Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/CC2DC63031BD11F1991EE480DAE4EC9C.roa
File: CC2DC63031BD11F1991EE480DAE4EC9C.roa (raw, json)
Hash identifier: BOHs5+10RMjUndeT2FzPUD4KqFm+1OkeMgiCuz86fDw=
Subject key identifier: A2:4F:88:D1:DA:3C:AD:54:49:DF:B5:45:84:1A:78:CC:6D:40:91:68
Certificate issuer: /CN=F36A1CEFAF/serialNumber=82F1C6611A3A1467DB3D78A4A5FED50A08A57B13
Certificate serial: 078D
Authority key identifier: 82:F1:C6:61:1A:3A:14:67:DB:3D:78:A4:A5:FE:D5:0A:08:A5:7B:13
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/gvHGYRo6FGfbPXikpf7VCgilexM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/CC2DC63031BD11F1991EE480DAE4EC9C.roa
Signing time: Mon 06 Apr 2026 13:37:47 +0000
ROA not before: Mon 06 Apr 2026 13:37:41 +0000
ROA not after: Sun 06 Apr 2036 13:37:41 +0000
asID: 37645
IP address blocks: 102.216.44.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/gvHGYRo6FGfbPXikpf7VCgilexM.crl
rsync://rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/gvHGYRo6FGfbPXikpf7VCgilexM.mft
rsync://rpki.afrinic.net/repository/afrinic/gvHGYRo6FGfbPXikpf7VCgilexM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 18 Apr 2026 02:18:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1933 (0x78d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36A1CEFAF, serialNumber=82F1C6611A3A1467DB3D78A4A5FED50A08A57B13
Validity
Not Before: Apr 6 13:37:41 2026 GMT
Not After : Apr 6 13:37:41 2036 GMT
Subject: CN=69d3b72b-3cc6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:9f:cb:da:9a:31:2a:8d:15:2d:a9:e1:00:07:
91:ab:18:fa:e2:f0:de:49:46:40:92:e5:4f:f0:d8:
9f:2d:fa:95:20:55:33:fb:db:84:18:74:51:16:0f:
7d:a0:a0:7c:15:50:74:41:87:1d:6b:1d:88:ac:a9:
32:81:68:df:73:c7:de:05:0f:70:a0:9f:c4:40:98:
ad:8f:28:b8:58:d3:1a:2f:a3:39:80:6a:96:fc:ae:
8f:27:70:50:f9:03:11:91:32:5c:c8:c0:79:49:14:
eb:bd:ca:23:71:dd:70:d2:7b:01:8e:35:1a:c2:29:
e4:85:3b:e1:ab:db:f9:26:5d:61:87:33:a6:08:db:
03:8a:a4:28:78:2e:0f:e4:6f:82:90:d1:51:f7:6a:
ec:64:70:85:83:d6:04:60:25:56:9f:5f:21:39:e1:
36:f7:45:64:83:aa:a6:3e:91:d8:a4:28:31:43:67:
a0:81:d0:e2:85:54:03:84:25:13:04:d2:6e:62:d3:
85:91:c3:f5:75:55:9a:d5:fa:bd:c4:97:57:2f:67:
70:d1:a4:04:84:34:78:72:83:ff:58:95:c5:5e:d6:
9a:2e:70:b4:3b:99:44:6e:d7:a5:8b:66:e4:01:3d:
76:e3:29:16:a2:d4:6f:91:ed:2e:e6:23:c7:d3:e4:
99:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:4F:88:D1:DA:3C:AD:54:49:DF:B5:45:84:1A:78:CC:6D:40:91:68
X509v3 Authority Key Identifier:
keyid:82:F1:C6:61:1A:3A:14:67:DB:3D:78:A4:A5:FE:D5:0A:08:A5:7B:13
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/gvHGYRo6FGfbPXikpf7VCgilexM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/gvHGYRo6FGfbPXikpf7VCgilexM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/CC2DC63031BD11F1991EE480DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.216.44.0/22
Signature Algorithm: sha256WithRSAEncryption
ca:b2:66:b1:bf:11:69:79:24:7a:32:f8:02:d7:63:50:c5:74:
cc:5a:a7:cf:00:31:67:f4:59:e4:e7:bb:08:5f:e1:5b:d9:8b:
d1:ad:01:ea:5a:69:ee:a6:3f:89:0a:b9:be:32:72:5e:2a:66:
75:78:e0:9f:fd:2c:d3:c1:09:b5:6d:69:8d:60:c1:89:bb:9d:
cd:e2:9a:d7:8e:a6:46:2c:4c:f7:93:48:ed:54:ee:28:b3:e5:
5b:20:6f:be:8b:e9:43:3e:09:88:ee:60:b5:d4:f5:6d:07:f4:
09:72:f3:d5:9d:8d:ef:53:48:e4:d1:23:99:23:e8:cd:3a:e1:
0d:18:37:62:dc:db:b6:9f:8e:63:d9:6b:40:f6:8b:6c:e8:c2:
3b:45:57:db:1b:99:9f:9f:36:9e:76:59:f8:e2:62:67:b9:22:
50:b4:5c:c1:a4:c5:a8:b8:6d:7c:63:35:10:f1:c8:92:c1:71:
57:c7:51:3b:dd:74:b7:86:2b:ad:55:89:1e:6d:f0:d5:3f:b4:
b5:a8:b2:8a:e2:5a:97:a2:cb:bc:0d:3c:99:b8:6c:59:0b:70:
92:6f:dd:93:25:88:cf:a3:b3:63:3e:7a:d4:5c:52:39:5a:17:
40:a0:80:57:68:f4:6a:d9:87:de:3e:06:60:35:b6:2e:a1:e4:
b5:bb:3d:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 04:34:25 2026 by rpki-client