Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36886B3/3535CA1AB8EF11EDA9B341DAF1222468/A06E66B0164911F19FC75D80DAE4EC9C.roa
File: A06E66B0164911F19FC75D80DAE4EC9C.roa (raw, json)
Hash identifier: zQG6NBde7f60yejhCyQCfywn4EgQqwkyQn47sGDO1nM=
Subject key identifier: 8E:F3:87:53:E8:C3:E8:E3:5D:B6:35:D6:A5:D0:4C:50:AB:C2:93:0D
Certificate issuer: /CN=F36886B3AF/serialNumber=3D6ED905037C83C573780B0CCDC70D5D8CEF038B
Certificate serial: 04BC
Authority key identifier: 3D:6E:D9:05:03:7C:83:C5:73:78:0B:0C:CD:C7:0D:5D:8C:EF:03:8B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/PW7ZBQN8g8VzeAsMzccNXYzvA4s.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36886B3/3535CA1AB8EF11EDA9B341DAF1222468/A06E66B0164911F19FC75D80DAE4EC9C.roa
Signing time: Mon 02 Mar 2026 15:08:10 +0000
ROA not before: Mon 02 Mar 2026 15:08:07 +0000
ROA not after: Sat 02 Mar 2030 15:08:07 +0000
asID: 33763
IP address blocks: 197.234.124.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36886B3/3535CA1AB8EF11EDA9B341DAF1222468/PW7ZBQN8g8VzeAsMzccNXYzvA4s.crl
rsync://rpki.afrinic.net/repository/member_repository/F36886B3/3535CA1AB8EF11EDA9B341DAF1222468/PW7ZBQN8g8VzeAsMzccNXYzvA4s.mft
rsync://rpki.afrinic.net/repository/afrinic/PW7ZBQN8g8VzeAsMzccNXYzvA4s.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 04 Mar 2026 00:07:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1212 (0x4bc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36886B3AF, serialNumber=3D6ED905037C83C573780B0CCDC70D5D8CEF038B
Validity
Not Before: Mar 2 15:08:07 2026 GMT
Not After : Mar 2 15:08:07 2030 GMT
Subject: CN=69a5a7da-3bb9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:ae:9d:57:2f:9a:46:ae:e6:4f:e1:fa:96:99:
30:6a:d4:84:af:4d:36:f5:1f:5d:b6:77:af:c3:74:
46:01:09:98:53:0a:7d:be:7c:cd:82:ce:8a:76:21:
79:53:11:62:08:ee:fd:c0:0d:ba:9e:0f:f7:e0:66:
20:a0:68:5a:b3:3f:a1:22:da:9e:93:03:2f:2f:99:
2e:c5:60:0f:15:59:1d:95:5c:3b:23:ff:47:73:32:
5d:df:14:3e:dd:11:5d:e8:3f:4e:28:2b:71:a6:c3:
51:25:4c:36:bc:1f:91:f0:7b:d7:e0:dd:17:91:aa:
38:f6:48:6b:91:00:5d:48:27:42:ea:65:e4:b8:76:
42:54:ab:f8:22:a2:b6:69:0f:db:60:ad:df:61:fe:
2d:b5:73:39:3f:4e:05:03:ff:4a:e0:c2:aa:2e:80:
5c:41:c7:a9:74:f6:bc:41:38:9a:29:44:54:0f:25:
a3:19:24:8d:65:d9:86:b9:c5:f1:44:72:07:52:ed:
1e:d3:74:2a:89:8f:f2:54:bf:86:2f:f9:6d:f8:13:
ac:be:5e:16:26:50:30:8d:f1:89:35:7b:06:5b:d9:
7d:68:f4:1f:f4:91:72:e6:26:3b:d2:fe:a1:7d:c1:
25:f9:dc:66:92:a8:9c:ad:ac:72:04:1c:c0:46:9a:
a0:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:F3:87:53:E8:C3:E8:E3:5D:B6:35:D6:A5:D0:4C:50:AB:C2:93:0D
X509v3 Authority Key Identifier:
keyid:3D:6E:D9:05:03:7C:83:C5:73:78:0B:0C:CD:C7:0D:5D:8C:EF:03:8B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36886B3/3535CA1AB8EF11EDA9B341DAF1222468/PW7ZBQN8g8VzeAsMzccNXYzvA4s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/PW7ZBQN8g8VzeAsMzccNXYzvA4s.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36886B3/3535CA1AB8EF11EDA9B341DAF1222468/A06E66B0164911F19FC75D80DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
197.234.124.0/22
Signature Algorithm: sha256WithRSAEncryption
67:f1:1e:19:75:3d:e6:31:a0:d0:ad:5f:b1:7a:86:72:ba:2b:
65:9b:e9:b5:9c:91:2d:17:2b:91:a6:ea:af:ba:fe:e0:e7:77:
86:01:2a:14:d8:ea:87:16:b4:80:91:5a:05:d3:0a:92:ed:9e:
f7:c2:6b:3c:1f:77:23:ef:55:67:ad:65:eb:ad:f1:95:cc:97:
d3:2c:62:9f:52:6e:30:36:86:94:a5:25:a2:e0:fa:62:59:33:
6f:74:a2:fb:09:f9:fa:c1:94:93:07:3d:c3:cb:c1:39:a2:54:
1d:ff:c2:9a:d9:73:a9:24:10:e3:49:5a:9a:33:b0:df:63:78:
ae:84:3e:e8:fc:7d:df:f5:ac:0c:c6:2c:90:e1:1a:7c:cf:a2:
94:1e:5d:5f:1a:cd:3b:79:2d:28:9c:d7:47:1b:c9:61:ac:8e:
f1:f8:9b:a1:bc:cf:35:07:65:d3:ea:70:ac:11:de:cf:09:52:
a3:94:d0:50:c4:ad:0a:ac:5c:97:7e:d1:96:9e:ac:bb:72:07:
e0:62:dc:cf:86:16:a0:93:85:c3:f0:e0:96:31:5c:43:7a:6e:
8f:5f:66:3d:58:eb:fd:6d:db:32:fc:9e:a4:ef:62:ba:21:5e:
48:70:cf:9d:02:c4:5c:d3:06:c5:cb:3b:8b:36:ac:44:93:04:
a6:5a:00:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 3 01:50:00 2026 by rpki-client