Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36886B3/3535CA1AB8EF11EDA9B341DAF1222468/7A0D547C164411F1BEFD3EE1DAE4EC9C.roa
File: 7A0D547C164411F1BEFD3EE1DAE4EC9C.roa (raw, json)
Hash identifier: 1yqgoCPv+tTcS1c+xWc3aFjlpsc66OUaItf6n/p3XP4=
Subject key identifier: 61:F7:19:85:B8:EC:A0:A8:B6:35:7F:80:7B:33:8B:10:EE:32:45:BB
Certificate issuer: /CN=F36886B3AF/serialNumber=3D6ED905037C83C573780B0CCDC70D5D8CEF038B
Certificate serial: 04A8
Authority key identifier: 3D:6E:D9:05:03:7C:83:C5:73:78:0B:0C:CD:C7:0D:5D:8C:EF:03:8B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/PW7ZBQN8g8VzeAsMzccNXYzvA4s.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36886B3/3535CA1AB8EF11EDA9B341DAF1222468/7A0D547C164411F1BEFD3EE1DAE4EC9C.roa
Signing time: Mon 02 Mar 2026 14:31:19 +0000
ROA not before: Mon 02 Mar 2026 14:31:15 +0000
ROA not after: Sat 02 Mar 2030 14:31:15 +0000
asID: 33763
IP address blocks: 41.218.80.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36886B3/3535CA1AB8EF11EDA9B341DAF1222468/PW7ZBQN8g8VzeAsMzccNXYzvA4s.crl
rsync://rpki.afrinic.net/repository/member_repository/F36886B3/3535CA1AB8EF11EDA9B341DAF1222468/PW7ZBQN8g8VzeAsMzccNXYzvA4s.mft
rsync://rpki.afrinic.net/repository/afrinic/PW7ZBQN8g8VzeAsMzccNXYzvA4s.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 04 Mar 2026 00:07:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1192 (0x4a8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36886B3AF, serialNumber=3D6ED905037C83C573780B0CCDC70D5D8CEF038B
Validity
Not Before: Mar 2 14:31:15 2026 GMT
Not After : Mar 2 14:31:15 2030 GMT
Subject: CN=69a59f37-2b35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:d3:e5:44:3b:65:e1:51:37:00:a4:d1:b3:28:
c2:f7:36:73:82:ad:57:1b:82:c2:b2:09:c1:23:b9:
9a:ce:1c:8a:66:5e:a7:2f:e0:ae:ce:c9:e5:bf:88:
42:53:e7:b5:dc:f1:46:75:63:71:cf:50:15:62:30:
0d:2e:85:d9:61:fe:df:b0:0b:5d:eb:ab:2d:3e:a3:
c5:02:69:fc:ac:17:b6:bc:78:f2:e3:73:81:94:7b:
1b:cb:a5:22:11:7f:1d:89:ff:d5:16:f7:64:10:72:
14:41:bf:84:3e:c5:b7:80:73:30:d5:4c:c6:38:d4:
c1:fe:ab:60:7c:56:6d:03:f2:6a:21:b0:6f:d9:e3:
0e:b8:78:13:02:7e:fe:31:2f:73:ff:4b:6f:23:83:
aa:79:83:a5:5d:39:35:57:57:e3:e5:74:22:77:a8:
29:4a:c2:82:f7:f7:df:70:1a:da:a7:2f:45:83:ad:
5d:d3:70:16:a0:95:d1:0f:91:47:3e:29:6a:8e:6f:
22:05:e5:86:48:0e:7e:4a:16:87:78:80:00:18:8c:
f8:42:90:be:a0:44:9f:13:cd:36:70:8b:c4:07:26:
5d:00:f8:cc:c4:97:f8:b8:4a:cf:7d:45:9f:92:2a:
5f:42:63:e4:b8:fc:cb:3a:65:55:b3:5c:56:c3:5f:
20:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:F7:19:85:B8:EC:A0:A8:B6:35:7F:80:7B:33:8B:10:EE:32:45:BB
X509v3 Authority Key Identifier:
keyid:3D:6E:D9:05:03:7C:83:C5:73:78:0B:0C:CD:C7:0D:5D:8C:EF:03:8B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36886B3/3535CA1AB8EF11EDA9B341DAF1222468/PW7ZBQN8g8VzeAsMzccNXYzvA4s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/PW7ZBQN8g8VzeAsMzccNXYzvA4s.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36886B3/3535CA1AB8EF11EDA9B341DAF1222468/7A0D547C164411F1BEFD3EE1DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.218.80.0/21
Signature Algorithm: sha256WithRSAEncryption
56:e7:29:0b:4c:2a:fb:23:35:90:cb:29:b2:2b:2b:74:53:64:
60:c6:c0:c0:16:83:f1:d9:ad:99:40:3e:2e:96:b9:6f:5b:a5:
2d:92:3a:a2:1f:2d:53:f6:ca:a4:0f:a3:3a:bf:9e:4a:8d:ed:
a9:1a:92:0e:48:b3:62:c5:dc:bb:3f:79:ac:95:91:30:53:35:
46:90:e3:51:74:c4:a4:66:8f:a5:e7:0f:83:63:e0:3a:1b:47:
ca:13:f7:33:6c:f2:9f:0a:4b:f2:17:b3:1f:2b:61:a1:60:2b:
77:03:20:a9:3a:16:17:21:f9:db:40:c6:c9:28:1a:30:c8:8f:
70:a2:b2:46:05:7c:7d:78:14:60:3e:26:e4:42:38:33:b0:4c:
53:c0:b6:eb:91:ec:20:d6:97:ac:32:5f:68:64:8d:09:e6:5a:
22:fe:eb:5d:5c:8e:8f:d5:a3:1a:91:9c:e1:ad:58:c4:17:d3:
10:ed:22:e4:54:d8:45:fb:29:1e:6c:7d:d2:a0:91:f7:3b:c8:
3d:8f:3e:ec:e7:11:01:1f:19:58:73:3e:e9:16:eb:58:32:e0:
a1:01:bc:93:5c:83:a1:44:6f:35:c2:85:09:f2:8c:e2:02:38:
3d:f5:88:0d:a2:1e:dc:5c:00:b4:87:d3:06:3d:59:e9:f4:b0:
a9:57:4f:2f
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICBKgwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
ODg2QjNBRjExMC8GA1UEBRMoM0Q2RUQ5MDUwMzdDODNDNTczNzgwQjBDQ0RDNzBE
NUQ4Q0VGMDM4QjAeFw0yNjAzMDIxNDMxMTVaFw0zMDAzMDIxNDMxMTVaMBgxFjAU
BgNVBAMTDTY5YTU5ZjM3LTJiMzUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDZ0+VEO2XhUTcApNGzKML3NnOCrVcbgsKyCcEjuZrOHIpmXqcv4K7OyeW/
iEJT57Xc8UZ1Y3HPUBViMA0uhdlh/t+wC13rqy0+o8UCafysF7a8ePLjc4GUexvL
pSIRfx2J/9UW92QQchRBv4Q+xbeAczDVTMY41MH+q2B8Vm0D8mohsG/Z4w64eBMC
fv4xL3P/S28jg6p5g6VdOTVXV+PldCJ3qClKwoL3999wGtqnL0WDrV3TcBagldEP
kUc+KWqObyIF5YZIDn5KFod4gAAYjPhCkL6gRJ8TzTZwi8QHJl0A+MzEl/i4Ss99
RZ+SKl9CY+S4/Ms6ZVWzXFbDXyAJAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUYfcZ
hbjsoKi2NX+AezOLEO4yRbswHwYDVR0jBBgwFoAUPW7ZBQN8g8VzeAsMzccNXYzv
A4swDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjg4NkIzLzM1MzVDQTFBQjhFRjExRURBOUIzNDFEQUYxMjIyNDY4L1BXN1pC
UU44ZzhWemVBc016Y2NOWFl6dkE0cy5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL1BXN1pCUU44ZzhWemVBc016Y2NOWFl6dkE0cy5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjg4NkIzLzM1MzVDQTFBQjhFRjExRURBOUIzNDFEQUYx
MjIyNDY4LzdBMEQ1NDdDMTY0NDExRjFCRUZEM0VFMURBRTRFQzlDLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAMp2lAwDQYJKoZIhvcNAQEL
BQADggEBAFbnKQtMKvsjNZDLKbIrK3RTZGDGwMAWg/HZrZlAPi6WuW9bpS2SOqIf
LVP2yqQPozq/nkqN7akakg5Is2LF3Ls/eayVkTBTNUaQ41F0xKRmj6XnD4Nj4Dob
R8oT9zNs8p8KS/IXsx8rYaFgK3cDIKk6Fhch+dtAxskoGjDIj3CiskYFfH14FGA+
JuRCODOwTFPAtuuR7CDWl6wyX2hkjQnmWiL+611cjo/VoxqRnOGtWMQX0xDtIuRU
2EX7KR5sfdKgkfc7yD2PPuznEQEfGVhzPukW61gy4KEBvJNcg6FEbzXChQnyjOIC
OD31iA2iHtxcALSH0wY9Wen0sKlXTy8=
-----END CERTIFICATE-----
Generated at Tue Mar 3 01:49:23 2026 by rpki-client