Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36886B3/3535CA1AB8EF11EDA9B341DAF1222468/49A743C4164911F1A002F37FDAE4EC9C.roa
File: 49A743C4164911F1A002F37FDAE4EC9C.roa (raw, json)
Hash identifier: 6ziOXL7xTMB7y5RXWLYaaIXiB3GajxxgogmWFu6io7s=
Subject key identifier: D5:0F:43:D5:A2:A1:6E:8B:16:47:EA:A0:A0:CB:F5:5F:18:41:3F:99
Certificate issuer: /CN=F36886B3AF/serialNumber=3D6ED905037C83C573780B0CCDC70D5D8CEF038B
Certificate serial: 04B6
Authority key identifier: 3D:6E:D9:05:03:7C:83:C5:73:78:0B:0C:CD:C7:0D:5D:8C:EF:03:8B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/PW7ZBQN8g8VzeAsMzccNXYzvA4s.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36886B3/3535CA1AB8EF11EDA9B341DAF1222468/49A743C4164911F1A002F37FDAE4EC9C.roa
Signing time: Mon 02 Mar 2026 15:05:45 +0000
ROA not before: Mon 02 Mar 2026 15:05:41 +0000
ROA not after: Sat 02 Mar 2030 15:05:41 +0000
asID: 33763
IP address blocks: 197.234.107.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36886B3/3535CA1AB8EF11EDA9B341DAF1222468/PW7ZBQN8g8VzeAsMzccNXYzvA4s.crl
rsync://rpki.afrinic.net/repository/member_repository/F36886B3/3535CA1AB8EF11EDA9B341DAF1222468/PW7ZBQN8g8VzeAsMzccNXYzvA4s.mft
rsync://rpki.afrinic.net/repository/afrinic/PW7ZBQN8g8VzeAsMzccNXYzvA4s.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 04 Mar 2026 00:07:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1206 (0x4b6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36886B3AF, serialNumber=3D6ED905037C83C573780B0CCDC70D5D8CEF038B
Validity
Not Before: Mar 2 15:05:41 2026 GMT
Not After : Mar 2 15:05:41 2030 GMT
Subject: CN=69a5a749-547b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:a9:fb:2f:e9:16:37:d6:d8:a8:3f:25:44:b9:
a1:f3:40:fb:51:d6:45:21:65:9a:95:28:fc:33:e3:
a2:53:f2:d9:51:d3:ca:03:a4:21:d1:e0:50:4e:45:
78:f9:56:e8:d9:33:2f:5d:a9:f4:09:ca:23:04:c6:
98:d2:f4:2e:fa:e4:6f:91:b3:55:b3:82:89:bb:ce:
ae:1d:10:54:27:c6:89:78:99:33:ed:b1:f3:62:3a:
f7:5a:45:b7:fa:07:af:0d:6f:20:b7:8c:a3:f5:c5:
c5:10:66:56:04:f4:81:1a:b0:99:61:64:1c:ca:5e:
ed:a5:2b:fb:a2:8f:b3:f0:9d:f5:6b:ac:59:b3:e8:
bf:48:7b:ac:ff:3e:f6:59:d3:0f:0b:e2:dd:c0:a3:
eb:88:e2:b0:5a:d6:08:d8:94:de:29:82:52:4f:73:
4b:af:f7:8a:e9:01:fe:e1:54:c6:14:57:64:3a:5e:
02:c2:37:79:1c:1a:e0:2d:56:d5:9c:7c:c2:09:57:
1b:6e:8f:52:7e:4b:f8:f6:5d:5e:70:f8:06:da:ae:
9b:0c:0a:94:f8:de:00:ea:9d:33:9b:f2:52:a4:40:
1b:20:99:5c:26:6a:9a:87:6f:d2:08:d5:ff:59:eb:
a0:3c:45:d7:92:cf:3e:e1:4a:08:56:06:f9:2d:35:
03:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:0F:43:D5:A2:A1:6E:8B:16:47:EA:A0:A0:CB:F5:5F:18:41:3F:99
X509v3 Authority Key Identifier:
keyid:3D:6E:D9:05:03:7C:83:C5:73:78:0B:0C:CD:C7:0D:5D:8C:EF:03:8B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36886B3/3535CA1AB8EF11EDA9B341DAF1222468/PW7ZBQN8g8VzeAsMzccNXYzvA4s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/PW7ZBQN8g8VzeAsMzccNXYzvA4s.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36886B3/3535CA1AB8EF11EDA9B341DAF1222468/49A743C4164911F1A002F37FDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
197.234.107.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:4f:a1:b9:5f:47:b7:39:90:06:9c:09:6f:63:9e:bd:08:79:
bd:55:1a:61:2f:c6:14:ba:e7:5d:cf:c7:7e:b2:e5:d4:40:af:
d7:37:cd:dc:8a:14:8c:48:30:23:6c:e6:32:c1:c8:3d:a4:c3:
f0:e0:5d:ad:39:69:71:cf:5b:d1:67:1a:17:d5:01:f6:0e:fd:
a0:b7:a9:b7:08:e3:b8:63:96:49:46:8b:0e:38:62:9c:e4:da:
b6:dc:75:e7:0e:75:26:37:63:85:04:98:a4:6c:5a:f3:72:fe:
d1:39:fa:d0:d8:ed:59:03:6c:da:37:4c:9c:75:38:7d:fa:84:
38:d7:a6:ac:d0:d3:13:5a:4c:44:67:3f:22:b6:ef:69:29:1a:
96:c8:98:61:52:a1:8c:c6:f8:a0:be:53:15:70:ad:f2:0a:7a:
35:c2:8b:d8:b8:3d:05:97:4f:e0:4e:5e:4d:57:ae:6c:16:3a:
92:cb:87:1a:dd:88:09:9f:fc:ad:e7:fb:3c:e3:ba:11:ba:d3:
58:4f:d5:08:ee:3e:b5:5a:49:35:8a:39:71:94:a3:78:a5:29:
44:b3:1f:a7:c0:36:b2:50:96:3c:65:7b:8f:55:99:1a:6c:3d:
1d:35:cd:cd:26:24:7b:a1:e5:4c:83:46:9b:b3:45:2e:f6:c1:
16:58:fc:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 3 01:50:00 2026 by rpki-client