Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/24407F2431DD11F1B2EF6FB0DAE4EC9C.roa
File: 24407F2431DD11F1B2EF6FB0DAE4EC9C.roa (raw, json)
Hash identifier: swExoTSzr/HphO/RuiYU4vF1Uh5yVj5x3/uO3edAUWw=
Subject key identifier: 74:06:1E:10:F8:A6:8F:7B:41:E2:1A:F2:FC:8B:88:0A:5E:49:5A:81
Certificate issuer: /CN=F36A1CEFAF/serialNumber=82F1C6611A3A1467DB3D78A4A5FED50A08A57B13
Certificate serial: 07C1
Authority key identifier: 82:F1:C6:61:1A:3A:14:67:DB:3D:78:A4:A5:FE:D5:0A:08:A5:7B:13
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/gvHGYRo6FGfbPXikpf7VCgilexM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/24407F2431DD11F1B2EF6FB0DAE4EC9C.roa
Signing time: Mon 06 Apr 2026 17:22:09 +0000
ROA not before: Mon 06 Apr 2026 17:22:03 +0000
ROA not after: Sun 06 Apr 2036 17:22:03 +0000
asID: 37645
IP address blocks: 102.210.4.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/gvHGYRo6FGfbPXikpf7VCgilexM.crl
rsync://rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/gvHGYRo6FGfbPXikpf7VCgilexM.mft
rsync://rpki.afrinic.net/repository/afrinic/gvHGYRo6FGfbPXikpf7VCgilexM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 00:07:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1985 (0x7c1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36A1CEFAF, serialNumber=82F1C6611A3A1467DB3D78A4A5FED50A08A57B13
Validity
Not Before: Apr 6 17:22:03 2026 GMT
Not After : Apr 6 17:22:03 2036 GMT
Subject: CN=69d3ebc1-7f91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:dd:37:75:ab:c9:87:d1:5e:08:cd:d8:7c:15:
47:19:bc:8e:7a:6b:fc:11:03:16:6d:9b:1c:b9:ba:
00:99:55:bb:d6:ed:9b:3c:40:bd:37:2d:d0:3a:3c:
9a:77:0d:75:e1:8b:08:a0:5e:9b:03:8b:a6:61:5b:
64:06:ac:eb:fe:92:2c:b6:80:01:07:65:f2:46:d4:
9b:46:f3:d1:2b:2e:1f:dc:29:4d:a6:42:2e:33:b7:
ee:44:6b:be:bb:21:67:3c:33:1b:87:53:23:ab:ab:
06:5e:88:52:e9:23:13:e8:e0:ce:4d:84:d7:8f:7b:
48:2f:f7:13:2b:d5:45:b3:69:fe:54:84:19:38:2a:
10:18:8e:b1:23:9d:55:0f:9d:6e:11:0b:66:fd:cb:
64:f1:9a:7b:06:93:f8:e2:05:c4:e3:5b:29:7a:bd:
9c:e6:5b:cf:c5:82:f4:14:a8:43:1c:57:bd:61:d0:
93:c8:76:6c:1e:14:8a:08:8d:cc:77:bd:64:ca:08:
d7:54:06:4b:7e:ea:d0:84:d5:e6:f8:12:90:95:fe:
de:2d:7d:33:ec:9f:16:76:01:68:82:59:73:ed:97:
5b:fe:01:55:86:4d:e4:e9:37:64:7e:e7:f7:79:57:
8c:b5:aa:a9:48:47:b2:86:57:62:55:d9:21:e2:61:
52:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:06:1E:10:F8:A6:8F:7B:41:E2:1A:F2:FC:8B:88:0A:5E:49:5A:81
X509v3 Authority Key Identifier:
keyid:82:F1:C6:61:1A:3A:14:67:DB:3D:78:A4:A5:FE:D5:0A:08:A5:7B:13
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/gvHGYRo6FGfbPXikpf7VCgilexM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/gvHGYRo6FGfbPXikpf7VCgilexM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/24407F2431DD11F1B2EF6FB0DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.210.4.0/22
Signature Algorithm: sha256WithRSAEncryption
25:6c:3a:87:3a:7c:e3:ef:b9:0b:45:d9:a7:2d:8e:8b:68:a7:
5d:09:03:31:50:5f:6e:3b:fb:fe:13:75:48:c9:2d:9c:ad:aa:
e9:0b:dd:0e:69:63:22:01:71:31:b3:ea:74:1a:3a:a1:40:22:
af:d0:68:e3:81:d1:57:46:ab:b9:59:7b:b8:48:15:f6:e7:da:
f4:e6:87:2a:12:12:a4:94:86:c6:bd:16:b3:4c:1a:12:b6:9d:
23:eb:e8:30:1f:25:74:0e:d3:d0:90:d4:1c:1c:e5:d2:fc:22:
7d:1d:cd:9a:01:83:f7:0b:d6:04:3f:da:23:63:cc:6f:d1:f9:
b0:d1:72:6f:bb:d6:11:71:ef:32:57:7a:0f:86:b3:f4:d0:05:
0d:dc:4b:c8:3d:d0:c5:78:64:ee:0a:1d:da:c1:48:3c:53:d7:
0e:04:a0:77:d3:63:fb:8b:df:92:17:ed:6b:ed:1f:27:e7:66:
3b:c1:0d:3d:93:6e:e8:5f:2f:52:05:af:d1:34:02:45:5c:6f:
3d:30:b0:03:19:07:f6:3c:7b:db:11:dd:bd:a0:6f:0b:ca:6e:
ef:79:73:6f:db:df:c5:9a:5f:8f:3c:00:f4:99:c4:91:0b:c4:
86:65:4c:b4:15:17:21:86:55:bf:4d:c1:27:3c:e6:11:71:0e:
f0:46:59:ab
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICB8EwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
QTFDRUZBRjExMC8GA1UEBRMoODJGMUM2NjExQTNBMTQ2N0RCM0Q3OEE0QTVGRUQ1
MEEwOEE1N0IxMzAeFw0yNjA0MDYxNzIyMDNaFw0zNjA0MDYxNzIyMDNaMBgxFjAU
BgNVBAMTDTY5ZDNlYmMxLTdmOTEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQC/3Td1q8mH0V4Izdh8FUcZvI56a/wRAxZtmxy5ugCZVbvW7Zs8QL03LdA6
PJp3DXXhiwigXpsDi6ZhW2QGrOv+kiy2gAEHZfJG1JtG89ErLh/cKU2mQi4zt+5E
a767IWc8MxuHUyOrqwZeiFLpIxPo4M5NhNePe0gv9xMr1UWzaf5UhBk4KhAYjrEj
nVUPnW4RC2b9y2TxmnsGk/jiBcTjWyl6vZzmW8/FgvQUqEMcV71h0JPIdmweFIoI
jcx3vWTKCNdUBkt+6tCE1eb4EpCV/t4tfTPsnxZ2AWiCWXPtl1v+AVWGTeTpN2R+
5/d5V4y1qqlIR7KGV2JV2SHiYVIpAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUdAYe
EPimj3tB4hry/IuICl5JWoEwHwYDVR0jBBgwFoAUgvHGYRo6FGfbPXikpf7VCgil
exMwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNkExQ0VGLzdGMzg4REU0RjEzODExRUI5MTdGRDcxN0Q4QTAxNENFL2d2SEdZ
Um82RkdmYlBYaWtwZjdWQ2dpbGV4TS5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL2d2SEdZUm82RkdmYlBYaWtwZjdWQ2dpbGV4TS5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNkExQ0VGLzdGMzg4REU0RjEzODExRUI5MTdGRDcxN0Q4
QTAxNENFLzI0NDA3RjI0MzFERDExRjFCMkVGNkZCMERBRTRFQzlDLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJm0gQwDQYJKoZIhvcNAQEL
BQADggEBACVsOoc6fOPvuQtF2actjotop10JAzFQX247+/4TdUjJLZytqukL3Q5p
YyIBcTGz6nQaOqFAIq/QaOOB0VdGq7lZe7hIFfbn2vTmhyoSEqSUhsa9FrNMGhK2
nSPr6DAfJXQO09CQ1Bwc5dL8In0dzZoBg/cL1gQ/2iNjzG/R+bDRcm+71hFx7zJX
eg+Gs/TQBQ3cS8g90MV4ZO4KHdrBSDxT1w4EoHfTY/uL35IX7WvtHyfnZjvBDT2T
buhfL1IFr9E0AkVcbz0wsAMZB/Y8e9sR3b2gbwvKbu95c2/b38WaX488APSZxJEL
xIZlTLQVFyGGVb9NwSc85hFxDvBGWas=
-----END CERTIFICATE-----
Generated at Fri Apr 17 06:50:28 2026 by rpki-client