Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36886B3/3535CA1AB8EF11EDA9B341DAF1222468/6127A85E164911F198970680DAE4EC9C.roa
File: 6127A85E164911F198970680DAE4EC9C.roa (raw, json)
Hash identifier: lvJbkV9iOualn8rIcX9xHM4+DO+zDl5ClBfAxui6rfA=
Subject key identifier: C1:4A:AA:1B:BA:D8:1B:EC:B9:BF:7C:F6:FE:5A:F5:A9:2B:90:2C:6F
Certificate issuer: /CN=F36886B3AF/serialNumber=3D6ED905037C83C573780B0CCDC70D5D8CEF038B
Certificate serial: 04B8
Authority key identifier: 3D:6E:D9:05:03:7C:83:C5:73:78:0B:0C:CD:C7:0D:5D:8C:EF:03:8B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/PW7ZBQN8g8VzeAsMzccNXYzvA4s.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36886B3/3535CA1AB8EF11EDA9B341DAF1222468/6127A85E164911F198970680DAE4EC9C.roa
Signing time: Mon 02 Mar 2026 15:06:24 +0000
ROA not before: Mon 02 Mar 2026 15:06:20 +0000
ROA not after: Sat 02 Mar 2030 15:06:20 +0000
asID: 33763
IP address blocks: 197.234.110.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36886B3/3535CA1AB8EF11EDA9B341DAF1222468/PW7ZBQN8g8VzeAsMzccNXYzvA4s.crl
rsync://rpki.afrinic.net/repository/member_repository/F36886B3/3535CA1AB8EF11EDA9B341DAF1222468/PW7ZBQN8g8VzeAsMzccNXYzvA4s.mft
rsync://rpki.afrinic.net/repository/afrinic/PW7ZBQN8g8VzeAsMzccNXYzvA4s.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 04 Mar 2026 00:07:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1208 (0x4b8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36886B3AF, serialNumber=3D6ED905037C83C573780B0CCDC70D5D8CEF038B
Validity
Not Before: Mar 2 15:06:20 2026 GMT
Not After : Mar 2 15:06:20 2030 GMT
Subject: CN=69a5a770-4e95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:ae:5d:c4:d2:02:19:13:23:87:71:39:5d:ca:
d1:3a:63:32:91:67:04:aa:9f:dd:9a:80:b9:d5:4d:
2e:cd:96:12:03:b6:5c:d2:09:ef:8b:ec:91:bd:32:
0f:0d:38:8c:0c:3d:2c:79:b4:17:8c:ca:fc:fc:c1:
ac:07:2c:fe:25:1f:96:89:ad:63:19:6b:6f:99:2e:
99:cc:53:8b:c1:cd:f7:4a:52:1f:2e:cd:72:13:7f:
3f:6a:71:37:b6:85:8b:ed:31:92:b8:93:0f:50:73:
ba:22:78:d9:df:8d:f8:73:8e:59:8f:c4:8f:c8:13:
d8:1a:b9:60:71:32:fc:8a:54:59:b1:ef:7f:c6:02:
29:bf:87:45:2b:b7:51:dd:c8:28:da:71:02:40:b6:
b5:35:f7:aa:d8:1f:92:e8:e9:60:e3:ce:69:54:69:
37:98:0e:f6:69:f2:6f:1f:46:3a:e3:6c:89:93:05:
28:b7:6c:29:59:3a:d5:ae:f3:c4:6b:b0:e5:ff:49:
b8:4d:53:5e:5a:e1:1b:08:83:d7:bc:4a:2d:91:d8:
76:b4:05:59:b7:e7:66:91:2c:20:09:81:7d:13:fd:
c4:27:45:9a:ec:04:51:da:6f:d6:b9:6a:2f:36:ff:
6c:0c:11:84:7b:c8:e2:ae:c3:4b:4b:5f:dc:02:13:
89:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:4A:AA:1B:BA:D8:1B:EC:B9:BF:7C:F6:FE:5A:F5:A9:2B:90:2C:6F
X509v3 Authority Key Identifier:
keyid:3D:6E:D9:05:03:7C:83:C5:73:78:0B:0C:CD:C7:0D:5D:8C:EF:03:8B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36886B3/3535CA1AB8EF11EDA9B341DAF1222468/PW7ZBQN8g8VzeAsMzccNXYzvA4s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/PW7ZBQN8g8VzeAsMzccNXYzvA4s.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36886B3/3535CA1AB8EF11EDA9B341DAF1222468/6127A85E164911F198970680DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
197.234.110.0/23
Signature Algorithm: sha256WithRSAEncryption
6c:07:e7:d1:27:02:24:35:c7:09:ef:a2:c9:21:dc:e8:89:b2:
7a:92:f8:cf:4c:e2:fc:de:f3:9a:e2:6e:ca:2b:ce:26:93:45:
76:ad:ee:94:91:38:91:e6:77:85:46:d0:99:f4:8b:87:8c:08:
55:92:0b:6e:9b:62:2c:dc:b6:f2:98:1a:83:9c:bc:73:39:be:
4f:82:13:ca:9e:3d:33:ea:e4:69:40:9d:77:78:a3:7d:a3:ca:
a3:ce:c4:ca:40:3f:2e:42:fa:52:0b:61:31:bc:09:b6:2b:73:
4e:f5:26:26:9d:1d:72:e1:52:6d:05:cc:a9:11:cb:25:aa:9f:
e7:31:94:fb:3b:70:48:0b:64:64:83:69:56:31:a2:b0:99:52:
73:68:1a:0c:bb:65:32:fe:aa:95:1f:87:0a:b0:6e:54:1d:51:
ca:50:30:b0:8f:3d:b3:68:c3:ec:ff:52:69:51:38:97:0a:c8:
73:9d:b4:01:6f:3a:59:97:e2:76:c3:bd:18:55:27:fb:77:a0:
d3:65:1e:d4:51:cd:6c:30:c8:11:00:30:68:68:9f:b8:c8:d8:
90:e5:51:b7:e4:09:4a:1b:74:25:04:cf:e0:10:4e:d7:59:e5:
49:55:ca:73:7f:ae:54:00:06:75:7a:40:ef:8c:83:dc:8a:b9:
f6:80:8b:9d
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICBLgwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
ODg2QjNBRjExMC8GA1UEBRMoM0Q2RUQ5MDUwMzdDODNDNTczNzgwQjBDQ0RDNzBE
NUQ4Q0VGMDM4QjAeFw0yNjAzMDIxNTA2MjBaFw0zMDAzMDIxNTA2MjBaMBgxFjAU
BgNVBAMTDTY5YTVhNzcwLTRlOTUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDNrl3E0gIZEyOHcTldytE6YzKRZwSqn92agLnVTS7NlhIDtlzSCe+L7JG9
Mg8NOIwMPSx5tBeMyvz8wawHLP4lH5aJrWMZa2+ZLpnMU4vBzfdKUh8uzXITfz9q
cTe2hYvtMZK4kw9Qc7oieNnfjfhzjlmPxI/IE9gauWBxMvyKVFmx73/GAim/h0Ur
t1HdyCjacQJAtrU196rYH5Lo6WDjzmlUaTeYDvZp8m8fRjrjbImTBSi3bClZOtWu
88RrsOX/SbhNU15a4RsIg9e8Si2R2Ha0BVm352aRLCAJgX0T/cQnRZrsBFHab9a5
ai82/2wMEYR7yOKuw0tLX9wCE4nFAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUwUqq
G7rYG+y5v3z2/lr1qSuQLG8wHwYDVR0jBBgwFoAUPW7ZBQN8g8VzeAsMzccNXYzv
A4swDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjg4NkIzLzM1MzVDQTFBQjhFRjExRURBOUIzNDFEQUYxMjIyNDY4L1BXN1pC
UU44ZzhWemVBc016Y2NOWFl6dkE0cy5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL1BXN1pCUU44ZzhWemVBc016Y2NOWFl6dkE0cy5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjg4NkIzLzM1MzVDQTFBQjhFRjExRURBOUIzNDFEQUYx
MjIyNDY4LzYxMjdBODVFMTY0OTExRjE5ODk3MDY4MERBRTRFQzlDLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHF6m4wDQYJKoZIhvcNAQEL
BQADggEBAGwH59EnAiQ1xwnvoskh3OiJsnqS+M9M4vze85ribsorziaTRXat7pSR
OJHmd4VG0Jn0i4eMCFWSC26bYizctvKYGoOcvHM5vk+CE8qePTPq5GlAnXd4o32j
yqPOxMpAPy5C+lILYTG8CbYrc071JiadHXLhUm0FzKkRyyWqn+cxlPs7cEgLZGSD
aVYxorCZUnNoGgy7ZTL+qpUfhwqwblQdUcpQMLCPPbNow+z/UmlROJcKyHOdtAFv
OlmX4nbDvRhVJ/t3oNNlHtRRzWwwyBEAMGhon7jI2JDlUbfkCUobdCUEz+AQTtdZ
5UlVynN/rlQABnV6QO+Mg9yKufaAi50=
-----END CERTIFICATE-----
Generated at Tue Mar 3 01:52:54 2026 by rpki-client