Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F369591C/3474032EC24711EDAFA6C79FF1222468/FD479F26078711F19A82A8CFDAE4EC9C.roa
File: FD479F26078711F19A82A8CFDAE4EC9C.roa (raw, json)
Hash identifier: wFeP3modvmH5Mhqjv+CC64SA6dnMkJLe/UIwelKEa48=
Subject key identifier: 8B:B8:6F:CD:B8:F1:E4:F1:81:6F:52:80:F1:03:24:EB:11:3B:52:3E
Certificate issuer: /CN=F369591CAF/serialNumber=C1090D37DA9FFEEE1A9C229BAFF1190BD22E8934
Certificate serial: 04B6
Authority key identifier: C1:09:0D:37:DA:9F:FE:EE:1A:9C:22:9B:AF:F1:19:0B:D2:2E:89:34
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/wQkNN9qf_u4anCKbr_EZC9IuiTQ.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F369591C/3474032EC24711EDAFA6C79FF1222468/FD479F26078711F19A82A8CFDAE4EC9C.roa
Signing time: Wed 11 Feb 2026 20:26:48 +0000
ROA not before: Wed 11 Feb 2026 20:26:43 +0000
ROA not after: Tue 31 Dec 2030 20:26:43 +0000
asID: 15964
IP address blocks: 2001:4268::/64 maxlen: 64
2001:4268:0:1::/64 maxlen: 64
2001:4268:0:2::/64 maxlen: 64
2001:4268:0:3::/64 maxlen: 64
2001:4268:0:4::/64 maxlen: 64
2001:4268:1a0::/64 maxlen: 64
2001:4268:2a0::/64 maxlen: 64
2001:4268:8000::/64 maxlen: 64
2001:4268:8000:2::/64 maxlen: 64
2001:4268:8000:3::/64 maxlen: 64
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F369591C/3474032EC24711EDAFA6C79FF1222468/wQkNN9qf_u4anCKbr_EZC9IuiTQ.crl
rsync://rpki.afrinic.net/repository/member_repository/F369591C/3474032EC24711EDAFA6C79FF1222468/wQkNN9qf_u4anCKbr_EZC9IuiTQ.mft
rsync://rpki.afrinic.net/repository/afrinic/wQkNN9qf_u4anCKbr_EZC9IuiTQ.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 04 Mar 2026 00:07:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1206 (0x4b6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F369591CAF, serialNumber=C1090D37DA9FFEEE1A9C229BAFF1190BD22E8934
Validity
Not Before: Feb 11 20:26:43 2026 GMT
Not After : Dec 31 20:26:43 2030 GMT
Subject: CN=698ce608-384c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:0b:1e:26:fd:76:0f:45:93:dc:40:5b:f8:62:
a8:94:1e:d5:d8:2f:60:83:d1:d5:8d:4a:7d:80:1d:
3b:74:57:13:3f:60:ac:fb:7d:2a:b1:82:23:e3:1a:
6c:d2:4c:64:e8:22:87:1c:7d:77:d5:22:82:e9:a8:
bf:3c:b7:9b:02:5e:9a:42:b9:4b:8e:af:7b:9e:12:
0e:06:2e:59:8f:fa:2e:da:fd:ad:c4:cf:bf:c5:b2:
7f:4c:b9:f8:0e:a1:d9:9b:c9:a9:61:21:20:19:00:
6c:a6:09:e5:6d:58:7b:8f:f5:50:86:f6:ca:4c:4d:
d4:d3:af:ee:26:85:a5:b2:e0:4b:8e:de:58:a7:a1:
38:85:e2:d3:4e:7b:1f:b1:dd:cd:19:48:d5:05:44:
84:80:2d:d1:df:c6:4b:ab:7b:85:e3:d4:05:44:67:
b0:fa:de:bf:a2:cb:80:e4:f8:c7:19:f9:db:6c:a0:
57:17:b2:7b:94:8b:a9:87:eb:18:51:90:e7:7b:a5:
bc:aa:4a:6c:ee:31:50:2c:b2:7c:36:7a:6f:6d:ab:
58:7a:d5:74:db:ad:aa:ce:2e:35:57:6b:89:e0:ad:
30:34:63:43:e4:08:82:51:ea:c0:bf:1a:95:4e:22:
4f:4b:8b:bf:f0:f7:4d:1c:db:35:f3:ae:a3:26:ea:
90:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:B8:6F:CD:B8:F1:E4:F1:81:6F:52:80:F1:03:24:EB:11:3B:52:3E
X509v3 Authority Key Identifier:
keyid:C1:09:0D:37:DA:9F:FE:EE:1A:9C:22:9B:AF:F1:19:0B:D2:2E:89:34
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F369591C/3474032EC24711EDAFA6C79FF1222468/wQkNN9qf_u4anCKbr_EZC9IuiTQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/wQkNN9qf_u4anCKbr_EZC9IuiTQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F369591C/3474032EC24711EDAFA6C79FF1222468/FD479F26078711F19A82A8CFDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:4268::-2001:4268:0:4:ffff:ffff:ffff:ffff
2001:4268:1a0::/64
2001:4268:2a0::/64
2001:4268:8000::/64
2001:4268:8000:2::/63
Signature Algorithm: sha256WithRSAEncryption
85:e2:9c:24:c2:df:85:c1:54:b8:b6:f5:b2:4a:57:db:52:77:
c5:de:a6:e3:9d:17:fa:d5:10:15:9f:c1:9c:9b:60:be:91:f3:
63:51:3f:f2:dc:e5:7e:b9:41:b7:2b:4f:c2:95:5e:2b:1d:78:
e7:08:8d:ac:70:79:ec:33:9d:cd:6b:13:5a:dd:e0:b0:7b:79:
fe:bb:c4:c5:70:c8:ab:3d:e3:b6:51:65:12:73:e6:db:cd:5b:
43:d3:ed:42:5e:86:62:8c:6f:1c:5c:b0:d6:5a:57:f3:11:e1:
2a:d3:18:c6:bd:2f:a2:e9:c6:35:e0:d4:6e:16:c5:67:1d:14:
da:04:60:be:51:de:f7:e6:d5:84:51:7c:67:30:86:3d:2d:b5:
b7:f1:f4:ac:d8:75:7c:7a:36:a9:60:19:89:af:1f:18:d6:23:
d1:98:df:61:6e:00:c6:e9:bc:18:31:47:ff:cf:97:20:52:06:
53:ca:85:a8:2b:fa:5e:7c:e9:14:85:10:2f:25:77:18:e2:50:
3b:06:c8:e4:c6:16:0b:7f:c3:b8:7d:0c:6d:ab:08:00:da:ab:
3f:e0:83:ac:1a:76:4b:d1:67:ab:82:c8:31:3d:9c:ac:1e:c4:
ca:cf:0e:e5:26:d5:71:76:cb:8b:fd:95:71:13:4e:d7:23:f2:
33:18:bd:ab
-----BEGIN CERTIFICATE-----
MIIFvTCCBKWgAwIBAgICBLYwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
OTU5MUNBRjExMC8GA1UEBRMoQzEwOTBEMzdEQTlGRkVFRTFBOUMyMjlCQUZGMTE5
MEJEMjJFODkzNDAeFw0yNjAyMTEyMDI2NDNaFw0zMDEyMzEyMDI2NDNaMBgxFjAU
BgNVBAMTDTY5OGNlNjA4LTM4NGMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDoCx4m/XYPRZPcQFv4YqiUHtXYL2CD0dWNSn2AHTt0VxM/YKz7fSqxgiPj
GmzSTGToIoccfXfVIoLpqL88t5sCXppCuUuOr3ueEg4GLlmP+i7a/a3Ez7/Fsn9M
ufgOodmbyalhISAZAGymCeVtWHuP9VCG9spMTdTTr+4mhaWy4EuO3linoTiF4tNO
ex+x3c0ZSNUFRISALdHfxkure4Xj1AVEZ7D63r+iy4Dk+McZ+dtsoFcXsnuUi6mH
6xhRkOd7pbyqSmzuMVAssnw2em9tq1h61XTbrarOLjVXa4ngrTA0Y0PkCIJR6sC/
GpVOIk9Li7/w900c2zXzrqMm6pDrAgMBAAGjggLfMIIC2zAdBgNVHQ4EFgQUi7hv
zbjx5PGBb1KA8QMk6xE7Uj4wHwYDVR0jBBgwFoAUwQkNN9qf/u4anCKbr/EZC9Iu
iTQwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjk1OTFDLzM0NzQwMzJFQzI0NzExRURBRkE2Qzc5RkYxMjIyNDY4L3dRa05O
OXFmX3U0YW5DS2JyX0VaQzlJdWlUUS5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL3dRa05OOXFmX3U0YW5DS2JyX0VaQzlJdWlUUS5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjk1OTFDLzM0NzQwMzJFQzI0NzExRURBRkE2Qzc5RkYx
MjIyNDY4L0ZENDc5RjI2MDc4NzExRjE5QTgyQThDRkRBRTRFQzlDLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwWQYIKwYBBQUHAQcBAf8ESjBIMEYEAgACMEAwEgMFAyABQmgDCQAgAUJoAAAA
BAMJACABQmgBoAAAAwkAIAFCaAKgAAADCQAgAUJogAAAAAMJASABQmiAAAACMA0G
CSqGSIb3DQEBCwUAA4IBAQCF4pwkwt+FwVS4tvWySlfbUnfF3qbjnRf61RAVn8Gc
m2C+kfNjUT/y3OV+uUG3K0/ClV4rHXjnCI2scHnsM53NaxNa3eCwe3n+u8TFcMir
PeO2UWUSc+bbzVtD0+1CXoZijG8cXLDWWlfzEeEq0xjGvS+i6cY14NRuFsVnHRTa
BGC+Ud735tWEUXxnMIY9LbW38fSs2HV8ejapYBmJrx8Y1iPRmN9hbgDG6bwYMUf/
z5cgUgZTyoWoK/pefOkUhRAvJXcY4lA7BsjkxhYLf8O4fQxtqwgA2qs/4IOsGnZL
0WergsgxPZysHsTKzw7lJtVxdsuL/ZVxE07XI/IzGL2r
-----END CERTIFICATE-----
Generated at Mon Mar 2 11:56:38 2026 by rpki-client