Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/32A4F74C31CA11F1A89426C5DAE4EC9C.roa
File: 32A4F74C31CA11F1A89426C5DAE4EC9C.roa (raw, json)
Hash identifier: 6PvDVTzGzqpsU1NuvcWjmyoaxR1Pmky5CuTuNIv3Vuk=
Subject key identifier: 14:77:0E:A0:E4:67:3E:6D:00:5D:D6:D2:04:9B:D3:1E:B2:7D:D1:97
Certificate issuer: /CN=F36A1CEFAF/serialNumber=82F1C6611A3A1467DB3D78A4A5FED50A08A57B13
Certificate serial: 07AC
Authority key identifier: 82:F1:C6:61:1A:3A:14:67:DB:3D:78:A4:A5:FE:D5:0A:08:A5:7B:13
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/gvHGYRo6FGfbPXikpf7VCgilexM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/32A4F74C31CA11F1A89426C5DAE4EC9C.roa
Signing time: Mon 06 Apr 2026 15:06:33 +0000
ROA not before: Mon 06 Apr 2026 15:06:28 +0000
ROA not after: Sun 06 Apr 2036 15:06:28 +0000
asID: 37645
IP address blocks: 102.213.104.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/gvHGYRo6FGfbPXikpf7VCgilexM.crl
rsync://rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/gvHGYRo6FGfbPXikpf7VCgilexM.mft
rsync://rpki.afrinic.net/repository/afrinic/gvHGYRo6FGfbPXikpf7VCgilexM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 00:07:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1964 (0x7ac)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36A1CEFAF, serialNumber=82F1C6611A3A1467DB3D78A4A5FED50A08A57B13
Validity
Not Before: Apr 6 15:06:28 2026 GMT
Not After : Apr 6 15:06:28 2036 GMT
Subject: CN=69d3cbf9-7585
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:e2:93:11:1e:26:aa:2f:7b:a0:c0:23:80:1d:
be:7f:7f:fe:68:cf:da:10:d5:3f:24:17:42:3c:15:
9f:84:c4:08:fc:ae:aa:c1:ee:5a:0b:9a:95:21:c9:
e1:7d:23:a3:01:25:c9:87:81:ba:57:73:50:35:b7:
c5:8a:46:64:50:22:77:60:7e:11:bd:0d:e1:e1:8d:
a2:0d:f8:e6:41:e6:9c:34:45:3e:a6:e5:16:45:49:
aa:68:ca:c7:b1:fa:30:9a:61:0a:b9:0b:42:8c:07:
67:60:b6:97:1c:9f:37:82:9f:76:31:f8:6d:9c:15:
f0:8f:03:4f:ce:55:1e:4e:9f:20:5e:78:5a:2a:36:
cf:53:4a:de:33:87:35:46:69:62:c5:e8:7d:d2:9e:
01:2b:7b:83:e2:35:eb:05:8d:a2:66:00:03:41:c8:
d1:92:f2:44:d3:ce:b8:98:5f:7b:b7:e5:60:5a:36:
a8:74:dc:71:57:29:86:4c:5f:db:07:6d:24:25:80:
a2:d0:41:50:9d:c4:3f:63:b3:1b:80:88:b6:a8:fa:
52:86:ae:5e:ab:68:b2:e6:ae:9e:fa:90:56:bb:7e:
18:15:44:18:ab:4e:21:fb:31:59:98:a3:c8:0d:29:
15:0b:0f:84:96:cf:b2:e9:91:44:09:85:8d:38:17:
2d:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:77:0E:A0:E4:67:3E:6D:00:5D:D6:D2:04:9B:D3:1E:B2:7D:D1:97
X509v3 Authority Key Identifier:
keyid:82:F1:C6:61:1A:3A:14:67:DB:3D:78:A4:A5:FE:D5:0A:08:A5:7B:13
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/gvHGYRo6FGfbPXikpf7VCgilexM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/gvHGYRo6FGfbPXikpf7VCgilexM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/32A4F74C31CA11F1A89426C5DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.213.104.0/22
Signature Algorithm: sha256WithRSAEncryption
00:a0:a1:ee:61:d6:74:4a:4e:78:60:2b:29:88:1c:1f:b9:bd:
7f:9e:2f:84:83:74:85:be:23:7e:3b:be:4d:8d:dc:18:c4:e1:
d7:9a:9a:a1:f3:d5:4a:6b:35:27:56:68:cb:e2:00:d2:da:94:
87:2e:5a:d8:30:39:22:e0:e4:d9:43:b4:28:57:99:f0:3b:49:
ee:5c:8b:ff:4f:2a:11:db:b9:01:e7:92:1f:3e:0b:59:37:79:
a6:2a:ed:30:8a:66:64:58:56:39:e6:d0:9c:1f:bb:90:15:f9:
ab:e9:d2:b9:35:5e:d9:8c:8c:bc:ca:71:42:d7:f4:55:70:b3:
5a:c6:c5:40:b7:96:a0:99:70:8a:33:7c:96:74:37:37:ec:8a:
1d:e6:2f:31:be:60:fb:e2:e1:f8:93:be:57:b1:22:5b:48:77:
69:45:aa:10:23:71:a2:91:62:e6:63:37:b6:e9:5e:41:98:cc:
bb:c6:a6:c8:6c:80:6f:f4:80:71:b0:0a:ae:f0:47:5c:72:2d:
9a:6e:02:e8:3d:73:a1:4d:f7:5f:c6:f1:ed:78:d6:38:52:36:
a6:e5:b5:f0:0c:fc:1e:cb:e1:7d:0b:45:05:1c:0f:7a:c6:3e:
1a:dc:d3:a9:33:1d:da:7a:b8:fb:eb:16:d5:93:8e:aa:84:27:
7e:cc:7e:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 06:50:53 2026 by rpki-client