Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/14B3FDF031C511F19BFBF3A7DAE4EC9C.roa
File: 14B3FDF031C511F19BFBF3A7DAE4EC9C.roa (raw, json)
Hash identifier: yki70wMJjkF8GK10Y244hzfzk5cj+gAW3eBV96fUOME=
Subject key identifier: BA:81:66:D4:4B:49:AC:60:48:89:1C:5C:EA:1E:0E:F4:28:8E:F1:11
Certificate issuer: /CN=F36A1CEFAF/serialNumber=82F1C6611A3A1467DB3D78A4A5FED50A08A57B13
Certificate serial: 07A0
Authority key identifier: 82:F1:C6:61:1A:3A:14:67:DB:3D:78:A4:A5:FE:D5:0A:08:A5:7B:13
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/gvHGYRo6FGfbPXikpf7VCgilexM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/14B3FDF031C511F19BFBF3A7DAE4EC9C.roa
Signing time: Mon 06 Apr 2026 14:29:55 +0000
ROA not before: Mon 06 Apr 2026 14:29:50 +0000
ROA not after: Sun 06 Apr 2036 14:29:50 +0000
asID: 37645
IP address blocks: 102.214.0.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/gvHGYRo6FGfbPXikpf7VCgilexM.crl
rsync://rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/gvHGYRo6FGfbPXikpf7VCgilexM.mft
rsync://rpki.afrinic.net/repository/afrinic/gvHGYRo6FGfbPXikpf7VCgilexM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 18 Apr 2026 02:18:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1952 (0x7a0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36A1CEFAF, serialNumber=82F1C6611A3A1467DB3D78A4A5FED50A08A57B13
Validity
Not Before: Apr 6 14:29:50 2026 GMT
Not After : Apr 6 14:29:50 2036 GMT
Subject: CN=69d3c363-8251
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:de:0d:4b:88:74:33:a6:51:e2:5e:cd:6f:05:
86:e1:c6:68:e7:8f:94:46:2c:99:0c:ac:93:81:70:
ba:9b:96:7a:64:d9:a3:46:d4:5d:8b:03:56:85:6e:
48:d9:43:08:bd:43:12:10:49:80:6b:28:a4:65:17:
6f:47:54:9a:cf:40:5b:84:b5:bb:bc:54:49:01:bc:
19:8f:e5:74:38:c3:49:be:44:99:0b:16:a6:ba:fa:
8f:37:46:37:c9:02:af:16:a9:10:40:ac:cc:d6:03:
50:30:11:67:6a:ce:78:1e:6b:ea:53:37:22:60:05:
11:d3:52:4b:a2:56:dc:09:5e:c0:27:87:3e:f5:20:
6e:b4:91:46:02:f9:6d:7e:d1:57:e6:5a:77:04:c9:
70:0f:c6:03:22:d6:7d:28:44:40:2c:b7:48:3e:df:
30:22:d5:09:1d:b3:60:e1:00:c3:46:11:b4:ca:d1:
a5:d0:a1:bf:0d:ec:e1:47:cc:fb:f1:f3:0e:6d:e1:
12:a9:1f:6e:a8:f6:23:77:59:b3:34:1c:8a:46:1c:
8a:7b:4d:2d:c9:94:1b:76:f4:29:6a:34:9d:ec:0d:
60:87:1a:45:52:f1:74:87:40:d2:31:23:98:4e:db:
21:a9:d0:24:d6:9c:65:ab:5d:f7:51:d0:8a:08:02:
db:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:81:66:D4:4B:49:AC:60:48:89:1C:5C:EA:1E:0E:F4:28:8E:F1:11
X509v3 Authority Key Identifier:
keyid:82:F1:C6:61:1A:3A:14:67:DB:3D:78:A4:A5:FE:D5:0A:08:A5:7B:13
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/gvHGYRo6FGfbPXikpf7VCgilexM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/gvHGYRo6FGfbPXikpf7VCgilexM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/14B3FDF031C511F19BFBF3A7DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.214.0.0/22
Signature Algorithm: sha256WithRSAEncryption
af:55:e6:97:43:31:0c:33:d6:e1:0c:06:f6:e4:f9:5e:82:7e:
43:94:f9:43:95:3d:8f:b8:52:18:77:be:0a:3f:87:07:7d:93:
df:15:b8:56:f8:5c:9e:35:ff:a3:e9:76:d5:04:ad:f6:93:a2:
61:2b:f6:1f:1e:ab:7d:26:49:be:a0:7f:57:d1:1a:a6:fe:63:
a8:92:49:83:80:59:39:4e:53:a8:7b:0c:03:cf:e1:0c:30:55:
d5:6d:7c:ef:c4:0f:7f:30:9a:12:11:48:f2:af:28:53:54:aa:
c4:29:c7:ed:59:69:05:5f:4c:d7:16:e8:b3:bb:1c:e2:d5:c0:
da:4c:66:b1:88:39:0e:72:8a:6c:2d:1f:d9:39:17:2e:df:f0:
8b:65:8a:51:00:3a:39:b4:f1:a0:2c:e4:5a:6f:a8:84:b4:b1:
a7:0a:d9:07:09:f7:7b:61:e4:d3:64:4f:1a:2f:d0:70:d6:a1:
b6:07:26:15:0f:9d:bc:f7:d5:3e:8c:68:00:a8:6d:0e:37:d4:
5a:3e:ca:41:64:18:86:c7:45:27:98:e3:4a:22:67:b4:71:69:
98:96:74:61:91:86:16:65:9b:b6:08:13:8d:67:c1:fe:15:4e:
44:5d:09:89:42:4b:bd:f0:e6:ba:a6:10:a4:23:3f:76:93:15:
c8:31:0d:4c
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICB6AwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
QTFDRUZBRjExMC8GA1UEBRMoODJGMUM2NjExQTNBMTQ2N0RCM0Q3OEE0QTVGRUQ1
MEEwOEE1N0IxMzAeFw0yNjA0MDYxNDI5NTBaFw0zNjA0MDYxNDI5NTBaMBgxFjAU
BgNVBAMTDTY5ZDNjMzYzLTgyNTEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQC+3g1LiHQzplHiXs1vBYbhxmjnj5RGLJkMrJOBcLqblnpk2aNG1F2LA1aF
bkjZQwi9QxIQSYBrKKRlF29HVJrPQFuEtbu8VEkBvBmP5XQ4w0m+RJkLFqa6+o83
RjfJAq8WqRBArMzWA1AwEWdqzngea+pTNyJgBRHTUkuiVtwJXsAnhz71IG60kUYC
+W1+0VfmWncEyXAPxgMi1n0oREAst0g+3zAi1Qkds2DhAMNGEbTK0aXQob8N7OFH
zPvx8w5t4RKpH26o9iN3WbM0HIpGHIp7TS3JlBt29ClqNJ3sDWCHGkVS8XSHQNIx
I5hO2yGp0CTWnGWrXfdR0IoIAtuTAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUuoFm
1EtJrGBIiRxc6h4O9CiO8REwHwYDVR0jBBgwFoAUgvHGYRo6FGfbPXikpf7VCgil
exMwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNkExQ0VGLzdGMzg4REU0RjEzODExRUI5MTdGRDcxN0Q4QTAxNENFL2d2SEdZ
Um82RkdmYlBYaWtwZjdWQ2dpbGV4TS5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL2d2SEdZUm82RkdmYlBYaWtwZjdWQ2dpbGV4TS5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNkExQ0VGLzdGMzg4REU0RjEzODExRUI5MTdGRDcxN0Q4
QTAxNENFLzE0QjNGREYwMzFDNTExRjE5QkZCRjNBN0RBRTRFQzlDLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJm1gAwDQYJKoZIhvcNAQEL
BQADggEBAK9V5pdDMQwz1uEMBvbk+V6CfkOU+UOVPY+4Uhh3vgo/hwd9k98VuFb4
XJ41/6PpdtUErfaTomEr9h8eq30mSb6gf1fRGqb+Y6iSSYOAWTlOU6h7DAPP4Qww
VdVtfO/ED38wmhIRSPKvKFNUqsQpx+1ZaQVfTNcW6LO7HOLVwNpMZrGIOQ5yimwt
H9k5Fy7f8ItlilEAOjm08aAs5FpvqIS0sacK2QcJ93th5NNkTxov0HDWobYHJhUP
nbz31T6MaACobQ431Fo+ykFkGIbHRSeY40oiZ7RxaZiWdGGRhhZlm7YIE41nwf4V
TkRdCYlCS73w5rqmEKQjP3aTFcgxDUw=
-----END CERTIFICATE-----
Generated at Fri Apr 17 04:33:15 2026 by rpki-client