Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/3CA9E5062D1811F1B62BFBF4DAE4EC9C.roa
File: 3CA9E5062D1811F1B62BFBF4DAE4EC9C.roa (raw, json)
Hash identifier: i9e2Z/xX/L9oVfHEoB5qHiCLB71AT9kMB03oQMgB07s=
Subject key identifier: F3:99:31:7B:99:7C:BF:30:7D:E0:FE:50:86:16:44:1D:2D:2D:B9:1D
Certificate issuer: /CN=F36A1CEFAF/serialNumber=82F1C6611A3A1467DB3D78A4A5FED50A08A57B13
Certificate serial: 076C
Authority key identifier: 82:F1:C6:61:1A:3A:14:67:DB:3D:78:A4:A5:FE:D5:0A:08:A5:7B:13
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/gvHGYRo6FGfbPXikpf7VCgilexM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/3CA9E5062D1811F1B62BFBF4DAE4EC9C.roa
Signing time: Tue 31 Mar 2026 15:42:35 +0000
ROA not before: Tue 31 Mar 2026 15:42:29 +0000
ROA not after: Wed 30 Apr 2036 15:42:29 +0000
asID: 37645
IP address blocks: 102.219.184.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/gvHGYRo6FGfbPXikpf7VCgilexM.crl
rsync://rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/gvHGYRo6FGfbPXikpf7VCgilexM.mft
rsync://rpki.afrinic.net/repository/afrinic/gvHGYRo6FGfbPXikpf7VCgilexM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 00:07:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1900 (0x76c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36A1CEFAF, serialNumber=82F1C6611A3A1467DB3D78A4A5FED50A08A57B13
Validity
Not Before: Mar 31 15:42:29 2026 GMT
Not After : Apr 30 15:42:29 2036 GMT
Subject: CN=69cbeb6b-7c1c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:c2:ab:b1:d1:3e:ae:16:36:5c:01:86:92:44:
ca:56:ab:c2:09:30:c8:70:b3:df:d3:29:92:96:c6:
4e:7c:dc:22:70:8f:a3:14:a3:45:14:24:51:1e:32:
65:30:74:77:01:90:4e:96:2d:95:51:a3:32:4f:1f:
2a:6f:dd:3a:e3:d0:be:94:0d:68:24:62:72:00:f6:
ec:56:63:a0:9c:3e:f4:7a:d0:b0:d6:83:37:dc:ba:
03:f6:30:a9:a5:2c:c5:78:3b:e4:6a:c2:a0:e2:4f:
e2:4c:93:73:ae:da:37:d3:7f:ce:f9:a0:80:13:5a:
71:71:36:1d:e0:fd:40:b4:c9:11:9f:a2:6a:c0:f7:
f7:7f:ff:3b:0b:b2:dd:05:fe:f5:02:68:80:56:db:
07:be:d6:a7:a6:41:f5:e1:74:2b:0a:d2:3a:b9:ae:
5f:cd:22:e7:f3:b8:bb:6e:57:eb:82:6e:b3:a8:e0:
13:5c:86:4b:66:e3:7a:36:3c:46:94:d2:d5:2f:37:
fa:6d:d4:50:c5:d0:05:21:19:c1:ae:31:3e:e9:27:
04:b3:3a:95:b2:9a:95:e7:54:fb:00:4a:d9:0a:4e:
86:04:87:6c:f7:17:36:80:88:97:4d:05:b9:d4:70:
4a:91:eb:b3:b4:44:52:2e:36:e1:80:8d:4b:f8:64:
d1:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:99:31:7B:99:7C:BF:30:7D:E0:FE:50:86:16:44:1D:2D:2D:B9:1D
X509v3 Authority Key Identifier:
keyid:82:F1:C6:61:1A:3A:14:67:DB:3D:78:A4:A5:FE:D5:0A:08:A5:7B:13
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/gvHGYRo6FGfbPXikpf7VCgilexM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/gvHGYRo6FGfbPXikpf7VCgilexM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/3CA9E5062D1811F1B62BFBF4DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.219.184.0/22
Signature Algorithm: sha256WithRSAEncryption
6b:f6:70:83:28:53:e0:9e:ae:4d:7c:a5:7c:0f:90:86:6a:16:
2e:f1:3d:4a:96:02:51:d7:a2:51:65:a2:4a:c8:54:8f:f1:27:
bb:21:c1:51:d3:f9:1c:4c:8a:e4:6b:6f:d3:fb:a4:72:0a:59:
11:ad:2d:eb:7b:e4:c5:8d:02:6b:83:f5:bd:e6:10:6c:0f:1b:
3d:87:ff:02:b9:0a:20:6e:1f:1b:a9:d2:7e:90:b3:00:c0:9a:
ea:29:c5:97:9c:c1:d1:7f:43:e2:15:bf:9a:cb:d9:21:67:9f:
2c:9f:16:3d:0b:31:24:14:31:43:5f:68:30:71:2b:57:67:95:
f9:3b:06:86:94:97:16:56:2e:8d:de:23:46:8a:9e:18:07:55:
81:2d:34:73:0d:92:80:43:96:c5:87:7f:54:8c:0d:ab:4a:e1:
2e:aa:39:ef:be:2b:80:d6:b1:27:cc:15:64:2c:ab:c9:bd:7d:
f5:c7:52:b9:5e:98:2e:a2:34:7f:fd:70:d4:2d:6c:a7:93:c1:
f6:c4:e6:c3:02:9b:8e:57:7a:76:a4:74:7c:8e:68:e2:79:90:
5c:96:79:85:71:b5:17:dd:a7:1e:58:81:b9:06:a8:61:7f:4a:
27:86:7f:0a:d0:a3:86:11:1b:78:57:5d:33:44:cf:b8:fb:36:
48:ac:d7:21
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICB2wwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
QTFDRUZBRjExMC8GA1UEBRMoODJGMUM2NjExQTNBMTQ2N0RCM0Q3OEE0QTVGRUQ1
MEEwOEE1N0IxMzAeFw0yNjAzMzExNTQyMjlaFw0zNjA0MzAxNTQyMjlaMBgxFjAU
BgNVBAMTDTY5Y2JlYjZiLTdjMWMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQCswqux0T6uFjZcAYaSRMpWq8IJMMhws9/TKZKWxk583CJwj6MUo0UUJFEe
MmUwdHcBkE6WLZVRozJPHypv3Trj0L6UDWgkYnIA9uxWY6CcPvR60LDWgzfcugP2
MKmlLMV4O+RqwqDiT+JMk3Ou2jfTf875oIATWnFxNh3g/UC0yRGfomrA9/d//zsL
st0F/vUCaIBW2we+1qemQfXhdCsK0jq5rl/NIufzuLtuV+uCbrOo4BNchktm43o2
PEaU0tUvN/pt1FDF0AUhGcGuMT7pJwSzOpWympXnVPsAStkKToYEh2z3FzaAiJdN
BbnUcEqR67O0RFIuNuGAjUv4ZNF5AgMBAAGjggKlMIICoTAdBgNVHQ4EFgQU85kx
e5l8vzB94P5QhhZEHS0tuR0wHwYDVR0jBBgwFoAUgvHGYRo6FGfbPXikpf7VCgil
exMwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNkExQ0VGLzdGMzg4REU0RjEzODExRUI5MTdGRDcxN0Q4QTAxNENFL2d2SEdZ
Um82RkdmYlBYaWtwZjdWQ2dpbGV4TS5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL2d2SEdZUm82RkdmYlBYaWtwZjdWQ2dpbGV4TS5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNkExQ0VGLzdGMzg4REU0RjEzODExRUI5MTdGRDcxN0Q4
QTAxNENFLzNDQTlFNTA2MkQxODExRjFCNjJCRkJGNERBRTRFQzlDLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJm27gwDQYJKoZIhvcNAQEL
BQADggEBAGv2cIMoU+Cerk18pXwPkIZqFi7xPUqWAlHXolFlokrIVI/xJ7shwVHT
+RxMiuRrb9P7pHIKWRGtLet75MWNAmuD9b3mEGwPGz2H/wK5CiBuHxup0n6QswDA
muopxZecwdF/Q+IVv5rL2SFnnyyfFj0LMSQUMUNfaDBxK1dnlfk7BoaUlxZWLo3e
I0aKnhgHVYEtNHMNkoBDlsWHf1SMDatK4S6qOe++K4DWsSfMFWQsq8m9ffXHUrle
mC6iNH/9cNQtbKeTwfbE5sMCm45XenakdHyOaOJ5kFyWeYVxtRfdpx5YgbkGqGF/
SieGfwrQo4YRG3hXXTNEz7j7Nkis1yE=
-----END CERTIFICATE-----
Generated at Fri Apr 17 07:02:15 2026 by rpki-client