Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/304638A463F111F19F4862A8CE1D38B0.roa
File: 304638A463F111F19F4862A8CE1D38B0.roa (raw, json)
Hash identifier: LCeA3Ev3hShY/XIVNyiR7suSxfGqUt/ds+6exkNeIIM=
Subject key identifier: FE:04:4C:16:53:38:2A:7A:65:05:E7:8C:C6:F5:DC:0B:31:2C:A8:3C
Certificate issuer: /CN=F3696E5FAF/serialNumber=5375CF4CA1643B08C341BDA79D8BE105BDC3C48B
Certificate serial: 0624
Authority key identifier: 53:75:CF:4C:A1:64:3B:08:C3:41:BD:A7:9D:8B:E1:05:BD:C3:C4:8B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/U3XPTKFkOwjDQb2nnYvhBb3DxIs.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/304638A463F111F19F4862A8CE1D38B0.roa
Signing time: Tue 09 Jun 2026 10:51:38 +0000
ROA not before: Tue 09 Jun 2026 10:51:33 +0000
ROA not after: Tue 31 Dec 2030 10:51:33 +0000
asID: 25818
IP address blocks: 2001:4210::/32 maxlen: 48
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/U3XPTKFkOwjDQb2nnYvhBb3DxIs.crl
rsync://rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/U3XPTKFkOwjDQb2nnYvhBb3DxIs.mft
rsync://rpki.afrinic.net/repository/afrinic/U3XPTKFkOwjDQb2nnYvhBb3DxIs.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 15 Jun 2026 00:07:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1572 (0x624)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3696E5FAF, serialNumber=5375CF4CA1643B08C341BDA79D8BE105BDC3C48B
Validity
Not Before: Jun 9 10:51:33 2026 GMT
Not After : Dec 31 10:51:33 2030 GMT
Subject: CN=6a27f039-df32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:36:fa:15:c9:8d:52:b4:ae:c0:7f:36:02:18:
2a:9e:f5:5d:80:e7:4a:af:99:bf:d3:ae:5f:1e:a2:
37:35:31:22:b7:d7:20:3b:f8:bf:89:50:02:f7:50:
cb:fb:69:fc:09:22:6c:2f:e2:96:fb:7f:d4:fb:ae:
a7:62:38:5f:71:7b:9a:f3:07:34:27:9a:ee:f6:c4:
32:eb:40:f2:df:2d:a7:95:92:5a:a5:88:ad:ce:89:
36:c5:21:73:4e:4a:dd:0e:f7:14:48:6f:50:4c:75:
b7:6e:11:05:d8:60:ff:cb:8e:31:07:1b:d1:77:8b:
3f:53:73:a0:78:01:ce:ff:36:7e:df:ec:33:da:fe:
4e:5e:c0:47:7e:6c:09:ca:cb:9c:f1:1f:a9:2d:46:
ad:b2:7c:f6:a8:39:3b:b0:68:42:c1:2c:bb:a5:8d:
4d:26:03:4e:83:f7:a4:8f:2f:3a:6e:99:92:46:80:
03:24:74:de:02:ec:ab:26:f0:2e:23:60:ba:e4:cf:
a4:53:33:f1:70:92:e5:25:82:dd:84:7a:5a:26:8d:
69:1f:c0:62:ec:c5:8e:51:54:0f:92:fd:71:4f:13:
b7:29:d1:dc:bd:60:c0:30:b5:50:1c:0c:0a:f8:82:
d2:ac:7e:88:a0:4f:5c:cc:00:45:da:b8:81:81:11:
ff:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:04:4C:16:53:38:2A:7A:65:05:E7:8C:C6:F5:DC:0B:31:2C:A8:3C
X509v3 Authority Key Identifier:
keyid:53:75:CF:4C:A1:64:3B:08:C3:41:BD:A7:9D:8B:E1:05:BD:C3:C4:8B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/U3XPTKFkOwjDQb2nnYvhBb3DxIs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/U3XPTKFkOwjDQb2nnYvhBb3DxIs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/304638A463F111F19F4862A8CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:4210::/32
Signature Algorithm: sha256WithRSAEncryption
5d:cb:de:46:3c:ce:97:70:2a:bc:3a:98:67:cb:a4:f7:0d:93:
e5:d5:e3:0b:be:bb:e6:92:35:97:34:1e:ca:6d:15:53:bd:af:
44:6e:d0:5a:6b:94:b5:cc:27:ac:80:71:79:ad:d9:37:f3:77:
5c:43:cc:fc:c9:63:93:e1:aa:dc:43:1f:6f:2b:4a:46:19:6b:
2c:55:85:9b:cb:23:58:f9:e9:e7:b3:ae:30:63:b9:5f:e4:ed:
06:45:cd:bf:25:ea:ac:23:f3:dd:2e:bd:73:fd:5f:85:93:62:
de:2c:6c:c1:5b:a3:98:1c:65:43:dd:74:0a:a8:1e:75:84:93:
32:ac:79:27:da:0f:58:64:bd:44:e2:53:e6:73:73:2d:1c:5c:
5e:60:37:a5:57:73:ce:e8:a3:67:14:85:3e:51:98:5b:7e:3c:
11:db:02:1d:1e:98:e8:59:a3:f2:70:67:ea:2a:ba:90:9d:46:
86:c6:59:6f:c8:16:7d:2e:06:52:a0:dd:0e:78:26:8e:1f:9d:
e7:43:d7:4e:bc:05:19:ed:1a:58:63:de:6b:3b:6f:3c:dc:89:
36:7d:a4:ef:4d:ec:08:4c:34:8e:c9:13:b9:a2:23:9f:51:9f:
72:81:10:44:16:20:64:7a:e4:dc:45:c3:fb:da:d4:bc:cc:9d:
7e:75:b1:54
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICBiQwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
OTZFNUZBRjExMC8GA1UEBRMoNTM3NUNGNENBMTY0M0IwOEMzNDFCREE3OUQ4QkUx
MDVCREMzQzQ4QjAeFw0yNjA2MDkxMDUxMzNaFw0zMDEyMzExMDUxMzNaMBgxFjAU
BgNVBAMTDTZhMjdmMDM5LWRmMzIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDCNvoVyY1StK7AfzYCGCqe9V2A50qvmb/Trl8eojc1MSK31yA7+L+JUAL3
UMv7afwJImwv4pb7f9T7rqdiOF9xe5rzBzQnmu72xDLrQPLfLaeVklqliK3OiTbF
IXNOSt0O9xRIb1BMdbduEQXYYP/LjjEHG9F3iz9Tc6B4Ac7/Nn7f7DPa/k5ewEd+
bAnKy5zxH6ktRq2yfPaoOTuwaELBLLuljU0mA06D96SPLzpumZJGgAMkdN4C7Ksm
8C4jYLrkz6RTM/FwkuUlgt2EelomjWkfwGLsxY5RVA+S/XFPE7cp0dy9YMAwtVAc
DAr4gtKsfoigT1zMAEXauIGBEf8hAgMBAAGjggKmMIICojAdBgNVHQ4EFgQU/gRM
FlM4KnplBeeMxvXcCzEsqDwwHwYDVR0jBBgwFoAUU3XPTKFkOwjDQb2nnYvhBb3D
xIswDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjk2RTVGLzNEQTNEMzIwMTg5NzExRUQ4QzkzNkJEMkYxMjIyNDY4L1UzWFBU
S0ZrT3dqRFFiMm5uWXZoQmIzRHhJcy5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL1UzWFBUS0ZrT3dqRFFiMm5uWXZoQmIzRHhJcy5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjk2RTVGLzNEQTNEMzIwMTg5NzExRUQ4QzkzNkJEMkYx
MjIyNDY4LzMwNDYzOEE0NjNGMTExRjE5RjQ4NjJBOENFMUQzOEIwLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAgAUIQMA0GCSqGSIb3DQEB
CwUAA4IBAQBdy95GPM6XcCq8Ophny6T3DZPl1eMLvrvmkjWXNB7KbRVTva9EbtBa
a5S1zCesgHF5rdk383dcQ8z8yWOT4arcQx9vK0pGGWssVYWbyyNY+enns64wY7lf
5O0GRc2/JeqsI/PdLr1z/V+Fk2LeLGzBW6OYHGVD3XQKqB51hJMyrHkn2g9YZL1E
4lPmc3MtHFxeYDelV3PO6KNnFIU+UZhbfjwR2wIdHpjoWaPycGfqKrqQnUaGxllv
yBZ9LgZSoN0OeCaOH53nQ9dOvAUZ7RpYY95rO2883Ik2faTvTewITDSOyRO5oiOf
UZ9ygRBEFiBkeuTcRcP72tS8zJ1+dbFU
-----END CERTIFICATE-----
Generated at Sat Jun 13 06:51:31 2026 by rpki-client