Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/653646CC2D1811F1BF3D1FF5DAE4EC9C.roa
File: 653646CC2D1811F1BF3D1FF5DAE4EC9C.roa (raw, json)
Hash identifier: u3IUn4tj5zxayKjv7Mj9uwx0wbWiOsgT9S4T/OJURIU=
Subject key identifier: 5F:BD:C4:C1:19:44:BD:81:10:3E:8B:C9:1D:9D:2E:1B:82:A0:04:A6
Certificate issuer: /CN=F36A1CEFAF/serialNumber=82F1C6611A3A1467DB3D78A4A5FED50A08A57B13
Certificate serial: 076E
Authority key identifier: 82:F1:C6:61:1A:3A:14:67:DB:3D:78:A4:A5:FE:D5:0A:08:A5:7B:13
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/gvHGYRo6FGfbPXikpf7VCgilexM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/653646CC2D1811F1BF3D1FF5DAE4EC9C.roa
Signing time: Tue 31 Mar 2026 15:43:43 +0000
ROA not before: Tue 31 Mar 2026 15:43:38 +0000
ROA not after: Mon 31 Mar 2036 15:43:38 +0000
asID: 37645
IP address blocks: 102.220.192.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/gvHGYRo6FGfbPXikpf7VCgilexM.crl
rsync://rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/gvHGYRo6FGfbPXikpf7VCgilexM.mft
rsync://rpki.afrinic.net/repository/afrinic/gvHGYRo6FGfbPXikpf7VCgilexM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 00:07:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1902 (0x76e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36A1CEFAF, serialNumber=82F1C6611A3A1467DB3D78A4A5FED50A08A57B13
Validity
Not Before: Mar 31 15:43:38 2026 GMT
Not After : Mar 31 15:43:38 2036 GMT
Subject: CN=69cbebaf-1ce4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:e9:a0:05:1e:2b:3c:c7:bd:d8:81:1f:d8:1c:
24:6b:ea:d6:a0:a8:1c:44:e9:56:bf:31:b0:d5:fc:
15:ff:04:9a:dd:52:b8:0d:c7:aa:8b:df:f6:7c:b4:
b5:78:80:5f:45:3a:be:e9:b1:b0:dc:21:0b:fa:2c:
73:de:7e:9f:f3:18:5b:59:a9:59:2c:a5:20:3b:a1:
30:7e:87:70:e2:a4:9d:2b:31:7e:df:84:46:3b:8d:
6f:bf:6c:83:02:0a:7b:61:82:8c:8f:29:47:b0:08:
a7:46:34:78:9d:06:46:60:1d:7a:0a:96:21:90:36:
cf:49:a0:25:83:43:5d:a4:ae:d3:75:5f:2c:7f:97:
84:a3:7e:26:43:35:dc:c1:d6:16:a6:68:1b:5d:d7:
0a:3c:ba:25:70:46:b8:7f:28:5b:3f:1f:b8:65:01:
45:96:20:57:3d:00:4f:c3:76:10:24:f3:58:cd:a2:
ae:3d:1d:d3:b0:0e:eb:bb:a9:c8:18:b5:7f:37:50:
44:2e:de:ac:f1:ec:78:d8:e5:ac:b0:a2:42:eb:38:
39:8e:13:54:8a:aa:7c:9f:1f:51:60:25:e1:1d:ce:
7b:4b:e0:41:fe:b5:5b:fe:2a:64:cd:6d:f7:8f:99:
13:3d:4a:3f:20:6e:35:76:3e:9d:15:57:ff:f7:0d:
3e:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:BD:C4:C1:19:44:BD:81:10:3E:8B:C9:1D:9D:2E:1B:82:A0:04:A6
X509v3 Authority Key Identifier:
keyid:82:F1:C6:61:1A:3A:14:67:DB:3D:78:A4:A5:FE:D5:0A:08:A5:7B:13
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/gvHGYRo6FGfbPXikpf7VCgilexM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/gvHGYRo6FGfbPXikpf7VCgilexM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/653646CC2D1811F1BF3D1FF5DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.220.192.0/22
Signature Algorithm: sha256WithRSAEncryption
b7:ad:a7:14:5b:de:08:f7:da:26:84:4f:7b:17:67:a4:ce:47:
b4:19:1f:cf:8c:da:c6:09:b2:5b:ff:6b:1d:e4:c6:bf:6a:0c:
2e:09:a0:ec:f8:11:87:48:f5:bc:80:eb:12:14:82:2a:80:08:
3d:86:25:89:85:13:db:c3:45:2b:69:3a:e4:df:22:db:08:48:
28:fe:4e:9e:50:49:2b:74:af:55:cb:b5:3b:a6:0f:87:27:06:
4f:aa:f5:2b:91:1e:6f:47:1a:60:d6:4a:64:80:7f:e6:23:0a:
4f:cc:55:dc:fe:47:01:7c:2f:9e:05:03:f0:67:59:ef:19:9d:
be:80:a3:df:7c:6c:4a:43:cb:37:4b:84:1c:3b:de:ca:3f:41:
76:8d:08:39:0b:e3:b7:88:82:49:17:d0:11:ec:cd:a7:6c:32:
ca:43:a8:ba:c2:8e:13:79:c9:94:60:ad:45:b9:35:74:36:fe:
99:25:f9:09:0a:b3:0b:b6:b9:60:97:22:75:7b:73:4d:f1:43:
26:23:41:c0:5a:ab:08:72:f9:bd:fb:b2:c2:55:15:c1:26:03:
fa:f5:5a:e3:be:dc:14:e8:c3:c6:eb:91:70:d8:18:55:ea:f8:
08:74:01:e0:bf:42:bc:59:07:6e:5a:ee:e8:3c:57:61:5e:0e:
18:cb:13:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 08:06:32 2026 by rpki-client