Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/5527F30431D011F1958427E9DAE4EC9C.roa
File: 5527F30431D011F1958427E9DAE4EC9C.roa (raw, json)
Hash identifier: AIvtBN5UUEa0IW3TZyf90eURXW/vkLS6CaLRuEgcyQM=
Subject key identifier: 4D:8C:D1:44:38:DE:17:A0:A3:39:7A:E1:3B:0A:FF:14:21:9A:C4:71
Certificate issuer: /CN=F36A1CEFAF/serialNumber=82F1C6611A3A1467DB3D78A4A5FED50A08A57B13
Certificate serial: 07BE
Authority key identifier: 82:F1:C6:61:1A:3A:14:67:DB:3D:78:A4:A5:FE:D5:0A:08:A5:7B:13
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/gvHGYRo6FGfbPXikpf7VCgilexM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/5527F30431D011F1958427E9DAE4EC9C.roa
Signing time: Mon 06 Apr 2026 15:50:28 +0000
ROA not before: Mon 06 Apr 2026 15:50:23 +0000
ROA not after: Sun 06 Apr 2036 15:50:23 +0000
asID: 37645
IP address blocks: 102.210.176.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/gvHGYRo6FGfbPXikpf7VCgilexM.crl
rsync://rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/gvHGYRo6FGfbPXikpf7VCgilexM.mft
rsync://rpki.afrinic.net/repository/afrinic/gvHGYRo6FGfbPXikpf7VCgilexM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 00:07:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1982 (0x7be)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36A1CEFAF, serialNumber=82F1C6611A3A1467DB3D78A4A5FED50A08A57B13
Validity
Not Before: Apr 6 15:50:23 2026 GMT
Not After : Apr 6 15:50:23 2036 GMT
Subject: CN=69d3d644-4e29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:f7:f4:e2:76:bb:6f:25:70:ca:ca:ce:5f:60:
b5:74:36:51:3f:9e:92:8f:4f:f4:b3:a8:cb:ad:4f:
16:ed:a1:6f:97:4c:62:8f:14:69:14:94:65:d1:83:
a9:0a:97:b1:6d:56:b7:46:46:8a:7a:fb:59:71:1c:
cb:52:94:7e:f8:e3:04:9b:ef:c8:14:5a:6e:6f:d9:
55:8b:90:2e:04:27:20:5c:70:e4:33:dd:81:5f:dc:
cb:7d:35:da:9f:9e:54:e6:f1:bb:ea:c4:1c:b2:55:
2a:40:51:0e:73:b7:67:90:ea:de:6b:92:56:f1:55:
c4:a8:b5:22:96:db:dc:61:40:56:4e:34:db:38:f2:
54:5d:24:0f:0f:c0:c5:c6:cb:06:2a:f8:8b:94:0a:
71:a5:f3:8e:af:34:49:db:ec:c2:d8:71:fd:10:5c:
59:eb:7b:d7:03:93:52:ea:9e:f5:c1:b4:c9:16:f5:
43:4e:6b:69:f9:57:26:fe:06:73:f8:37:b2:d3:c1:
d2:17:41:cd:26:4f:f5:0b:8e:a1:b7:13:8d:27:eb:
95:51:31:87:fa:40:76:02:89:53:02:40:dc:48:03:
57:dc:92:e6:e3:bb:a7:c0:16:95:d7:da:1b:2a:1c:
f0:ef:82:da:75:bc:7f:d7:64:0f:bc:28:58:c0:dd:
d1:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:8C:D1:44:38:DE:17:A0:A3:39:7A:E1:3B:0A:FF:14:21:9A:C4:71
X509v3 Authority Key Identifier:
keyid:82:F1:C6:61:1A:3A:14:67:DB:3D:78:A4:A5:FE:D5:0A:08:A5:7B:13
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/gvHGYRo6FGfbPXikpf7VCgilexM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/gvHGYRo6FGfbPXikpf7VCgilexM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/5527F30431D011F1958427E9DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.210.176.0/22
Signature Algorithm: sha256WithRSAEncryption
6a:78:73:09:32:4c:4e:76:f7:12:7b:31:b2:da:81:a6:cb:91:
eb:5d:69:9b:bb:fc:5a:ab:f1:5b:c2:59:e0:a0:8d:f5:ab:f8:
27:38:1b:43:cc:49:5a:e4:4a:81:83:fc:c1:04:9e:ea:f5:34:
bc:a6:d0:2e:b0:7c:49:fe:05:f0:09:2b:99:30:e2:5b:96:19:
b5:76:d6:2c:88:46:99:c1:77:17:87:e5:97:ae:74:9d:87:28:
1a:6a:50:cd:e6:1a:33:93:45:4b:ca:54:25:e7:62:ae:0b:4d:
d4:d5:e0:63:06:a0:d8:48:c8:af:c7:1c:7c:cc:a5:46:3c:d7:
ca:38:a5:57:b5:b0:76:87:dd:94:05:ed:2c:ba:59:0c:9f:e3:
d0:82:b1:89:25:c3:d1:4e:36:70:51:1f:d0:ef:24:17:a4:b7:
20:93:82:69:e6:08:d4:82:01:4e:0c:2d:d2:0f:ab:ac:fc:fa:
7a:f6:87:d8:89:7c:40:40:45:03:f7:d9:9c:d5:15:8d:f0:61:
03:80:f0:57:a5:02:68:8d:0d:c5:4c:08:4e:d9:3f:ae:78:6a:
3f:7a:f8:ba:9c:99:cc:0b:f5:ce:f6:a7:41:e1:d1:72:6a:aa:
31:b5:91:6a:09:2b:0c:c5:1a:4a:6a:20:3a:5c:fe:68:24:c9:
46:b6:4e:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 07:02:59 2026 by rpki-client