Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/C54D1BE2333C11F1B6BD59FDCE1D38B0.roa
File: C54D1BE2333C11F1B6BD59FDCE1D38B0.roa (raw, json)
Hash identifier: p6RZ8QJpgz3xEcvp6tMRCbchfnm4VVw01lhILVzRfjA=
Subject key identifier: A2:96:E9:68:B0:AE:09:67:2C:05:23:79:C4:40:2B:4A:40:3A:47:82
Certificate issuer: /CN=F36A1CEFAF/serialNumber=82F1C6611A3A1467DB3D78A4A5FED50A08A57B13
Certificate serial: 07D8
Authority key identifier: 82:F1:C6:61:1A:3A:14:67:DB:3D:78:A4:A5:FE:D5:0A:08:A5:7B:13
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/gvHGYRo6FGfbPXikpf7VCgilexM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/C54D1BE2333C11F1B6BD59FDCE1D38B0.roa
Signing time: Wed 08 Apr 2026 11:19:13 +0000
ROA not before: Wed 08 Apr 2026 11:19:08 +0000
ROA not after: Tue 08 Apr 2036 11:19:08 +0000
asID: 37645
IP address blocks: 102.206.56.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/gvHGYRo6FGfbPXikpf7VCgilexM.crl
rsync://rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/gvHGYRo6FGfbPXikpf7VCgilexM.mft
rsync://rpki.afrinic.net/repository/afrinic/gvHGYRo6FGfbPXikpf7VCgilexM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 00:07:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2008 (0x7d8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36A1CEFAF, serialNumber=82F1C6611A3A1467DB3D78A4A5FED50A08A57B13
Validity
Not Before: Apr 8 11:19:08 2026 GMT
Not After : Apr 8 11:19:08 2036 GMT
Subject: CN=69d639b1-ddaa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:25:2b:d6:02:e8:7b:ec:79:ad:76:10:b4:dd:
7b:1a:a2:4e:92:48:4e:57:d2:c3:37:74:a8:3b:ca:
2c:b4:12:5d:70:ba:44:71:92:92:23:cb:52:a2:23:
95:95:22:f6:b6:5b:e5:53:8c:86:b2:5d:cc:6b:89:
5c:6b:68:96:df:fd:9f:ca:b9:f8:4d:d4:7e:98:83:
0f:f2:03:8a:0c:82:c7:18:69:df:c5:d4:a1:00:9f:
62:ab:35:1c:da:46:c8:53:3d:d6:bf:1b:c2:44:dd:
a0:be:82:d6:12:75:d9:25:2d:e6:30:00:5c:39:b5:
95:88:f7:35:84:0b:31:49:e0:ec:2f:e6:5c:0f:79:
be:5e:be:c1:c6:84:d3:92:4c:b7:f3:27:92:b0:7f:
92:68:12:96:4c:2e:cb:62:6b:f2:00:b6:88:00:06:
15:a3:2e:5d:d1:8e:1f:1d:5c:1c:25:0a:70:49:7e:
cd:6c:a5:93:31:21:c9:7a:59:da:f7:cf:a8:2f:1a:
ba:1b:60:27:04:41:19:00:07:17:68:c6:ab:53:f2:
a5:65:19:7c:a4:70:f3:c8:de:f4:36:f5:b5:4c:22:
35:01:d2:46:b3:be:ca:c8:20:55:9c:9e:9b:50:b9:
7f:47:e1:fb:56:9a:02:ff:73:c8:27:e0:8b:30:45:
37:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:96:E9:68:B0:AE:09:67:2C:05:23:79:C4:40:2B:4A:40:3A:47:82
X509v3 Authority Key Identifier:
keyid:82:F1:C6:61:1A:3A:14:67:DB:3D:78:A4:A5:FE:D5:0A:08:A5:7B:13
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/gvHGYRo6FGfbPXikpf7VCgilexM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/gvHGYRo6FGfbPXikpf7VCgilexM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/C54D1BE2333C11F1B6BD59FDCE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.206.56.0/22
Signature Algorithm: sha256WithRSAEncryption
95:f1:e0:b5:1e:c0:7f:ed:8c:75:cb:ab:02:0e:73:7d:5b:49:
ee:93:36:ec:b0:06:fa:c9:ed:dd:71:b4:a8:c6:58:3e:e2:da:
e5:81:14:fc:97:fd:5f:2f:46:6a:55:82:f5:76:04:75:32:4e:
10:af:99:78:ee:cd:be:e3:97:ec:7e:ff:bf:41:95:6f:b2:b1:
73:4b:42:47:8c:2c:9f:f0:5d:46:d5:db:5d:48:c3:32:3f:43:
e6:39:51:93:2d:2d:ad:b5:b6:32:fb:0b:de:ab:1d:b7:e1:ff:
6e:b2:f7:69:2b:b3:53:e8:6f:55:af:c7:92:e7:13:c1:09:dc:
1d:5c:d4:98:9f:7c:26:6b:ab:07:bf:3d:8f:47:77:cb:d6:01:
1a:83:c6:4a:a4:65:1a:d1:ba:6a:12:7b:2a:10:a2:1e:38:c5:
5c:7f:2d:84:2e:91:c2:58:68:7e:e0:e1:f3:5c:77:4d:ac:35:
b2:09:87:67:8f:36:6e:80:d9:3c:77:cb:52:42:ba:cc:33:32:
9c:c8:fa:48:38:10:c9:db:ea:2b:99:59:70:c2:92:42:b6:75:
d3:6c:09:2c:7b:24:d6:b2:96:97:5b:2f:c1:c7:62:fb:e4:7e:
76:96:c0:05:0f:88:ef:a7:3b:c8:28:f1:a5:fb:2d:9b:15:c9:
9f:39:8c:97
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICB9gwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
QTFDRUZBRjExMC8GA1UEBRMoODJGMUM2NjExQTNBMTQ2N0RCM0Q3OEE0QTVGRUQ1
MEEwOEE1N0IxMzAeFw0yNjA0MDgxMTE5MDhaFw0zNjA0MDgxMTE5MDhaMBgxFjAU
BgNVBAMTDTY5ZDYzOWIxLWRkYWEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDLJSvWAuh77HmtdhC03Xsaok6SSE5X0sM3dKg7yiy0El1wukRxkpIjy1Ki
I5WVIva2W+VTjIayXcxriVxraJbf/Z/KufhN1H6Ygw/yA4oMgscYad/F1KEAn2Kr
NRzaRshTPda/G8JE3aC+gtYSddklLeYwAFw5tZWI9zWECzFJ4Owv5lwPeb5evsHG
hNOSTLfzJ5Kwf5JoEpZMLstia/IAtogABhWjLl3Rjh8dXBwlCnBJfs1spZMxIcl6
Wdr3z6gvGrobYCcEQRkABxdoxqtT8qVlGXykcPPI3vQ29bVMIjUB0kazvsrIIFWc
nptQuX9H4ftWmgL/c8gn4IswRTdfAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUopbp
aLCuCWcsBSN5xEArSkA6R4IwHwYDVR0jBBgwFoAUgvHGYRo6FGfbPXikpf7VCgil
exMwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNkExQ0VGLzdGMzg4REU0RjEzODExRUI5MTdGRDcxN0Q4QTAxNENFL2d2SEdZ
Um82RkdmYlBYaWtwZjdWQ2dpbGV4TS5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL2d2SEdZUm82RkdmYlBYaWtwZjdWQ2dpbGV4TS5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNkExQ0VGLzdGMzg4REU0RjEzODExRUI5MTdGRDcxN0Q4
QTAxNENFL0M1NEQxQkUyMzMzQzExRjFCNkJENTlGRENFMUQzOEIwLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJmzjgwDQYJKoZIhvcNAQEL
BQADggEBAJXx4LUewH/tjHXLqwIOc31bSe6TNuywBvrJ7d1xtKjGWD7i2uWBFPyX
/V8vRmpVgvV2BHUyThCvmXjuzb7jl+x+/79BlW+ysXNLQkeMLJ/wXUbV211IwzI/
Q+Y5UZMtLa21tjL7C96rHbfh/26y92krs1Pob1Wvx5LnE8EJ3B1c1JiffCZrqwe/
PY9Hd8vWARqDxkqkZRrRumoSeyoQoh44xVx/LYQukcJYaH7g4fNcd02sNbIJh2eP
Nm6A2Tx3y1JCuswzMpzI+kg4EMnb6iuZWXDCkkK2ddNsCSx7JNaylpdbL8HHYvvk
fnaWwAUPiO+nO8go8aX7LZsVyZ85jJc=
-----END CERTIFICATE-----
Generated at Fri Apr 17 06:52:01 2026 by rpki-client