Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/8F5F9A36334211F1952ABDA1CE1D38B0.roa
File: 8F5F9A36334211F1952ABDA1CE1D38B0.roa (raw, json)
Hash identifier: TRLftW7bQP4YHkozq600eml5OVZhzd6UoYvqA+Pi6rY=
Subject key identifier: CF:FB:CE:76:11:91:48:AA:FD:B4:48:57:DF:94:C3:54:FF:9D:19:81
Certificate issuer: /CN=F36A1CEFAF/serialNumber=82F1C6611A3A1467DB3D78A4A5FED50A08A57B13
Certificate serial: 07E4
Authority key identifier: 82:F1:C6:61:1A:3A:14:67:DB:3D:78:A4:A5:FE:D5:0A:08:A5:7B:13
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/gvHGYRo6FGfbPXikpf7VCgilexM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/8F5F9A36334211F1952ABDA1CE1D38B0.roa
Signing time: Wed 08 Apr 2026 12:00:39 +0000
ROA not before: Wed 08 Apr 2026 12:00:35 +0000
ROA not after: Tue 08 Apr 2036 12:00:35 +0000
asID: 37645
IP address blocks: 102.203.244.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/gvHGYRo6FGfbPXikpf7VCgilexM.crl
rsync://rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/gvHGYRo6FGfbPXikpf7VCgilexM.mft
rsync://rpki.afrinic.net/repository/afrinic/gvHGYRo6FGfbPXikpf7VCgilexM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 00:07:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2020 (0x7e4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36A1CEFAF, serialNumber=82F1C6611A3A1467DB3D78A4A5FED50A08A57B13
Validity
Not Before: Apr 8 12:00:35 2026 GMT
Not After : Apr 8 12:00:35 2036 GMT
Subject: CN=69d64367-c1e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:2c:6f:a0:c5:d9:a7:d0:b3:6c:d0:4f:93:3a:
5a:2b:ee:29:b8:66:90:5e:c1:3b:81:c8:28:e1:ab:
3c:05:d4:83:49:1d:09:d8:b2:8a:7e:54:8a:2b:1a:
08:73:cf:6a:8b:af:c6:85:68:c4:28:e1:f3:1f:d9:
64:88:78:4d:05:c8:80:ad:37:36:f7:a9:bb:bc:64:
7d:d2:d1:bf:38:0f:9f:ea:c5:7a:64:89:67:91:e5:
99:72:f5:46:29:79:56:37:ca:a1:8a:5d:50:a0:d3:
b8:8f:c8:65:97:2e:62:24:83:1c:d3:ea:e5:60:a6:
6b:b6:a9:48:b5:91:1d:5c:60:54:a0:b3:b8:37:83:
82:f1:5f:96:a8:e5:66:42:30:bd:28:f3:83:d5:3b:
f0:65:73:61:f6:bc:1e:28:b7:da:d1:22:19:a2:af:
6e:dc:31:63:a6:72:0f:ec:d6:39:82:8a:f8:e4:19:
5f:ad:52:79:4e:90:69:c8:f6:45:8e:bc:d5:2e:e6:
38:66:89:c6:2b:2d:d0:20:03:ea:d2:90:81:99:4d:
25:27:2c:f2:74:76:c7:f9:b6:57:2d:79:de:03:b5:
2a:f1:5c:37:7f:31:aa:07:49:a8:d5:32:0e:5b:38:
00:05:8b:56:ed:cf:ad:26:30:36:4c:fd:a5:40:ff:
59:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:FB:CE:76:11:91:48:AA:FD:B4:48:57:DF:94:C3:54:FF:9D:19:81
X509v3 Authority Key Identifier:
keyid:82:F1:C6:61:1A:3A:14:67:DB:3D:78:A4:A5:FE:D5:0A:08:A5:7B:13
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/gvHGYRo6FGfbPXikpf7VCgilexM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/gvHGYRo6FGfbPXikpf7VCgilexM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/8F5F9A36334211F1952ABDA1CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.203.244.0/22
Signature Algorithm: sha256WithRSAEncryption
5d:7f:cc:5c:ad:62:47:27:fe:de:d2:3e:8a:be:24:51:89:b1:
b3:1e:95:01:ba:43:de:9c:16:aa:1f:a5:fa:e4:c3:8c:88:54:
19:6b:9e:80:7e:9b:53:78:7d:64:72:10:e5:0b:f2:1c:c2:fb:
69:99:74:3f:92:d6:29:1a:dc:59:f1:79:b2:49:1b:a1:68:69:
fa:a0:18:c3:59:20:2a:de:e6:48:28:11:73:50:5b:b8:c7:38:
8b:b8:36:62:ec:b0:7b:d3:63:f7:52:b3:24:76:cf:ea:61:e1:
56:2c:2f:0e:b4:a4:55:27:c4:6a:1a:1f:f4:b9:f3:cd:07:ae:
f2:8f:61:16:0e:d7:9a:f1:6a:6c:ed:f1:52:74:9b:a0:2b:4f:
43:de:be:b5:36:dd:89:20:4e:dd:da:65:7f:f6:98:9a:3a:fe:
7a:bb:07:b3:5e:d9:c0:96:db:52:f3:00:70:88:e4:50:89:68:
e2:2c:b1:4f:e3:01:7c:17:92:c7:b3:ab:1f:a8:35:fd:e1:9e:
36:a0:da:f9:dd:10:c2:77:cb:1a:78:c8:c4:5a:10:62:63:8e:
0d:64:d2:4f:e0:6f:d7:81:ec:73:22:74:e9:89:29:25:15:e8:
47:7c:33:9c:be:e7:33:96:64:35:3c:0f:10:c8:98:a5:22:80:
96:c1:37:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 05:58:20 2026 by rpki-client