Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/095EF0C031E011F190717FC1DAE4EC9C.roa
File: 095EF0C031E011F190717FC1DAE4EC9C.roa (raw, json)
Hash identifier: dzflDoxOpzpUgSIWiEA972HPgxMsTyqLlK8yrYd0ey4=
Subject key identifier: 7F:27:DB:CD:C7:FD:16:AE:C5:B2:8C:13:6C:35:5A:B8:D5:9A:DA:CF
Certificate issuer: /CN=F36A1CEFAF/serialNumber=82F1C6611A3A1467DB3D78A4A5FED50A08A57B13
Certificate serial: 07C4
Authority key identifier: 82:F1:C6:61:1A:3A:14:67:DB:3D:78:A4:A5:FE:D5:0A:08:A5:7B:13
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/gvHGYRo6FGfbPXikpf7VCgilexM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/095EF0C031E011F190717FC1DAE4EC9C.roa
Signing time: Mon 06 Apr 2026 17:42:53 +0000
ROA not before: Mon 06 Apr 2026 17:42:48 +0000
ROA not after: Sun 06 Apr 2036 17:42:48 +0000
asID: 37645
IP address blocks: 102.210.120.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/gvHGYRo6FGfbPXikpf7VCgilexM.crl
rsync://rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/gvHGYRo6FGfbPXikpf7VCgilexM.mft
rsync://rpki.afrinic.net/repository/afrinic/gvHGYRo6FGfbPXikpf7VCgilexM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 00:07:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1988 (0x7c4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36A1CEFAF, serialNumber=82F1C6611A3A1467DB3D78A4A5FED50A08A57B13
Validity
Not Before: Apr 6 17:42:48 2026 GMT
Not After : Apr 6 17:42:48 2036 GMT
Subject: CN=69d3f09d-e0e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:3d:85:2f:11:78:48:02:5c:67:a5:91:eb:16:
03:fd:7e:0f:4a:a2:91:63:dc:af:2e:aa:26:2a:a4:
4a:73:44:39:99:5c:91:64:65:24:33:0d:02:e4:5a:
8b:cf:19:80:67:76:61:93:2f:a2:a0:13:f3:7f:1c:
c7:22:f3:ca:b4:86:6f:9a:c9:51:25:5d:5f:d7:18:
67:f8:15:c4:10:f6:00:4a:0b:ab:39:3f:19:86:93:
e3:b8:ef:b2:d6:f8:e6:f9:e2:02:0e:80:ef:ee:3d:
df:29:4f:75:e1:70:15:ba:8c:af:4e:a0:83:f7:c0:
81:42:60:ae:0c:62:21:8c:79:a0:09:13:19:1e:3c:
a7:a5:76:11:32:74:06:02:a6:eb:0a:7e:be:46:75:
90:88:c9:fe:50:d3:7c:40:ff:57:43:3c:98:dc:88:
81:4c:4b:e4:a5:08:5e:a9:1b:9e:48:90:a9:e2:86:
bf:d1:4b:7d:e1:90:9f:8a:38:f5:9f:43:d6:5c:66:
35:2b:f1:f8:42:76:d4:d9:c7:9c:1e:b6:21:2a:98:
ac:00:f5:90:ad:fe:1b:d9:3d:18:be:0d:3d:d1:90:
1a:68:40:ed:ae:8d:df:30:53:72:97:d3:84:0d:05:
27:1a:71:f8:73:14:22:f7:17:65:9d:c4:f8:d8:12:
01:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:27:DB:CD:C7:FD:16:AE:C5:B2:8C:13:6C:35:5A:B8:D5:9A:DA:CF
X509v3 Authority Key Identifier:
keyid:82:F1:C6:61:1A:3A:14:67:DB:3D:78:A4:A5:FE:D5:0A:08:A5:7B:13
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/gvHGYRo6FGfbPXikpf7VCgilexM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/gvHGYRo6FGfbPXikpf7VCgilexM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/095EF0C031E011F190717FC1DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.210.120.0/22
Signature Algorithm: sha256WithRSAEncryption
69:8a:8b:cf:2c:2b:cb:36:08:13:a9:71:fb:b4:a6:64:4c:1d:
42:ae:68:a2:85:7e:f6:35:ce:09:31:60:c5:c3:20:02:ad:a5:
c9:7a:50:e8:dd:ef:f8:d7:f2:9c:31:12:bf:03:1e:5f:2b:2d:
b9:2c:93:bd:ae:6e:ae:58:ae:5a:5a:06:b4:f3:15:9d:94:24:
eb:58:24:70:58:a9:71:3a:fd:41:8a:d8:58:63:5a:d9:6d:23:
47:2b:02:a6:78:a8:44:fa:e5:2d:23:56:65:38:34:b6:16:38:
4b:d9:0c:7d:29:8c:c5:47:c8:8b:2b:a9:e0:89:e1:e5:d0:7e:
23:ab:21:34:f3:f9:67:77:f1:76:99:ab:44:3c:17:9f:a1:4e:
62:b9:59:04:74:69:f1:4d:ed:29:c4:c3:e5:42:33:1a:c7:a8:
5f:14:d9:89:df:ad:a5:c3:fa:40:aa:26:a3:4a:11:33:67:d5:
dc:3c:86:1e:d5:1f:d7:a6:fb:6a:64:74:23:df:ee:cd:de:5b:
ba:27:5b:6a:e4:ef:1c:73:6a:b2:ed:56:98:ee:0d:e9:79:70:
c1:62:71:89:c5:d9:a4:48:2a:14:16:39:8b:83:c9:36:e4:8a:
14:22:3a:9d:bf:00:cb:3b:b6:f9:1d:60:d5:c9:27:35:45:f7:
c7:b7:4f:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 06:52:11 2026 by rpki-client