Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36A2303/65715F78594311EAB30F4261F8AEA228/6CE8B7F660B211F18CD99CEFCE1D38B0.roa
File: 6CE8B7F660B211F18CD99CEFCE1D38B0.roa (raw, json)
Hash identifier: ZXpoYon+3B1d5QRhn0uVTmuszfVgJmVLz9T2tT5QHOM=
Subject key identifier: CD:19:79:50:A9:85:86:3C:47:D8:69:5A:61:F9:A7:DF:AF:63:A5:8A
Certificate issuer: /CN=F36A2303AF/serialNumber=5EB88DF4BF9089D7049A1FBE8005E621EAAE862B
Certificate serial: 096D
Authority key identifier: 5E:B8:8D:F4:BF:90:89:D7:04:9A:1F:BE:80:05:E6:21:EA:AE:86:2B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/XriN9L-QidcEmh--gAXmIequhis.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36A2303/65715F78594311EAB30F4261F8AEA228/6CE8B7F660B211F18CD99CEFCE1D38B0.roa
Signing time: Fri 05 Jun 2026 07:44:47 +0000
ROA not before: Fri 05 Jun 2026 07:44:42 +0000
ROA not after: Thu 05 Jun 2036 07:44:42 +0000
asID: 328631
IP address blocks: 102.22.248.0/21 maxlen: 24
102.206.232.0/22 maxlen: 24
102.209.8.0/22 maxlen: 24
102.213.124.0/22 maxlen: 24
102.218.24.0/22 maxlen: 24
2c0f:e8a8::/32 maxlen: 33
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36A2303/65715F78594311EAB30F4261F8AEA228/XriN9L-QidcEmh--gAXmIequhis.crl
rsync://rpki.afrinic.net/repository/member_repository/F36A2303/65715F78594311EAB30F4261F8AEA228/XriN9L-QidcEmh--gAXmIequhis.mft
rsync://rpki.afrinic.net/repository/afrinic/XriN9L-QidcEmh--gAXmIequhis.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 15 Jun 2026 00:07:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2413 (0x96d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36A2303AF, serialNumber=5EB88DF4BF9089D7049A1FBE8005E621EAAE862B
Validity
Not Before: Jun 5 07:44:42 2026 GMT
Not After : Jun 5 07:44:42 2036 GMT
Subject: CN=6a227e6f-40e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:1a:57:f1:03:46:0e:5b:ad:7a:4d:d0:5d:19:
66:94:92:59:55:52:5e:05:28:56:26:5e:da:74:1e:
71:27:b8:8f:a4:63:6f:9c:ee:9b:be:9a:04:b4:d6:
82:f2:2f:4f:70:a2:0c:42:f8:24:c2:6e:1d:5f:70:
17:6c:12:ea:12:0f:9a:09:ac:1d:52:45:e3:02:38:
d1:2a:30:b4:74:fc:45:cc:68:10:18:4c:ca:eb:5c:
ab:b4:39:f7:9f:bf:83:4e:dc:d8:9f:18:19:a3:a9:
df:43:bc:de:9d:30:2b:a5:49:41:39:56:6c:62:de:
79:78:7b:51:16:1a:8b:ab:a3:dc:84:13:78:53:e8:
f0:7f:91:65:a4:19:f2:ce:fd:20:d2:65:55:f7:29:
02:78:96:48:38:cf:d3:dc:cb:0a:fe:d6:0b:33:60:
b9:1f:37:ee:4b:d0:95:f3:d2:f6:7f:c4:c0:09:74:
bc:09:6b:80:f7:3c:a1:85:df:e4:c2:89:9d:ce:60:
4b:e5:00:90:13:d2:49:33:89:d5:59:cb:2a:86:61:
24:9d:f6:44:e6:c4:81:65:55:74:24:b7:50:63:cf:
3c:5f:49:19:a1:f1:9c:7f:a0:2b:b1:f7:9e:8c:f6:
17:2f:70:af:64:6e:89:a8:7b:63:ab:e1:31:36:66:
ea:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:19:79:50:A9:85:86:3C:47:D8:69:5A:61:F9:A7:DF:AF:63:A5:8A
X509v3 Authority Key Identifier:
keyid:5E:B8:8D:F4:BF:90:89:D7:04:9A:1F:BE:80:05:E6:21:EA:AE:86:2B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36A2303/65715F78594311EAB30F4261F8AEA228/XriN9L-QidcEmh--gAXmIequhis.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/XriN9L-QidcEmh--gAXmIequhis.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36A2303/65715F78594311EAB30F4261F8AEA228/6CE8B7F660B211F18CD99CEFCE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.22.248.0/21
102.206.232.0/22
102.209.8.0/22
102.213.124.0/22
102.218.24.0/22
IPv6:
2c0f:e8a8::/32
Signature Algorithm: sha256WithRSAEncryption
0f:ef:3c:0b:90:e8:2f:f8:f1:3f:83:9c:43:51:c9:23:c0:0b:
a1:ba:03:7a:9b:f5:93:1e:3f:02:86:24:ff:99:43:aa:c6:2c:
3a:4f:c0:0b:bd:f0:eb:49:9d:d9:99:af:86:00:35:4e:e0:00:
86:61:35:28:d6:93:f4:8c:e6:33:f5:e7:6d:88:fe:01:c4:61:
e2:ab:0c:1d:0d:99:49:42:fc:c8:68:cc:6b:1a:32:97:e6:71:
25:a0:eb:60:38:b9:05:52:0a:cc:bf:e5:f7:c7:78:24:bc:7f:
0b:d4:aa:55:5c:cd:86:c7:dc:4a:3c:7b:9e:4b:3b:32:e4:23:
9e:ea:12:c4:ce:7d:51:cd:54:42:2f:77:89:ef:ce:f0:42:56:
9b:d0:88:4a:30:20:ce:d4:e1:d0:46:bf:24:ad:41:e7:0b:b3:
63:60:88:a3:e6:b8:d2:08:9c:b9:b1:92:48:66:92:2a:a2:d2:
e7:d1:59:e5:62:cd:eb:98:89:2b:39:67:1b:b8:8d:ce:68:1b:
29:e9:fe:e8:4d:14:19:27:31:cd:56:7b:55:37:7d:b6:de:41:
b5:1f:d2:ca:92:25:8b:56:5e:6e:96:d9:d2:0e:12:ed:85:cc:
57:a8:78:f1:87:87:e5:a8:74:c8:e5:8a:60:7a:99:9a:60:41:
80:f8:9f:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 09:07:10 2026 by rpki-client