Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36886B3/3535CA1AB8EF11EDA9B341DAF1222468/65BA9240164A11F183199984DAE4EC9C.roa
File: 65BA9240164A11F183199984DAE4EC9C.roa (raw, json)
Hash identifier: 0PpnjPDEZX2Uyo4ELJgCnz4oxks68BGasobjbPLelzY=
Subject key identifier: 29:E2:14:C5:18:80:EF:AB:E0:D5:C4:4C:BC:3E:F1:3F:E9:D7:39:85
Certificate issuer: /CN=F36886B3AF/serialNumber=3D6ED905037C83C573780B0CCDC70D5D8CEF038B
Certificate serial: 04C0
Authority key identifier: 3D:6E:D9:05:03:7C:83:C5:73:78:0B:0C:CD:C7:0D:5D:8C:EF:03:8B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/PW7ZBQN8g8VzeAsMzccNXYzvA4s.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36886B3/3535CA1AB8EF11EDA9B341DAF1222468/65BA9240164A11F183199984DAE4EC9C.roa
Signing time: Mon 02 Mar 2026 15:13:41 +0000
ROA not before: Mon 02 Mar 2026 15:13:37 +0000
ROA not after: Sat 02 Mar 2030 15:13:37 +0000
asID: 33763
IP address blocks: 197.234.112.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36886B3/3535CA1AB8EF11EDA9B341DAF1222468/PW7ZBQN8g8VzeAsMzccNXYzvA4s.crl
rsync://rpki.afrinic.net/repository/member_repository/F36886B3/3535CA1AB8EF11EDA9B341DAF1222468/PW7ZBQN8g8VzeAsMzccNXYzvA4s.mft
rsync://rpki.afrinic.net/repository/afrinic/PW7ZBQN8g8VzeAsMzccNXYzvA4s.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 04 Mar 2026 00:07:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1216 (0x4c0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36886B3AF, serialNumber=3D6ED905037C83C573780B0CCDC70D5D8CEF038B
Validity
Not Before: Mar 2 15:13:37 2026 GMT
Not After : Mar 2 15:13:37 2030 GMT
Subject: CN=69a5a925-d234
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:5e:27:89:ba:f1:67:7d:1f:58:89:0a:03:f6:
b7:c3:fe:1a:11:8c:ed:ab:29:54:ab:8b:ea:2c:5b:
67:ab:9a:11:3b:62:c0:81:d5:7e:e3:40:b7:12:74:
d3:14:74:ef:c7:3a:88:35:63:d8:39:cf:03:db:b6:
10:d8:f8:94:ce:4a:a2:e5:1d:51:64:55:45:20:58:
a2:4f:5c:7f:d2:5e:ad:1b:17:75:69:3b:8e:db:52:
8a:a6:6f:65:02:6c:be:32:e1:3d:bf:3e:42:a8:03:
08:ca:32:44:bb:1e:10:b6:9e:d7:92:5d:db:bb:7b:
39:68:a7:77:4c:35:85:e0:ab:15:61:27:bf:d6:00:
c2:b5:67:b4:34:3d:01:24:18:c7:8a:e5:6b:ee:81:
d3:ea:ba:e3:ba:51:61:8b:e5:b3:88:de:e8:57:4a:
d3:fe:be:da:38:88:c7:16:74:21:36:2a:c6:ec:07:
96:37:a6:b9:80:58:e9:84:ec:64:f4:81:e1:e6:30:
b5:7a:59:c7:e7:b1:fa:e5:61:74:1a:7c:3f:ba:34:
8d:c3:8c:1f:d1:19:e4:4f:94:9e:1e:c5:6a:ad:fa:
c7:44:45:41:eb:ab:de:95:94:57:f0:cd:44:87:6e:
24:ae:14:bc:4f:ae:b5:c4:c2:88:f6:8d:d5:dc:63:
df:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:E2:14:C5:18:80:EF:AB:E0:D5:C4:4C:BC:3E:F1:3F:E9:D7:39:85
X509v3 Authority Key Identifier:
keyid:3D:6E:D9:05:03:7C:83:C5:73:78:0B:0C:CD:C7:0D:5D:8C:EF:03:8B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36886B3/3535CA1AB8EF11EDA9B341DAF1222468/PW7ZBQN8g8VzeAsMzccNXYzvA4s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/PW7ZBQN8g8VzeAsMzccNXYzvA4s.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36886B3/3535CA1AB8EF11EDA9B341DAF1222468/65BA9240164A11F183199984DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
197.234.112.0/20
Signature Algorithm: sha256WithRSAEncryption
2c:b3:3d:77:c4:6f:19:69:83:e0:54:ff:99:b7:3b:6d:7d:e7:
a0:94:76:0f:68:fd:a7:ca:e0:12:2c:57:03:22:36:ac:79:1b:
b8:9a:9b:bc:cc:94:02:a4:f8:ff:df:a8:59:b5:59:06:b6:40:
8f:c1:13:3a:62:66:db:f7:26:e1:b4:06:4d:29:18:07:4f:07:
84:f1:b8:ce:19:3a:e5:79:02:19:52:d5:b5:3d:5d:77:16:35:
78:cd:02:6d:59:d6:f9:89:49:8a:99:49:7d:ba:52:b5:94:2f:
28:c0:e6:f3:0c:54:e7:a7:e0:5a:2d:7f:26:d9:ad:09:9e:fe:
20:39:14:fd:62:fa:5a:67:3f:50:c2:fd:da:4e:a2:df:2a:f8:
24:c6:cf:66:fd:cc:9a:42:05:c9:8c:81:84:81:f5:ce:c9:3c:
14:21:a2:73:64:14:ae:e4:01:10:14:ce:2e:9c:0b:02:56:78:
b9:96:10:e6:ed:ec:76:69:81:da:40:63:ef:16:41:a9:c8:dd:
04:33:bd:02:f9:ba:06:2d:96:2c:5b:65:5d:b6:ce:ef:2e:43:
eb:54:f1:b6:b4:a2:8b:02:1e:7f:f7:a1:43:ad:93:1f:35:85:
c8:68:ec:4a:a4:cf:48:bd:dc:83:cb:da:1e:80:c1:51:ae:49:
81:5d:d5:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 3 01:49:22 2026 by rpki-client