Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36BDDB2/7C71590CBEF111F0A1E499A4DAE4EC9C/57F5D562066811F182A03BF2DAE4EC9C.roa
File: 57F5D562066811F182A03BF2DAE4EC9C.roa (raw, json)
Hash identifier: H/dZ7GU4y3+0W4NbF4qfRfiPWKdEGrksIwpjjQKBLhc=
Subject key identifier: 10:5B:F7:73:D3:22:BA:3E:91:EA:18:61:CB:B8:80:FA:36:F5:97:9B
Certificate issuer: /CN=F36BDDB2AF/serialNumber=A5CA4E5A6FCAFD98706523D3145C56BBCEC70940
Certificate serial: 67
Authority key identifier: A5:CA:4E:5A:6F:CA:FD:98:70:65:23:D3:14:5C:56:BB:CE:C7:09:40
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/pcpOWm_K_ZhwZSPTFFxWu87HCUA.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36BDDB2/7C71590CBEF111F0A1E499A4DAE4EC9C/57F5D562066811F182A03BF2DAE4EC9C.roa
Signing time: Tue 10 Feb 2026 10:07:45 +0000
ROA not before: Tue 10 Feb 2026 10:07:39 +0000
ROA not after: Fri 11 Feb 2028 10:07:39 +0000
asID: 329617
IP address blocks: 154.72.16.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36BDDB2/7C71590CBEF111F0A1E499A4DAE4EC9C/pcpOWm_K_ZhwZSPTFFxWu87HCUA.crl
rsync://rpki.afrinic.net/repository/member_repository/F36BDDB2/7C71590CBEF111F0A1E499A4DAE4EC9C/pcpOWm_K_ZhwZSPTFFxWu87HCUA.mft
rsync://rpki.afrinic.net/repository/afrinic/pcpOWm_K_ZhwZSPTFFxWu87HCUA.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 04 Mar 2026 00:07:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 103 (0x67)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36BDDB2AF, serialNumber=A5CA4E5A6FCAFD98706523D3145C56BBCEC70940
Validity
Not Before: Feb 10 10:07:39 2026 GMT
Not After : Feb 11 10:07:39 2028 GMT
Subject: CN=698b0371-3cbc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:5f:9c:1c:4b:68:de:11:ec:08:50:c8:3a:e7:
dc:8a:ee:6e:9f:3e:0e:fb:f7:20:9e:42:9e:73:af:
e7:c0:c3:86:f3:cd:ce:1e:11:58:52:94:73:47:09:
3e:82:f2:4a:8c:84:83:f5:00:08:cf:e6:a5:38:e4:
47:84:27:02:a7:cb:fd:01:46:7f:0e:22:7a:87:aa:
c6:3c:1c:05:3b:31:c4:f0:6d:cc:52:5e:22:8d:57:
eb:bf:2a:41:02:ae:a8:c5:cf:c5:f9:10:99:36:73:
e6:e6:8b:ba:96:20:ee:b8:45:37:4f:72:b4:1a:08:
10:0e:53:1d:34:82:32:c4:e1:93:22:67:67:fe:2a:
cb:e1:d8:7a:9e:fb:8f:d5:91:11:19:ef:5f:b4:75:
98:cf:e8:c6:8c:3d:d6:c3:1d:5b:1f:86:85:8a:77:
15:75:34:ed:b8:d6:72:76:a2:d0:83:4b:06:88:42:
c9:5c:09:b2:b8:d3:81:51:a3:5c:c0:a8:22:77:b4:
54:db:ab:f3:11:39:d2:30:a2:16:eb:83:3b:6f:a8:
fa:34:4b:89:a1:31:ae:f5:78:ed:47:13:57:fa:c8:
0c:29:96:57:56:16:f0:8b:b3:f1:f1:b3:92:4e:f8:
c1:48:ed:84:fe:e6:49:ca:8c:e8:de:29:0c:50:f4:
6c:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:5B:F7:73:D3:22:BA:3E:91:EA:18:61:CB:B8:80:FA:36:F5:97:9B
X509v3 Authority Key Identifier:
keyid:A5:CA:4E:5A:6F:CA:FD:98:70:65:23:D3:14:5C:56:BB:CE:C7:09:40
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36BDDB2/7C71590CBEF111F0A1E499A4DAE4EC9C/pcpOWm_K_ZhwZSPTFFxWu87HCUA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/pcpOWm_K_ZhwZSPTFFxWu87HCUA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36BDDB2/7C71590CBEF111F0A1E499A4DAE4EC9C/57F5D562066811F182A03BF2DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.72.16.0/24
Signature Algorithm: sha256WithRSAEncryption
46:73:f8:c5:23:36:3f:6f:a7:cc:d5:b8:40:15:6f:22:07:65:
ed:65:76:5e:65:8d:7f:47:e0:fc:25:21:01:89:20:6f:42:59:
40:b4:f4:df:d7:e2:0b:b4:54:28:80:ad:82:8e:cc:68:98:0d:
1c:6d:80:62:e8:99:c1:8f:36:31:b7:af:e2:ea:c1:9e:9f:8b:
3a:c7:00:c7:e7:ff:03:1b:b8:5c:97:cd:fe:6b:44:b7:36:5a:
76:7e:3e:06:88:3c:c9:cc:db:27:95:57:ab:f4:dc:91:bc:b1:
e5:4e:eb:c0:69:db:d7:38:9f:1f:54:55:13:09:5e:25:34:00:
fa:87:60:5e:b1:79:64:be:fb:80:07:61:49:f3:77:a1:12:ad:
5d:b7:80:79:88:37:7f:c8:43:82:79:a6:4f:5e:a4:78:2f:ae:
1e:62:b3:22:ad:e0:5d:f5:d2:f8:1e:db:dd:d5:87:06:c7:da:
5d:a5:d0:be:83:9f:e3:4c:dc:60:e8:93:51:c7:a8:ba:ef:5f:
50:07:92:42:1d:4c:47:d0:06:d2:bf:e8:ba:2c:2d:e4:3b:1f:
9b:62:02:5c:9d:a4:e4:b5:0d:8e:af:56:7b:f0:4d:a5:fb:0c:
fa:db:07:c4:56:47:73:3e:a4:25:1f:bc:9b:fa:9c:3e:b3:73:
bd:18:6b:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 07:36:53 2026 by rpki-client