Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/83A6A4D4334011F1A7D0E413CF1D38B0.roa
File: 83A6A4D4334011F1A7D0E413CF1D38B0.roa (raw, json)
Hash identifier: 74QB8V26zqay7IX5/bDpPWmQodgpJK1gmMK9RYjD57I=
Subject key identifier: 57:3C:41:E3:A1:DD:F2:A3:6B:7B:6E:F2:1B:42:CD:8C:E9:73:76:72
Certificate issuer: /CN=F36A1CEFAF/serialNumber=82F1C6611A3A1467DB3D78A4A5FED50A08A57B13
Certificate serial: 07DB
Authority key identifier: 82:F1:C6:61:1A:3A:14:67:DB:3D:78:A4:A5:FE:D5:0A:08:A5:7B:13
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/gvHGYRo6FGfbPXikpf7VCgilexM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/83A6A4D4334011F1A7D0E413CF1D38B0.roa
Signing time: Wed 08 Apr 2026 11:46:01 +0000
ROA not before: Wed 08 Apr 2026 11:45:55 +0000
ROA not after: Tue 08 Apr 2036 11:45:55 +0000
asID: 37645
IP address blocks: 102.206.60.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/gvHGYRo6FGfbPXikpf7VCgilexM.crl
rsync://rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/gvHGYRo6FGfbPXikpf7VCgilexM.mft
rsync://rpki.afrinic.net/repository/afrinic/gvHGYRo6FGfbPXikpf7VCgilexM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 00:07:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2011 (0x7db)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36A1CEFAF, serialNumber=82F1C6611A3A1467DB3D78A4A5FED50A08A57B13
Validity
Not Before: Apr 8 11:45:55 2026 GMT
Not After : Apr 8 11:45:55 2036 GMT
Subject: CN=69d63ff9-e249
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:f8:7b:0c:a3:0b:54:9b:79:45:c8:b8:b0:be:
de:e2:6d:a9:b0:6b:ed:74:fa:de:93:58:36:72:1a:
cd:ec:ae:0f:ba:cc:61:f2:cd:f8:cf:8a:69:02:e7:
1f:4c:c5:52:49:40:e0:35:77:60:c8:4f:91:48:a6:
22:00:a4:36:23:e6:05:5c:c6:13:a7:11:fa:5f:03:
97:5f:6c:37:ec:bf:65:ab:7b:81:7f:53:6b:34:6a:
cc:bd:8a:6b:c2:10:22:79:40:e3:78:1d:b4:8e:b0:
2a:bc:82:d3:e8:0d:e4:4f:9f:f2:aa:60:f5:57:1f:
42:39:fd:96:4e:c7:8c:00:a0:9b:4e:94:f9:95:86:
23:9e:45:f3:0f:4b:c3:cc:20:d4:34:ab:66:0a:1e:
78:cc:fc:92:c3:f4:bf:ee:be:70:7d:b3:16:00:a7:
d1:5e:ab:af:81:c5:64:58:8f:48:7b:c7:05:9f:2c:
06:74:e4:43:03:f0:78:7f:7a:19:9f:6a:0c:b0:2b:
6b:75:f2:c7:72:1a:72:3a:e7:62:06:af:e3:8a:41:
05:75:13:a1:82:db:85:e4:35:d1:d0:6c:6c:57:1b:
0a:7c:ff:0f:5a:7d:2c:fe:72:52:59:1a:5d:de:f8:
7a:a1:1b:ae:89:72:bf:01:ac:bc:62:b6:b3:7c:8c:
f5:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:3C:41:E3:A1:DD:F2:A3:6B:7B:6E:F2:1B:42:CD:8C:E9:73:76:72
X509v3 Authority Key Identifier:
keyid:82:F1:C6:61:1A:3A:14:67:DB:3D:78:A4:A5:FE:D5:0A:08:A5:7B:13
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/gvHGYRo6FGfbPXikpf7VCgilexM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/gvHGYRo6FGfbPXikpf7VCgilexM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/83A6A4D4334011F1A7D0E413CF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.206.60.0/22
Signature Algorithm: sha256WithRSAEncryption
31:71:39:51:8a:2b:ab:4b:30:ec:b9:be:22:9e:f3:93:34:f1:
b9:b6:4d:2c:30:e3:88:62:ce:f9:ab:22:0c:ed:93:70:6a:92:
15:1f:eb:5e:96:1e:85:07:12:ef:39:dd:47:0a:5c:47:4c:56:
ee:6e:01:58:79:0c:62:74:1f:08:0d:5d:4b:85:59:10:ff:44:
26:a7:f8:6c:b6:93:be:44:11:43:1a:9b:81:d1:ee:dd:1a:3b:
2d:71:1e:1a:73:22:33:f7:1f:41:d6:85:c2:e4:71:98:8f:88:
f9:d1:5e:d7:da:3d:32:99:5f:7a:ff:e2:42:72:ad:3c:81:f6:
60:49:f5:ef:47:97:9b:8c:59:e9:b5:9c:f1:dc:78:ea:db:9b:
70:35:f9:39:5b:26:5b:4e:d2:2b:65:7d:7d:7c:a6:2b:ec:22:
ad:a4:4d:53:6d:e1:11:d8:e2:f5:73:ea:e7:09:8b:93:84:fc:
bd:b4:3d:26:9b:aa:fe:07:85:8b:f5:ec:91:71:3d:d5:a4:04:
75:9b:71:ea:37:a5:08:4b:93:fc:4a:35:2f:29:b1:ad:b9:20:
a6:f9:de:44:44:89:f9:c0:58:ec:ba:2f:d6:52:73:b4:50:01:
f8:11:6d:0e:8d:e9:00:24:af:e4:a6:15:f1:c9:12:e0:42:f8:
65:26:a2:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 06:52:15 2026 by rpki-client