Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/D4E7F5D263C911F18D2230BFCE1D38B0.roa
File: D4E7F5D263C911F18D2230BFCE1D38B0.roa (raw, json)
Hash identifier: FT9ac8Ykdp30FpgJ1AqJnRR4fTCVAlZln4Mcs64+mh4=
Subject key identifier: 33:48:5E:BB:B6:80:D3:62:7A:2F:9C:A3:0A:9F:F5:9C:55:15:31:4E
Certificate issuer: /CN=F3696E5FAF/serialNumber=5375CF4CA1643B08C341BDA79D8BE105BDC3C48B
Certificate serial: 0601
Authority key identifier: 53:75:CF:4C:A1:64:3B:08:C3:41:BD:A7:9D:8B:E1:05:BD:C3:C4:8B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/U3XPTKFkOwjDQb2nnYvhBb3DxIs.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/D4E7F5D263C911F18D2230BFCE1D38B0.roa
Signing time: Tue 09 Jun 2026 06:09:54 +0000
ROA not before: Tue 09 Jun 2026 06:09:49 +0000
ROA not after: Tue 31 Dec 2030 06:09:49 +0000
asID: 25818
IP address blocks: 197.231.160.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/U3XPTKFkOwjDQb2nnYvhBb3DxIs.crl
rsync://rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/U3XPTKFkOwjDQb2nnYvhBb3DxIs.mft
rsync://rpki.afrinic.net/repository/afrinic/U3XPTKFkOwjDQb2nnYvhBb3DxIs.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 15 Jun 2026 00:07:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1537 (0x601)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3696E5FAF, serialNumber=5375CF4CA1643B08C341BDA79D8BE105BDC3C48B
Validity
Not Before: Jun 9 06:09:49 2026 GMT
Not After : Dec 31 06:09:49 2030 GMT
Subject: CN=6a27ae32-8ae8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:f7:09:16:62:36:14:5d:e8:87:51:96:02:43:
0c:6b:df:29:4d:6a:4e:28:59:7a:0a:b0:c4:8b:1a:
b1:13:d9:11:92:5c:3b:49:cd:56:44:db:f3:d7:62:
81:1f:ef:61:06:77:9a:6f:2e:68:d5:12:a0:ad:30:
53:f9:aa:b2:79:10:5a:a0:19:7e:5f:f4:a2:21:b5:
df:ea:93:f0:8a:79:d0:66:01:28:84:49:79:18:e3:
89:23:cf:82:29:44:19:f1:ec:b7:6d:d8:84:d6:8d:
2f:fb:47:e5:fe:55:cd:6e:2c:fd:24:a3:d5:03:f7:
85:8c:65:4c:1c:4c:0d:73:bc:43:99:7a:4c:1f:5b:
61:38:b0:4e:cd:d6:d1:bb:7c:b2:d7:c8:d4:d0:42:
7a:a8:02:e3:9f:0d:f5:3b:c5:7e:09:e2:8f:66:a7:
81:44:52:a3:58:43:ec:48:d9:53:ea:5a:fe:d3:30:
d3:72:10:51:33:21:2e:2d:1b:be:0e:56:55:0b:37:
28:91:40:0a:05:18:d1:0d:c4:d5:ba:83:8c:c8:ba:
5a:87:70:ee:e6:54:70:78:32:55:bb:86:ef:d7:dd:
b8:9f:37:38:99:64:46:b1:ce:71:4d:ff:65:19:dc:
5f:22:5a:ba:8d:f6:f0:f5:23:79:b4:9e:a6:6e:7a:
b8:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:48:5E:BB:B6:80:D3:62:7A:2F:9C:A3:0A:9F:F5:9C:55:15:31:4E
X509v3 Authority Key Identifier:
keyid:53:75:CF:4C:A1:64:3B:08:C3:41:BD:A7:9D:8B:E1:05:BD:C3:C4:8B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/U3XPTKFkOwjDQb2nnYvhBb3DxIs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/U3XPTKFkOwjDQb2nnYvhBb3DxIs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/D4E7F5D263C911F18D2230BFCE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
197.231.160.0/21
Signature Algorithm: sha256WithRSAEncryption
8d:bb:d5:d5:d2:94:ed:23:26:04:50:fc:f2:7a:55:55:5e:f3:
ad:ed:b9:b7:1a:36:3b:e3:0e:28:d8:ec:98:11:11:80:0b:b3:
85:7a:a8:90:7d:99:ce:88:c1:6d:65:74:8c:db:ca:fc:c4:36:
46:25:df:f5:b6:62:1b:01:88:7c:8d:8c:a5:cf:7a:e9:a8:95:
bc:cf:f1:fd:ee:69:04:36:26:c4:f9:b1:b6:ec:f3:75:26:b8:
53:48:60:a8:8f:ce:91:a8:be:a5:45:a9:9b:48:6c:bc:30:16:
99:d7:ac:76:86:7f:1c:3d:9a:c8:37:49:87:f7:2c:56:0b:16:
4d:c4:8e:50:a3:0f:c0:8d:33:20:7b:84:37:9c:98:a9:49:50:
a7:40:c1:75:76:d0:ed:92:9a:4d:e7:9c:a8:a6:93:7b:95:a7:
50:8f:e9:34:5b:a2:cd:f5:2c:8d:ae:db:01:cc:a0:7c:fb:83:
a8:95:99:8e:da:af:90:c3:4d:72:d0:23:18:80:49:05:41:3a:
6d:b4:5e:3f:29:0d:7e:28:cf:36:98:e6:93:1b:8a:a8:aa:e3:
39:01:8a:a2:a7:54:7c:b6:3f:c7:07:e3:32:da:87:89:58:6b:
46:1e:de:86:ea:a3:24:36:db:3d:c8:e1:06:ab:0e:58:df:b0:
90:db:31:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 06:51:33 2026 by rpki-client