Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36886B3/3535CA1AB8EF11EDA9B341DAF1222468/CDFCA240164911F191382582DAE4EC9C.roa
File: CDFCA240164911F191382582DAE4EC9C.roa (raw, json)
Hash identifier: w5hN4mGwmoaeeWfsspMaU3NnvjFtWpa02D/NFbFxAyY=
Subject key identifier: BB:1B:0E:9F:73:30:82:FB:63:FD:E3:2A:14:81:2D:98:A7:3E:AA:53
Certificate issuer: /CN=F36886B3AF/serialNumber=3D6ED905037C83C573780B0CCDC70D5D8CEF038B
Certificate serial: 04BE
Authority key identifier: 3D:6E:D9:05:03:7C:83:C5:73:78:0B:0C:CD:C7:0D:5D:8C:EF:03:8B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/PW7ZBQN8g8VzeAsMzccNXYzvA4s.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36886B3/3535CA1AB8EF11EDA9B341DAF1222468/CDFCA240164911F191382582DAE4EC9C.roa
Signing time: Mon 02 Mar 2026 15:09:27 +0000
ROA not before: Mon 02 Mar 2026 15:09:23 +0000
ROA not after: Sat 02 Mar 2030 15:09:23 +0000
asID: 33763
IP address blocks: 41.218.108.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36886B3/3535CA1AB8EF11EDA9B341DAF1222468/PW7ZBQN8g8VzeAsMzccNXYzvA4s.crl
rsync://rpki.afrinic.net/repository/member_repository/F36886B3/3535CA1AB8EF11EDA9B341DAF1222468/PW7ZBQN8g8VzeAsMzccNXYzvA4s.mft
rsync://rpki.afrinic.net/repository/afrinic/PW7ZBQN8g8VzeAsMzccNXYzvA4s.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 04 Mar 2026 00:07:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1214 (0x4be)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36886B3AF, serialNumber=3D6ED905037C83C573780B0CCDC70D5D8CEF038B
Validity
Not Before: Mar 2 15:09:23 2026 GMT
Not After : Mar 2 15:09:23 2030 GMT
Subject: CN=69a5a827-5fa1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:91:cb:37:48:24:54:1c:df:80:f5:d0:f0:f5:
c3:87:0e:e3:06:85:c5:75:32:e6:79:3c:96:c8:7e:
50:f3:2a:3a:1e:03:e8:f3:2c:b6:a3:73:86:75:55:
fc:47:32:d9:df:45:01:ca:f3:7c:02:cc:4e:18:2f:
19:da:b7:83:18:08:bd:af:dd:99:db:12:6a:a7:86:
72:41:38:59:bc:68:6a:c9:1e:e4:d8:79:5e:f7:50:
75:45:c5:d0:77:f5:38:da:1b:45:d9:88:00:13:b3:
50:0e:46:75:d7:f2:5d:5b:32:3a:c6:37:68:c0:e1:
9a:5e:fa:53:13:0d:92:42:d9:8d:31:9a:43:69:01:
6c:eb:55:77:78:bb:f0:5e:3a:78:34:39:22:1f:02:
ca:5e:1a:35:25:87:1e:b0:1d:71:c5:c4:c7:2c:cd:
11:ca:44:d6:43:48:3d:d7:cf:12:73:60:f7:34:50:
85:a4:55:19:6d:2a:8b:3e:f6:5f:d2:f0:5a:01:8a:
c6:1a:8f:96:32:ba:78:f5:0f:b2:8e:a7:4f:40:3d:
3e:38:17:32:a0:f8:e4:30:18:c3:4c:47:c5:5f:b8:
45:95:18:0f:67:e6:11:5f:74:58:44:be:18:53:91:
72:12:c1:92:d4:1d:62:b7:01:d0:59:d9:ca:87:cb:
ed:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:1B:0E:9F:73:30:82:FB:63:FD:E3:2A:14:81:2D:98:A7:3E:AA:53
X509v3 Authority Key Identifier:
keyid:3D:6E:D9:05:03:7C:83:C5:73:78:0B:0C:CD:C7:0D:5D:8C:EF:03:8B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36886B3/3535CA1AB8EF11EDA9B341DAF1222468/PW7ZBQN8g8VzeAsMzccNXYzvA4s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/PW7ZBQN8g8VzeAsMzccNXYzvA4s.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36886B3/3535CA1AB8EF11EDA9B341DAF1222468/CDFCA240164911F191382582DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.218.108.0/24
Signature Algorithm: sha256WithRSAEncryption
97:fa:61:a1:42:a0:2e:09:06:eb:5e:70:88:bd:76:34:8d:19:
a5:b2:c0:a7:d4:33:dc:5a:a3:f6:3e:8d:6d:24:ce:7b:33:53:
d7:3f:7b:f9:11:fe:11:a8:6a:34:4f:27:13:4f:3e:f7:1e:c8:
72:45:0c:80:d1:21:be:18:c9:8a:ad:72:d8:7a:01:77:46:b8:
35:9d:e5:59:66:64:a0:08:e5:a8:75:61:21:1e:a9:91:d3:16:
8b:c1:5e:87:ff:b7:f2:fd:4a:a2:b5:c0:6f:a0:f8:ff:50:86:
6e:54:08:78:bc:3f:ec:cc:1a:f2:5b:96:d4:a3:9b:25:32:61:
84:3c:64:77:a1:63:4e:ff:4f:0d:b7:c2:23:6f:93:1d:c0:4d:
7c:27:21:70:2a:51:0c:82:99:7f:8f:45:5e:66:64:ba:c5:60:
ac:32:df:6d:be:08:17:6e:15:23:7c:86:0d:1d:88:8f:6c:28:
1c:cd:59:29:53:d6:56:ab:53:2f:b1:6f:9b:d2:3d:62:9b:df:
6a:1f:7c:e2:46:b7:f9:99:7b:cd:eb:fc:83:16:66:20:ad:a0:
3e:9e:69:13:81:56:b7:f5:97:c0:66:2d:37:58:96:ab:24:f2:
ec:c8:b6:7b:e6:e8:db:2e:18:0f:df:a0:2e:f7:49:89:c2:d5:
67:73:94:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 3 01:49:21 2026 by rpki-client