Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36A8AA3/947078EC9E5211EEACE10A1AD25BE465/C550674E107C11F1B08BADEEDAE4EC9C.roa
File: C550674E107C11F1B08BADEEDAE4EC9C.roa (raw, json)
Hash identifier: vUqUZoT6vMUUYWZxQGWlE6o1ggpS7cJlVpLXKzN1Bis=
Subject key identifier: E5:4F:55:3B:25:9F:FC:18:FC:CD:12:9A:A8:39:E5:83:6E:33:39:93
Certificate issuer: /CN=F36A8AA3AF/serialNumber=BDB1C832442A1706BF77FC4EC4371819BA3FC1A6
Certificate serial: 0333
Authority key identifier: BD:B1:C8:32:44:2A:17:06:BF:77:FC:4E:C4:37:18:19:BA:3F:C1:A6
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/vbHIMkQqFwa_d_xOxDcYGbo_waY.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36A8AA3/947078EC9E5211EEACE10A1AD25BE465/C550674E107C11F1B08BADEEDAE4EC9C.roa
Signing time: Mon 23 Feb 2026 05:59:10 +0000
ROA not before: Mon 23 Feb 2026 05:59:06 +0000
ROA not after: Sun 28 Feb 2027 05:59:06 +0000
asID: 37484
IP address blocks: 197.155.32.0/19 maxlen: 24
2c0f:f838::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36A8AA3/947078EC9E5211EEACE10A1AD25BE465/vbHIMkQqFwa_d_xOxDcYGbo_waY.crl
rsync://rpki.afrinic.net/repository/member_repository/F36A8AA3/947078EC9E5211EEACE10A1AD25BE465/vbHIMkQqFwa_d_xOxDcYGbo_waY.mft
rsync://rpki.afrinic.net/repository/afrinic/vbHIMkQqFwa_d_xOxDcYGbo_waY.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 03 Mar 2026 02:43:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 819 (0x333)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36A8AA3AF, serialNumber=BDB1C832442A1706BF77FC4EC4371819BA3FC1A6
Validity
Not Before: Feb 23 05:59:06 2026 GMT
Not After : Feb 28 05:59:06 2027 GMT
Subject: CN=699becae-379a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:27:67:f0:b0:7e:14:c3:2b:31:dd:e6:e8:1c:
bc:60:fd:a1:44:72:2a:f0:03:63:57:03:30:e1:25:
76:a6:81:40:73:c3:90:64:00:cf:03:04:d9:c7:84:
70:8e:55:1b:46:c9:02:d3:e3:b5:6c:aa:71:ca:78:
c7:73:f8:ca:5a:af:25:47:c5:0d:bf:8c:d9:e9:7b:
b0:e6:04:0f:98:48:40:29:c1:97:5c:16:9f:b1:40:
0e:7f:70:15:79:36:e1:35:b6:af:7f:34:74:ec:37:
cf:4b:83:b0:3a:99:61:70:64:d5:51:36:20:3b:31:
ab:e3:c4:06:00:d5:2a:ad:e7:b5:ac:92:d2:dc:92:
3d:79:20:66:92:a9:bc:37:6c:bc:fe:d3:8d:06:2d:
05:ad:dd:4c:61:04:53:0e:f3:9a:72:94:72:3f:57:
c3:a2:38:5e:88:ab:8d:e7:5e:93:32:9b:e0:96:06:
ec:b4:de:6c:fd:ae:32:0d:9e:2e:4b:ff:d0:93:41:
f0:58:64:51:df:61:0e:41:b4:1d:60:72:d0:03:2f:
f5:63:22:a2:3b:80:cf:75:d4:f6:3d:ba:36:60:4f:
46:c6:b1:f0:19:c6:9c:9c:91:73:cc:50:05:01:b1:
4a:7f:4b:26:c3:3d:40:97:d6:3c:a7:de:ae:6f:d6:
8f:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:4F:55:3B:25:9F:FC:18:FC:CD:12:9A:A8:39:E5:83:6E:33:39:93
X509v3 Authority Key Identifier:
keyid:BD:B1:C8:32:44:2A:17:06:BF:77:FC:4E:C4:37:18:19:BA:3F:C1:A6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36A8AA3/947078EC9E5211EEACE10A1AD25BE465/vbHIMkQqFwa_d_xOxDcYGbo_waY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/vbHIMkQqFwa_d_xOxDcYGbo_waY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36A8AA3/947078EC9E5211EEACE10A1AD25BE465/C550674E107C11F1B08BADEEDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
197.155.32.0/19
IPv6:
2c0f:f838::/32
Signature Algorithm: sha256WithRSAEncryption
7c:5c:4b:c9:e4:27:ce:69:b7:db:f2:19:bf:c9:e9:80:c1:36:
42:85:f5:86:a9:84:ba:74:67:8f:c9:34:36:cf:b7:9f:88:a0:
47:96:f3:6c:a1:4c:d9:13:a3:a6:50:10:2f:9d:d0:39:5e:32:
48:ba:44:a3:ee:cd:68:91:e5:1d:9d:2d:57:b2:47:98:b1:ce:
73:85:b4:17:0e:d8:27:a2:4a:6b:de:03:51:5e:f7:44:57:25:
b9:1f:28:f1:92:30:ee:58:59:ae:75:8f:fa:93:48:71:d4:de:
e9:33:72:fb:95:4d:22:09:af:e1:ad:1b:0d:6b:05:12:b1:3a:
e8:e9:d5:a3:e7:50:1b:5c:9e:bb:6b:e8:a4:da:26:5a:32:6a:
ed:f1:0b:20:eb:27:3e:19:8c:60:20:65:cc:e9:f6:fc:fa:79:
9d:98:5b:bd:cc:de:99:55:43:8d:1e:95:00:d6:51:2d:b2:a2:
b7:41:dc:a9:b0:f0:6b:45:57:70:5d:7c:29:26:34:89:b5:67:
0e:03:02:44:78:12:fa:be:fb:cf:e8:61:56:25:42:cf:99:c4:
74:a6:69:7b:a5:a0:6a:0e:3e:e5:80:df:b9:15:ce:e7:48:c0:
df:d4:24:0b:70:dc:66:94:59:d0:27:28:43:68:14:c6:53:e3:
9b:92:02:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 04:48:11 2026 by rpki-client