:c8:a2:bb:20:41:76:d9:
60:dc:e3:b5:45:34:08:b5:a5:38:e9:2e:86:58:2c:
c6:b6:f6:86:ad:a8:14:0d:81:2d:fe:1d:ea:c3:c0:
27:2c:0e:72:eb:4c:7b:72:08:c1:61:8d:6c:59:9c:
14:2c:93:37:08:e3:ce:be:7c:c3:dc:56:8b:f7:6e:
57:13:4e:ea:77:6f:8d:f1:1d:7d:f7:39:fa:19:23:
c6:f1:8e:ce:61:36:b4:e8:0a:cf:01:b9:f4:a4:76:
9c:3c:8b:da:5a:b6:17:4a:12:c3:b5:d9:29:eb:6e:
06:a7:56:23:32:de:31:55:50:d8:1c:30:eb:d0:85:
ea:09:87:58:d0:4b:2b:3b:f1:12:ae:cb:6f:93:f6:
f6:04:c9:be:e5:c8:ca:f0:38:69:d9:29:82:85:7c:
04:d2:2a:dd:a0:fb:f3:20:99:08:ac:62:13:02:d4:
f4:c6:a9:18:53:ce:21:af:3a:e7:13:43:4a:ea:36:
e7:00:a4:71:88:f4:0e:b4:64:20:b3:90:49:33:da:
88:a7:80:23:c2:80:10:04:ef:d6:dd:d8:96:68:97:
73:bd:54:5c:d4:0d:3d:e3:06:17:0c:6a:ab:43:5d:
d2:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:23:02:89:54:88:8A:79:17:F1:44:E9:0F:E7:06:ED:B3:A4:13:82
X509v3 Authority Key Identifier:
keyid:D5:0B:71:1C:D7:7C:F3:59:18:3D:3F:DE:E5:8A:99:54:B6:CF:77:08
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367FECC/449EE63EEA3E11EB941D9B39D8A014CE/1QtxHNd881kYPT_e5YqZVLbPdwg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/1QtxHNd881kYPT_e5YqZVLbPdwg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367FECC/449EE63EEA3E11EB941D9B39D8A014CE/526901882CE611F1BF63EBD6DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:ee30::/32
Signature Algorithm: sha256WithRSAEncryption
79:7f:d6:c7:13:a2:a4:36:f3:ab:8f:62:ea:c1:26:d6:a4:ef:
d5:17:27:81:bd:9c:ad:8c:b8:72:a4:c3:ba:1d:d8:42:3d:a3:
56:b4:21:11:d4:5e:5f:e0:a9:44:5b:95:71:65:5d:17:0a:4d:
b3:72:fb:62:8e:47:5c:ec:ab:cd:3e:97:fc:3d:16:9f:ee:e0:
a8:fb:c8:9c:fb:33:bf:ce:38:d8:2f:34:14:82:63:b4:b5:63:
6c:34:b9:09:21:a9:29:7d:78:b2:f6:5b:69:96:ad:ab:8f:a8:
15:3c:82:5a:1e:ff:72:51:5e:cc:79:7c:c2:8d:1f:b8:ab:47:
63:01:e9:75:44:23:d7:0c:bd:e9:63:8f:82:35:7d:7c:81:ed:
8f:f9:a6:1d:26:82:7c:ab:95:27:e3:ec:d8:27:fa:e7:f0:43:
cc:b5:c0:76:39:25:35:fa:f5:5e:4e:5d:24:4c:39:71:ed:05:
b4:96:fe:84:85:bf:f3:63:b5:a6:d5:76:65:a2:42:58:da:74:
dd:35:7c:63:eb:e7:77:7c:4b:b7:3b:7d:f6:30:1c:33:b8:89:
c4:09:d7:79:8a:85:72:88:7b:d8:b6:4e:1e:54:34:9e:9a:47:
5e:0a:71:f7:8d:f2:f4:aa:6c:d2:ce:a3:e2:77:ae:d5:3d:b3:
86:d6:95:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 09:29:31 2026 by rpki-client