Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36886B3/3535CA1AB8EF11EDA9B341DAF1222468/EF38CCF8164511F197C88AE9DAE4EC9C.roa
File: EF38CCF8164511F197C88AE9DAE4EC9C.roa (raw, json)
Hash identifier: 3Od/gwdm8Wl29GBZU7GWEUTDGRNRpY32PEFWtqP1X/M=
Subject key identifier: 5F:A0:A0:7C:6C:93:F9:C4:71:6D:36:F1:D1:2E:A8:63:3D:7A:8E:F2
Certificate issuer: /CN=F36886B3AF/serialNumber=3D6ED905037C83C573780B0CCDC70D5D8CEF038B
Certificate serial: 04B0
Authority key identifier: 3D:6E:D9:05:03:7C:83:C5:73:78:0B:0C:CD:C7:0D:5D:8C:EF:03:8B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/PW7ZBQN8g8VzeAsMzccNXYzvA4s.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36886B3/3535CA1AB8EF11EDA9B341DAF1222468/EF38CCF8164511F197C88AE9DAE4EC9C.roa
Signing time: Mon 02 Mar 2026 14:41:45 +0000
ROA not before: Mon 02 Mar 2026 14:41:40 +0000
ROA not after: Sat 02 Mar 2030 14:41:40 +0000
asID: 33763
IP address blocks: 41.218.96.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36886B3/3535CA1AB8EF11EDA9B341DAF1222468/PW7ZBQN8g8VzeAsMzccNXYzvA4s.crl
rsync://rpki.afrinic.net/repository/member_repository/F36886B3/3535CA1AB8EF11EDA9B341DAF1222468/PW7ZBQN8g8VzeAsMzccNXYzvA4s.mft
rsync://rpki.afrinic.net/repository/afrinic/PW7ZBQN8g8VzeAsMzccNXYzvA4s.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 04 Mar 2026 00:07:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1200 (0x4b0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36886B3AF, serialNumber=3D6ED905037C83C573780B0CCDC70D5D8CEF038B
Validity
Not Before: Mar 2 14:41:40 2026 GMT
Not After : Mar 2 14:41:40 2030 GMT
Subject: CN=69a5a1a9-3296
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:e8:7a:15:27:b2:4b:75:40:97:35:ee:19:c4:
4e:c3:72:e9:21:09:c3:8b:42:18:10:b5:37:fc:e4:
96:38:d5:bd:e3:6f:5f:13:1e:6d:e0:32:e3:e5:ca:
bf:da:38:82:e5:be:2f:78:8c:12:45:f7:48:74:5f:
42:86:e0:52:23:cb:cc:1e:09:d5:2a:d1:1f:d4:04:
73:c2:c5:31:1e:5e:e2:a7:1d:64:64:21:77:6f:65:
b0:e6:a5:44:dc:57:26:f6:54:a2:de:c9:e7:01:cd:
b9:ce:94:ae:1d:90:e8:c5:ab:a6:3c:e9:76:c2:b6:
d3:03:43:0c:c0:e6:c0:e0:ba:81:c4:69:21:08:c1:
78:ad:9e:2b:99:37:00:35:73:39:7e:5e:94:6f:6b:
75:77:87:0f:e6:4c:7a:40:27:47:0f:56:f2:32:c3:
c0:35:ab:88:2d:6b:93:9e:73:98:97:57:bc:30:3b:
23:b4:8c:12:fa:d8:ac:7c:bd:08:b5:2a:dc:8e:c7:
4e:11:ce:64:21:f8:8c:ab:5e:f3:56:27:13:9c:d8:
ac:08:b2:f6:80:4a:0c:6d:a3:2e:10:29:07:e2:32:
3f:15:6c:89:cb:2c:00:8a:90:0c:3e:65:2a:4c:63:
5b:92:f5:3e:8f:20:85:cf:92:20:99:42:e4:60:d2:
1a:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:A0:A0:7C:6C:93:F9:C4:71:6D:36:F1:D1:2E:A8:63:3D:7A:8E:F2
X509v3 Authority Key Identifier:
keyid:3D:6E:D9:05:03:7C:83:C5:73:78:0B:0C:CD:C7:0D:5D:8C:EF:03:8B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36886B3/3535CA1AB8EF11EDA9B341DAF1222468/PW7ZBQN8g8VzeAsMzccNXYzvA4s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/PW7ZBQN8g8VzeAsMzccNXYzvA4s.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36886B3/3535CA1AB8EF11EDA9B341DAF1222468/EF38CCF8164511F197C88AE9DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.218.96.0/20
Signature Algorithm: sha256WithRSAEncryption
b1:39:c2:3f:c1:25:89:50:4d:a9:a6:2f:61:79:32:48:a9:dc:
2a:f4:a7:5c:df:b9:36:d9:b4:e7:22:50:c8:19:7e:b1:c5:91:
5c:80:2f:27:8e:5e:8d:46:87:17:90:26:9a:1c:ec:cd:bd:69:
e1:24:b2:9d:ea:67:0a:4b:8c:12:4b:03:b9:eb:90:fa:01:28:
1f:c7:48:a0:46:3b:d2:a5:c0:7f:72:a1:42:3e:3d:3d:47:80:
5e:a1:4e:c4:6d:fc:12:1b:02:c8:62:4b:ef:3d:7f:7e:67:41:
62:64:8f:9c:a4:d2:50:73:6f:1e:c1:2f:38:8f:e5:46:51:54:
5b:8d:14:94:e7:b4:1f:cc:11:fa:ec:a0:68:49:f2:93:5d:d6:
fc:aa:40:bd:25:cb:2f:52:54:b7:20:d0:1a:91:38:1d:e9:1c:
66:ad:2c:71:8c:b1:11:ae:03:91:98:23:b0:20:79:88:8e:10:
3a:20:69:0e:44:41:9d:b0:aa:55:19:07:d9:20:de:83:af:6c:
b0:0d:fc:0a:72:98:7f:b2:86:f1:d4:97:5b:72:30:c4:25:44:
6e:6f:ef:2e:f5:35:98:03:48:00:16:23:1f:b1:91:de:ea:93:
3d:71:3b:ab:5a:f1:b8:62:3a:77:1d:19:58:c2:b5:cd:f6:64:
1a:23:22:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 3 01:49:23 2026 by rpki-client