Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/74D18C2231CD11F1A17488D6DAE4EC9C.roa
File: 74D18C2231CD11F1A17488D6DAE4EC9C.roa (raw, json)
Hash identifier: Ox6dJbpLiRALf6E85u1k7Yfr6Od7UQqYMnIso8XRqBo=
Subject key identifier: E5:99:CC:2D:24:93:BD:0C:32:68:C5:44:4E:B3:23:2E:8E:8E:10:2E
Certificate issuer: /CN=F36A1CEFAF/serialNumber=82F1C6611A3A1467DB3D78A4A5FED50A08A57B13
Certificate serial: 07B5
Authority key identifier: 82:F1:C6:61:1A:3A:14:67:DB:3D:78:A4:A5:FE:D5:0A:08:A5:7B:13
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/gvHGYRo6FGfbPXikpf7VCgilexM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/74D18C2231CD11F1A17488D6DAE4EC9C.roa
Signing time: Mon 06 Apr 2026 15:29:53 +0000
ROA not before: Mon 06 Apr 2026 15:29:48 +0000
ROA not after: Sun 06 Apr 2036 15:29:48 +0000
asID: 37645
IP address blocks: 102.211.200.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/gvHGYRo6FGfbPXikpf7VCgilexM.crl
rsync://rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/gvHGYRo6FGfbPXikpf7VCgilexM.mft
rsync://rpki.afrinic.net/repository/afrinic/gvHGYRo6FGfbPXikpf7VCgilexM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 00:07:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1973 (0x7b5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36A1CEFAF, serialNumber=82F1C6611A3A1467DB3D78A4A5FED50A08A57B13
Validity
Not Before: Apr 6 15:29:48 2026 GMT
Not After : Apr 6 15:29:48 2036 GMT
Subject: CN=69d3d170-84a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:e1:00:e5:c7:b0:7d:cc:34:1f:a9:5b:fb:97:
12:b5:56:88:b2:bb:28:8d:a9:0a:fc:bc:e3:88:74:
eb:b2:9c:dc:c9:ed:28:1b:53:85:50:10:e0:b9:a7:
b4:30:a5:b7:12:2a:01:58:8c:18:a8:02:8c:46:a7:
10:5f:25:14:60:01:f2:86:42:78:94:56:aa:9c:db:
b6:20:4a:e9:54:5a:56:11:d1:7b:2e:d8:ec:83:d4:
0e:45:0c:c7:c0:b3:b3:fb:8a:ef:67:0e:09:54:5e:
f3:19:64:52:b1:75:22:74:55:02:22:b1:37:47:22:
5e:e5:a2:1f:94:9f:92:1a:12:b1:8a:90:94:03:24:
d2:76:48:54:cf:de:79:fb:c5:e2:67:17:63:c7:ba:
f2:1f:f9:00:8b:b9:ac:a5:0d:a7:d7:15:65:02:42:
f4:4a:5f:f0:ba:26:a1:fb:ae:c1:fb:37:70:69:43:
41:cf:9c:4e:40:02:ae:98:1b:da:22:bc:d6:ae:e0:
7d:4d:4c:aa:9e:86:8f:f2:c8:dd:5d:45:55:c6:ba:
6e:7e:6f:da:99:0e:97:79:47:36:0c:f6:f5:49:9f:
81:14:dc:41:81:73:39:3b:f4:59:32:8a:49:c5:97:
d1:12:33:6c:f9:d5:ef:a7:98:42:f9:2d:08:3c:82:
05:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:99:CC:2D:24:93:BD:0C:32:68:C5:44:4E:B3:23:2E:8E:8E:10:2E
X509v3 Authority Key Identifier:
keyid:82:F1:C6:61:1A:3A:14:67:DB:3D:78:A4:A5:FE:D5:0A:08:A5:7B:13
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/gvHGYRo6FGfbPXikpf7VCgilexM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/gvHGYRo6FGfbPXikpf7VCgilexM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/74D18C2231CD11F1A17488D6DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.211.200.0/22
Signature Algorithm: sha256WithRSAEncryption
c3:95:ec:85:f9:55:99:7a:99:36:09:85:00:d0:27:be:31:d4:
3a:9d:28:83:45:32:67:10:b2:c5:d1:5a:ed:a5:0f:60:da:0f:
5a:d3:0b:7a:b7:4c:8d:21:25:d8:94:fd:86:fc:98:d1:ea:08:
f9:9e:33:4f:04:42:b3:db:3c:48:28:50:a4:e4:7e:f0:f5:6c:
29:2d:4c:44:bc:cf:37:56:77:cb:90:19:e9:ad:16:6b:f8:75:
0d:43:99:5c:4e:3b:f0:3b:cc:d2:85:26:7e:3a:12:d0:99:10:
b0:7a:63:51:ef:18:fd:76:f6:db:f6:30:5e:de:bb:2d:0c:6f:
76:d4:6a:19:4f:59:4d:5d:6f:b0:17:0b:fa:92:98:ed:1d:fb:
40:55:39:e4:63:21:f7:94:7a:04:b7:8c:b6:e1:50:dc:f8:03:
48:1c:18:eb:fe:3e:59:73:08:e1:ee:c6:4c:3a:ff:4b:3f:77:
14:72:8f:51:6c:20:9f:51:58:b6:ce:c3:f8:5a:b2:fd:7f:9c:
32:5d:27:23:55:98:dd:77:a2:d3:ba:ac:e0:fe:9b:09:e9:5e:
0d:63:4f:44:16:44:70:a0:4d:36:da:1c:7a:65:ec:5e:4d:95:
a1:e0:38:01:c4:ee:19:2f:9c:4f:61:56:33:14:69:3f:8d:1f:
5d:df:aa:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 08:06:20 2026 by rpki-client