Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/3F0F0F7031C211F19F838798DAE4EC9C.roa
File: 3F0F0F7031C211F19F838798DAE4EC9C.roa (raw, json)
Hash identifier: n7CiBbLyLhTC5G5W9u5fi8nfjYNPB7ln0RUmNgrJ9zI=
Subject key identifier: F6:0C:B8:93:23:72:72:09:96:6C:35:78:C5:0D:43:63:36:0E:08:41
Certificate issuer: /CN=F36A1CEFAF/serialNumber=82F1C6611A3A1467DB3D78A4A5FED50A08A57B13
Certificate serial: 079D
Authority key identifier: 82:F1:C6:61:1A:3A:14:67:DB:3D:78:A4:A5:FE:D5:0A:08:A5:7B:13
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/gvHGYRo6FGfbPXikpf7VCgilexM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/3F0F0F7031C211F19F838798DAE4EC9C.roa
Signing time: Mon 06 Apr 2026 14:09:38 +0000
ROA not before: Mon 06 Apr 2026 14:09:33 +0000
ROA not after: Sun 06 Apr 2036 14:09:33 +0000
asID: 37645
IP address blocks: 102.216.52.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/gvHGYRo6FGfbPXikpf7VCgilexM.crl
rsync://rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/gvHGYRo6FGfbPXikpf7VCgilexM.mft
rsync://rpki.afrinic.net/repository/afrinic/gvHGYRo6FGfbPXikpf7VCgilexM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 00:07:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1949 (0x79d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36A1CEFAF, serialNumber=82F1C6611A3A1467DB3D78A4A5FED50A08A57B13
Validity
Not Before: Apr 6 14:09:33 2026 GMT
Not After : Apr 6 14:09:33 2036 GMT
Subject: CN=69d3bea2-77c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:6e:83:a8:57:77:be:79:c9:2e:4f:fe:2b:94:
71:a0:75:91:15:61:3f:10:d6:4e:0f:40:e3:38:51:
e9:5c:f1:bc:5f:67:a8:ed:e6:ca:13:44:16:a2:61:
14:19:5d:de:db:9c:f9:f0:0e:2e:20:ac:fc:ba:20:
34:59:70:c0:76:d0:30:f5:20:d1:a4:ce:97:86:f2:
3a:d8:99:f6:74:d5:d9:c4:64:f4:d8:c4:80:e6:b7:
cd:b7:37:bb:3e:4b:69:be:0c:0f:72:89:53:14:f7:
d7:46:ca:a9:74:75:2b:2f:50:1f:5e:bf:76:23:80:
0a:f9:a5:bb:4b:47:d5:17:b4:e4:81:8f:8d:86:5e:
fb:d9:78:e4:49:dd:51:f5:d2:bb:b8:af:dc:6d:21:
d3:04:0e:77:e4:47:17:44:22:0c:5a:58:0d:40:27:
cc:b7:a9:fc:2c:00:5c:c3:55:f5:f9:4c:5c:72:d7:
5e:48:0f:d4:ba:a8:fb:e6:ea:53:4c:86:13:bd:a6:
85:d7:f3:c0:d9:27:73:60:54:80:e4:ad:5f:c6:4c:
79:37:ca:a0:e5:82:9e:df:a4:ff:9c:fc:86:8a:43:
9e:56:8f:e4:57:90:29:b4:88:9c:26:d5:12:51:0d:
ec:0f:a9:ef:eb:f7:5f:b6:c2:a8:4b:d0:4f:81:2b:
ae:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:0C:B8:93:23:72:72:09:96:6C:35:78:C5:0D:43:63:36:0E:08:41
X509v3 Authority Key Identifier:
keyid:82:F1:C6:61:1A:3A:14:67:DB:3D:78:A4:A5:FE:D5:0A:08:A5:7B:13
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/gvHGYRo6FGfbPXikpf7VCgilexM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/gvHGYRo6FGfbPXikpf7VCgilexM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/3F0F0F7031C211F19F838798DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.216.52.0/22
Signature Algorithm: sha256WithRSAEncryption
85:51:14:62:40:a8:dd:b5:20:34:99:e7:63:19:cd:4b:eb:7c:
23:36:a8:cd:b0:71:c6:da:12:25:48:14:df:20:9b:5e:8f:de:
74:46:1e:df:d4:d0:f4:56:af:68:25:65:9e:96:d0:dd:3f:c2:
83:cc:ba:7b:1f:dd:5a:20:b0:5b:73:c0:d8:3c:89:03:b0:1c:
3f:c1:76:fa:9b:50:0d:d8:64:20:e6:54:fc:2e:33:1b:cd:df:
82:15:e8:b2:9c:c6:a9:48:0d:42:3c:e4:91:5e:f2:92:b6:7f:
56:45:18:45:65:89:44:59:31:18:85:f5:34:99:07:74:fd:1f:
f9:03:ec:a8:bb:cb:79:46:d3:67:09:ac:61:fc:95:32:cf:fb:
09:5c:f9:48:3d:42:a1:6d:81:4f:d5:03:d8:31:a2:f8:9c:ef:
38:82:3f:a4:4b:f1:82:c7:b6:8a:b6:71:41:a6:73:eb:b3:93:
b9:7d:af:09:ef:47:d0:b9:c9:cc:1d:c3:e6:e7:d0:a5:ca:64:
d0:be:f7:0c:8d:bd:e3:83:b2:76:0d:3f:fb:28:ff:4a:56:44:
8d:e2:1e:c5:58:3b:7a:83:cb:ca:9d:d1:34:34:68:d7:17:8a:
5d:32:ed:9c:3d:c3:20:81:81:61:a7:22:5e:84:a3:ae:1f:34:
6b:5c:f7:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 08:15:00 2026 by rpki-client