Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/066684143A8211F193B153C2CE1D38B0.roa
File: 066684143A8211F193B153C2CE1D38B0.roa (raw, json)
Hash identifier: sCCUu8bfRgbZs7sLpNPwZkL7iAJy9mC999gtnAdXG6s=
Subject key identifier: 60:F3:7B:C1:A1:48:90:20:94:A6:3A:45:5A:21:E7:64:D5:BF:80:E3
Certificate issuer: /CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Certificate serial: 1819
Authority key identifier: 48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/066684143A8211F193B153C2CE1D38B0.roa
Signing time: Fri 17 Apr 2026 17:22:36 +0000
ROA not before: Fri 17 Apr 2026 17:22:31 +0000
ROA not after: Sat 15 Apr 2028 17:22:31 +0000
asID: 198250
IP address blocks: 102.129.139.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.mft
rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 Apr 2026 00:07:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6169 (0x1819)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C58D6AF, serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Validity
Not Before: Apr 17 17:22:31 2026 GMT
Not After : Apr 15 17:22:31 2028 GMT
Subject: CN=69e26c5b-f689
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:5a:2e:af:11:94:f1:ff:bb:8c:8f:ef:29:aa:
9f:c9:a3:5e:07:d7:ac:4e:01:5f:15:e2:02:52:55:
cc:08:6b:1f:ce:db:72:e9:5f:40:37:b5:a5:0a:6d:
40:77:6c:1a:00:4d:5f:dc:02:0b:15:5a:1e:c4:20:
ce:30:3f:79:fd:9f:c0:61:d8:6a:8b:32:dd:e7:4c:
cd:34:67:7a:3a:ac:bf:4d:6b:aa:08:d5:ad:b2:3c:
a6:70:44:02:cc:64:08:62:71:20:ff:03:b9:48:9a:
42:c1:e8:a3:a2:4d:f4:fc:4c:8d:3b:fe:b8:cd:44:
40:7c:be:43:a0:06:4f:72:18:e5:a1:c3:ab:ce:6e:
13:f6:8a:8d:8e:65:cf:84:c9:fc:74:f1:01:b2:7e:
4d:b5:fa:ad:16:f0:9a:92:4e:f1:d8:34:95:79:cd:
02:07:8e:39:e9:be:5a:b3:44:b3:57:6c:4b:df:18:
7c:69:41:2c:f0:f2:c6:73:c4:f9:1e:56:0c:f2:2e:
ec:50:09:06:cb:09:2a:c5:e7:45:97:bb:e9:7f:e0:
50:24:b3:61:00:0f:12:52:97:dd:e9:3c:c8:c7:51:
76:cf:f8:d6:a8:dd:b6:e3:f7:ce:59:0e:99:de:cc:
98:f9:75:11:33:de:b2:f7:48:24:ab:4d:14:d1:14:
c5:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:F3:7B:C1:A1:48:90:20:94:A6:3A:45:5A:21:E7:64:D5:BF:80:E3
X509v3 Authority Key Identifier:
keyid:48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/066684143A8211F193B153C2CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.129.139.0/24
Signature Algorithm: sha256WithRSAEncryption
ac:44:13:62:dc:a7:82:3b:86:17:63:81:24:23:cc:b3:fa:07:
d1:6c:e9:27:9d:56:16:e2:15:24:e9:e4:35:c5:91:db:26:47:
ef:0d:09:2c:8b:09:9d:ba:df:8a:25:02:f8:3a:c4:6f:cc:94:
33:d0:bc:af:5d:f5:90:0f:fe:56:15:2b:91:e2:58:df:56:c7:
db:e5:66:77:47:7e:1d:79:9c:fe:e3:ce:fd:cc:28:22:bc:db:
c2:a3:e5:e7:7d:a7:7e:82:ab:9f:4c:7a:d6:3a:90:1d:b1:2f:
4d:8a:59:2c:e6:65:bf:06:35:b1:42:b6:bd:b1:56:ab:bd:a7:
fc:93:34:9b:21:8b:e4:6f:e8:88:95:34:0d:0f:64:1f:2d:5e:
dd:c4:1c:e9:c5:39:05:8f:f5:5f:69:11:58:d7:11:3d:fa:d8:
2c:f3:ff:5e:a1:1d:95:1a:2b:a3:c7:dd:bc:ea:21:ac:78:b0:
ba:11:28:0d:0b:e3:1f:6f:d7:a6:41:01:6d:34:80:74:c7:19:
be:aa:b5:f3:8c:e9:9c:5a:17:6c:19:5d:bc:28:79:e4:eb:12:
b0:19:d4:cc:75:36:85:61:4c:bf:7d:a5:73:08:d6:eb:d6:d9:
64:2b:8f:fd:92:0c:6b:e0:d0:df:7b:e4:70:33:4d:47:08:10:
f8:1b:ac:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 12:10:17 2026 by rpki-client