Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36B583C/5DF79C7C971511ED99F847B8F1222468/40511982333911F186D47CE8CE1D38B0.roa
File: 40511982333911F186D47CE8CE1D38B0.roa (raw, json)
Hash identifier: VhsL8IPripVma1+4Z1gu+Qc3VhSnefO0SWTsn1gXDMM=
Subject key identifier: 70:32:67:CC:6F:2F:52:13:9A:E7:AD:32:92:87:C0:80:A5:1B:76:4E
Certificate issuer: /CN=F36B583CAF/serialNumber=293E5CFF530308B7F0F6B89E13F70C64F5E1099A
Certificate serial: 04F5
Authority key identifier: 29:3E:5C:FF:53:03:08:B7:F0:F6:B8:9E:13:F7:0C:64:F5:E1:09:9A
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/KT5c_1MDCLfw9rieE_cMZPXhCZo.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36B583C/5DF79C7C971511ED99F847B8F1222468/40511982333911F186D47CE8CE1D38B0.roa
Signing time: Wed 08 Apr 2026 10:54:01 +0000
ROA not before: Wed 08 Apr 2026 10:53:28 +0000
ROA not after: Wed 31 Mar 2027 10:53:28 +0000
asID: 37558
IP address blocks: 197.215.128.0/19 maxlen: 24
2c0f:3200::/32 maxlen: 48
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36B583C/5DF79C7C971511ED99F847B8F1222468/KT5c_1MDCLfw9rieE_cMZPXhCZo.crl
rsync://rpki.afrinic.net/repository/member_repository/F36B583C/5DF79C7C971511ED99F847B8F1222468/KT5c_1MDCLfw9rieE_cMZPXhCZo.mft
rsync://rpki.afrinic.net/repository/afrinic/KT5c_1MDCLfw9rieE_cMZPXhCZo.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 00:07:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1269 (0x4f5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36B583CAF, serialNumber=293E5CFF530308B7F0F6B89E13F70C64F5E1099A
Validity
Not Before: Apr 8 10:53:28 2026 GMT
Not After : Mar 31 10:53:28 2027 GMT
Subject: CN=69d633c9-3bf6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:62:af:63:94:e6:9d:5f:1d:b1:79:87:f3:53:
7b:64:ed:32:8b:75:67:0d:86:13:57:05:10:91:e7:
a7:68:82:bd:fe:11:10:91:f4:bc:10:42:c7:56:12:
74:29:1b:cc:02:7b:7c:c2:ed:c6:ab:82:92:47:5b:
23:cd:1b:22:98:0a:40:66:0c:c4:92:ca:b4:49:f1:
fd:ac:e9:f2:dd:fa:c2:91:ab:60:83:9d:50:2f:04:
e5:30:9e:51:1c:5c:26:67:ef:68:e4:68:f1:c5:71:
21:2d:61:16:50:ec:5e:44:e0:28:67:fb:80:57:ce:
52:7f:10:7b:29:6e:a4:c2:f6:8c:20:54:6f:c2:6b:
ed:31:0b:de:fe:ca:29:54:35:24:43:33:e6:6a:c3:
40:f9:73:e7:5c:fd:23:24:2f:02:be:a6:cf:1e:e3:
1b:10:71:5c:2c:ca:08:e8:8d:5d:9d:3a:93:72:c7:
65:97:fe:14:b5:e1:3b:63:2d:24:68:d5:15:d9:78:
29:2b:45:45:5c:6a:d4:1e:54:c2:56:de:4a:be:f3:
21:8c:9d:e2:89:eb:0c:a1:1b:00:08:76:81:5a:48:
15:d0:18:c5:ae:34:f7:7e:24:e2:e4:d8:04:ac:13:
2c:4a:4b:e7:07:3a:8e:8c:49:f8:6c:8f:af:d9:62:
f3:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:32:67:CC:6F:2F:52:13:9A:E7:AD:32:92:87:C0:80:A5:1B:76:4E
X509v3 Authority Key Identifier:
keyid:29:3E:5C:FF:53:03:08:B7:F0:F6:B8:9E:13:F7:0C:64:F5:E1:09:9A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36B583C/5DF79C7C971511ED99F847B8F1222468/KT5c_1MDCLfw9rieE_cMZPXhCZo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/KT5c_1MDCLfw9rieE_cMZPXhCZo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36B583C/5DF79C7C971511ED99F847B8F1222468/40511982333911F186D47CE8CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
197.215.128.0/19
IPv6:
2c0f:3200::/32
Signature Algorithm: sha256WithRSAEncryption
88:77:62:66:32:31:34:87:6d:fb:7c:6b:d2:ee:c4:10:9b:8f:
e1:9f:7c:44:8a:fd:a7:46:69:86:89:47:3a:03:c1:a9:f4:1c:
99:3d:61:3e:f9:c3:8a:11:13:6a:f2:dc:56:34:93:65:be:c9:
ce:4d:b7:28:5f:e4:fb:37:c2:f5:56:99:5f:ac:45:cd:82:ee:
1d:17:24:4e:79:9e:83:98:0e:a7:f7:7a:ea:88:d4:81:a2:b0:
37:ba:6e:c8:0a:7b:d9:75:95:65:f8:ab:3d:b0:01:30:28:34:
33:2b:8d:58:40:ea:63:bb:26:6a:a6:e8:90:8c:4f:10:85:4c:
73:07:be:7b:48:8b:20:74:e9:94:82:17:df:df:8b:fe:41:85:
c2:af:db:ca:4d:fa:75:64:c5:19:77:89:d8:36:f1:e1:81:68:
ee:c8:f5:95:75:dc:9a:ef:22:c9:b1:bc:c7:77:f9:c1:48:80:
0a:f7:ba:46:89:76:79:1e:b8:00:91:1e:45:ab:73:91:1f:22:
4b:c2:31:48:d6:3c:4b:a5:ff:ca:de:01:9a:73:a7:2a:98:57:
93:20:8c:fe:ac:02:b5:2f:06:87:ca:7f:76:5a:63:01:59:c5:
b0:47:8b:61:74:ef:f7:f3:c6:24:69:32:be:32:20:ba:80:92:
3b:96:1b:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 13:02:53 2026 by rpki-client