Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/4B8D541663CA11F1BE831AC3CE1D38B0.roa
File: 4B8D541663CA11F1BE831AC3CE1D38B0.roa (raw, json)
Hash identifier: bXc7znb5ZEPejbBo1hmaATzGi2o/yRX/qJJYrw6Fvu0=
Subject key identifier: 71:18:20:7A:A3:A0:53:B5:3A:73:1A:01:1B:6C:67:AD:59:73:2F:F8
Certificate issuer: /CN=F3696E5FAF/serialNumber=5375CF4CA1643B08C341BDA79D8BE105BDC3C48B
Certificate serial: 0604
Authority key identifier: 53:75:CF:4C:A1:64:3B:08:C3:41:BD:A7:9D:8B:E1:05:BD:C3:C4:8B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/U3XPTKFkOwjDQb2nnYvhBb3DxIs.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/4B8D541663CA11F1BE831AC3CE1D38B0.roa
Signing time: Tue 09 Jun 2026 06:13:13 +0000
ROA not before: Tue 09 Jun 2026 06:13:08 +0000
ROA not after: Tue 31 Dec 2030 06:13:08 +0000
asID: 25818
IP address blocks: 196.32.8.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/U3XPTKFkOwjDQb2nnYvhBb3DxIs.crl
rsync://rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/U3XPTKFkOwjDQb2nnYvhBb3DxIs.mft
rsync://rpki.afrinic.net/repository/afrinic/U3XPTKFkOwjDQb2nnYvhBb3DxIs.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 15 Jun 2026 00:07:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1540 (0x604)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3696E5FAF, serialNumber=5375CF4CA1643B08C341BDA79D8BE105BDC3C48B
Validity
Not Before: Jun 9 06:13:08 2026 GMT
Not After : Dec 31 06:13:08 2030 GMT
Subject: CN=6a27aef9-6d13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:63:24:d7:b1:95:22:b8:08:16:60:66:a3:b0:
ce:6a:b9:7a:85:16:1c:3f:0d:1e:22:a5:d9:5c:c3:
2b:1b:81:dc:0d:2f:1b:47:33:bf:71:0c:e7:5b:ef:
f3:31:2e:aa:c1:83:c1:63:ba:4f:68:5b:84:11:0a:
c0:7a:1e:f9:ad:5f:2d:ea:00:01:79:59:5e:47:96:
be:43:ae:e2:b6:9d:a8:97:3f:2e:15:5e:4c:42:a2:
12:3a:8f:49:45:d4:27:54:39:9b:73:91:d3:c2:3a:
a8:e0:be:76:45:69:da:ed:63:4a:7c:f8:fe:ec:54:
e7:16:cd:20:b6:64:47:7f:aa:7e:b2:31:ef:3e:84:
6b:ff:a8:10:da:a2:2f:ef:33:5d:49:41:d1:ba:d4:
a0:24:61:80:92:1e:5e:73:f1:10:be:c2:6e:e6:7f:
1e:d3:31:76:8d:ba:73:6e:3f:fa:aa:f4:14:bd:33:
8d:2b:06:b7:04:38:7c:c8:b1:b6:88:5e:d0:47:a1:
77:7b:06:06:87:4f:70:be:36:e3:0c:b5:d3:da:03:
9d:b3:15:90:ea:68:09:c8:b1:72:41:0a:c1:cc:fc:
c6:a6:d7:1e:0e:8a:28:6e:4d:7e:3f:2b:1c:50:d9:
d1:22:ff:d3:ad:68:7e:a1:be:ee:da:c5:90:f4:b4:
b0:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:18:20:7A:A3:A0:53:B5:3A:73:1A:01:1B:6C:67:AD:59:73:2F:F8
X509v3 Authority Key Identifier:
keyid:53:75:CF:4C:A1:64:3B:08:C3:41:BD:A7:9D:8B:E1:05:BD:C3:C4:8B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/U3XPTKFkOwjDQb2nnYvhBb3DxIs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/U3XPTKFkOwjDQb2nnYvhBb3DxIs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/4B8D541663CA11F1BE831AC3CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.32.8.0/21
Signature Algorithm: sha256WithRSAEncryption
c6:4f:29:64:4e:5c:ac:ca:94:94:d8:7c:78:7a:d1:35:c8:18:
61:af:d5:db:12:58:62:38:15:ba:e3:9d:c8:18:77:32:9e:16:
15:c5:64:0e:bb:3c:2a:8f:9c:2c:bc:3e:9c:8a:c7:10:02:a4:
ae:81:e1:3b:0e:5c:56:85:1f:a2:70:34:c1:44:b8:12:7d:e0:
08:fd:80:ba:1e:33:d5:ac:41:f9:40:1f:16:01:30:54:19:33:
a0:b1:5c:7d:2e:ba:25:f7:e7:a7:a2:34:d1:56:41:ff:af:25:
27:28:f0:25:e7:49:30:b5:ed:21:43:21:d0:6c:37:8a:c0:f3:
00:1e:85:8e:b1:51:55:c1:16:80:e3:7d:0b:3a:c4:24:00:10:
56:d8:40:60:24:d0:6b:7b:ec:74:a9:1a:69:aa:78:5c:42:7d:
0c:00:3a:f4:86:54:84:a8:ed:a7:14:62:f9:3c:10:b3:76:7e:
4d:38:30:5d:4d:9b:2f:de:2a:a1:aa:44:c4:93:93:fb:c9:b5:
fb:fd:0b:c7:6c:6f:7b:83:b8:e3:09:e9:39:ad:24:86:fe:7e:
08:aa:21:05:b3:90:f0:5a:50:bd:7b:c6:2e:85:a6:e8:c8:df:
39:8f:32:99:79:2b:f0:85:15:ac:9a:27:f1:7d:c6:59:16:b9:
94:6e:55:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 05:35:24 2026 by rpki-client