Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36886B3/3535CA1AB8EF11EDA9B341DAF1222468/7D919404164511F18A849AE5DAE4EC9C.roa
File: 7D919404164511F18A849AE5DAE4EC9C.roa (raw, json)
Hash identifier: Arm2hMJT3U6HXbhseUSybg4jmYI715/aw8K4eS7R4LQ=
Subject key identifier: 80:B0:8B:78:E1:3A:2F:CB:1C:96:AB:58:62:33:0B:30:7B:B0:4E:47
Certificate issuer: /CN=F36886B3AF/serialNumber=3D6ED905037C83C573780B0CCDC70D5D8CEF038B
Certificate serial: 04AC
Authority key identifier: 3D:6E:D9:05:03:7C:83:C5:73:78:0B:0C:CD:C7:0D:5D:8C:EF:03:8B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/PW7ZBQN8g8VzeAsMzccNXYzvA4s.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36886B3/3535CA1AB8EF11EDA9B341DAF1222468/7D919404164511F18A849AE5DAE4EC9C.roa
Signing time: Mon 02 Mar 2026 14:38:34 +0000
ROA not before: Mon 02 Mar 2026 14:38:30 +0000
ROA not after: Sat 02 Mar 2030 14:38:30 +0000
asID: 33763
IP address blocks: 197.234.80.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36886B3/3535CA1AB8EF11EDA9B341DAF1222468/PW7ZBQN8g8VzeAsMzccNXYzvA4s.crl
rsync://rpki.afrinic.net/repository/member_repository/F36886B3/3535CA1AB8EF11EDA9B341DAF1222468/PW7ZBQN8g8VzeAsMzccNXYzvA4s.mft
rsync://rpki.afrinic.net/repository/afrinic/PW7ZBQN8g8VzeAsMzccNXYzvA4s.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 04 Mar 2026 00:07:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1196 (0x4ac)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36886B3AF, serialNumber=3D6ED905037C83C573780B0CCDC70D5D8CEF038B
Validity
Not Before: Mar 2 14:38:30 2026 GMT
Not After : Mar 2 14:38:30 2030 GMT
Subject: CN=69a5a0ea-8b49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:b6:36:3e:08:c1:37:73:cf:f2:24:a7:50:67:
60:43:10:72:5e:9e:15:70:10:64:87:6a:7c:5c:13:
f7:00:30:a8:72:6c:4b:66:39:d0:cc:e7:9c:a2:3b:
bf:36:f3:99:0b:05:f8:13:18:ba:39:02:a4:4a:c2:
ec:c1:d5:95:7d:ec:ed:66:01:f3:2e:f0:8e:e8:09:
75:ae:99:a1:e0:71:04:f5:56:74:60:35:ab:89:b6:
24:30:a8:e7:eb:ce:52:e4:ca:3f:b1:24:c0:0b:e7:
82:49:c2:14:53:11:a5:d8:31:07:0b:9f:6c:54:d0:
cf:bb:02:bb:38:fa:c6:ff:69:07:43:b2:c6:eb:9c:
5f:37:25:63:9f:1b:94:0b:98:b5:4c:fd:b6:b6:ec:
b0:d3:59:f6:b3:d0:d5:9b:bb:e7:e2:34:e6:4e:c2:
b6:fc:9c:11:4e:fa:95:01:ca:92:e9:79:52:d8:e7:
18:c2:2c:04:30:b5:5e:21:97:e1:54:30:d9:59:cc:
d3:64:ad:d3:f6:f8:d5:2b:78:ef:7b:06:89:30:f9:
90:7b:b0:6c:26:96:c5:ee:84:36:06:9e:02:b0:43:
19:02:c7:89:e9:9f:b6:d7:0d:36:4b:59:cf:9e:97:
73:ca:7f:68:3f:da:23:b1:b4:34:9a:55:f8:ff:cc:
7f:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:B0:8B:78:E1:3A:2F:CB:1C:96:AB:58:62:33:0B:30:7B:B0:4E:47
X509v3 Authority Key Identifier:
keyid:3D:6E:D9:05:03:7C:83:C5:73:78:0B:0C:CD:C7:0D:5D:8C:EF:03:8B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36886B3/3535CA1AB8EF11EDA9B341DAF1222468/PW7ZBQN8g8VzeAsMzccNXYzvA4s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/PW7ZBQN8g8VzeAsMzccNXYzvA4s.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36886B3/3535CA1AB8EF11EDA9B341DAF1222468/7D919404164511F18A849AE5DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
197.234.80.0/20
Signature Algorithm: sha256WithRSAEncryption
45:d6:ec:40:e9:a8:42:14:8d:46:a1:c7:41:e8:4f:25:eb:17:
11:f5:d0:81:c6:84:3d:0f:ca:d4:ff:f3:4a:f5:5d:74:f2:b9:
8d:80:b3:1a:b2:33:e4:91:dd:f5:75:80:e3:81:22:d4:04:7d:
bb:3c:c2:84:d2:86:cd:0b:fc:1c:93:ed:bd:fc:65:f7:b6:fe:
8a:26:ce:d3:20:07:95:ec:22:2f:30:9a:04:ef:3d:55:f6:75:
1f:37:13:d1:2e:c1:aa:3f:01:34:6f:d8:90:de:d6:5c:1d:d7:
9d:88:c9:24:49:2f:85:e5:22:e8:85:10:2d:58:1b:4e:db:fb:
26:6b:16:92:b1:a3:f1:95:12:e5:1e:1e:4c:0f:da:a5:33:eb:
19:a0:aa:d7:68:96:cd:0a:6a:9e:9d:f0:e2:b2:24:b7:0f:dc:
e0:fa:ea:a1:10:7b:f0:55:33:5e:2c:9d:59:ee:3e:1a:fe:9e:
60:0a:f1:60:bc:65:8c:cc:7e:ea:ca:36:5e:ca:b9:82:b6:95:
f3:27:eb:f9:2c:5b:12:7c:a3:6a:a8:4b:fb:4b:6a:2d:1a:69:
cf:05:e0:55:3a:7c:38:cb:9f:12:31:52:99:b5:af:7e:18:64:
f9:be:ec:9e:bb:a7:33:a2:a4:cf:52:db:19:ad:37:d7:9b:b7:
54:d4:7c:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 3 01:50:00 2026 by rpki-client