Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36DB492/10DA99764A0311ED8F59D89EF1222468/300F5DEC290A11F1843E2C93DAE4EC9C.roa
File: 300F5DEC290A11F1843E2C93DAE4EC9C.roa (raw, json)
Hash identifier: /mAZ3s7LrwZwUNCrBfvr7rgarWN7k5pNBPQkDQNI1+A=
Subject key identifier: 66:5E:90:7E:3F:49:0B:CB:A6:5B:B2:E2:4A:E7:42:DC:AE:42:8E:34
Certificate issuer: /CN=F36DB492AF/serialNumber=F43E0668EF72BD87FA5368BE2B6815C0BCB40149
Certificate serial: 056D
Authority key identifier: F4:3E:06:68:EF:72:BD:87:FA:53:68:BE:2B:68:15:C0:BC:B4:01:49
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/9D4GaO9yvYf6U2i-K2gVwLy0AUk.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36DB492/10DA99764A0311ED8F59D89EF1222468/300F5DEC290A11F1843E2C93DAE4EC9C.roa
Signing time: Thu 26 Mar 2026 11:51:56 +0000
ROA not before: Thu 26 Mar 2026 11:51:51 +0000
ROA not after: Wed 31 Mar 2032 11:51:51 +0000
asID: 23764
IP address blocks: 154.72.41.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36DB492/10DA99764A0311ED8F59D89EF1222468/9D4GaO9yvYf6U2i-K2gVwLy0AUk.crl
rsync://rpki.afrinic.net/repository/member_repository/F36DB492/10DA99764A0311ED8F59D89EF1222468/9D4GaO9yvYf6U2i-K2gVwLy0AUk.mft
rsync://rpki.afrinic.net/repository/afrinic/9D4GaO9yvYf6U2i-K2gVwLy0AUk.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 00:07:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1389 (0x56d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36DB492AF, serialNumber=F43E0668EF72BD87FA5368BE2B6815C0BCB40149
Validity
Not Before: Mar 26 11:51:51 2026 GMT
Not After : Mar 31 11:51:51 2032 GMT
Subject: CN=69c51ddc-3074
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:be:48:e8:69:91:e5:71:4a:8b:da:bd:c3:43:
ea:91:96:bd:05:f8:ea:50:b7:e5:e8:44:b8:21:9e:
d0:89:1b:87:71:67:49:08:99:41:7b:da:bd:ed:9c:
55:15:a2:d1:69:b5:cb:59:4f:b6:7a:ef:c6:86:ed:
08:94:af:69:00:4b:69:1c:a8:6f:34:ed:d2:97:88:
4c:41:e1:cd:45:35:58:c3:59:1a:fc:b0:8e:1d:18:
7e:b6:74:a9:16:2f:1d:4f:fd:0b:46:8d:68:c0:37:
6d:4d:b0:6c:b5:71:89:d3:44:e7:ae:49:96:17:be:
51:2f:88:69:3b:db:f6:eb:42:6e:1c:f4:34:3a:61:
19:e4:45:52:0c:06:f1:01:22:67:88:02:6e:fc:4b:
44:ce:ef:c2:71:36:e1:89:a4:07:63:b3:e7:7d:4e:
24:e9:27:46:ca:9a:28:ab:3f:67:e3:07:2b:e0:3f:
30:e9:9b:fe:35:c8:d4:5d:22:7d:36:f4:b2:00:74:
51:28:e7:d9:05:92:dd:67:39:88:76:64:e3:b7:33:
c5:4b:d9:fb:90:6f:c0:ce:3b:6d:b8:aa:ae:c7:88:
ad:80:b5:d8:ef:7d:c8:e9:21:b1:28:8c:f8:48:23:
88:4f:b7:28:aa:3e:d4:3a:18:9b:dd:8e:35:31:87:
12:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:5E:90:7E:3F:49:0B:CB:A6:5B:B2:E2:4A:E7:42:DC:AE:42:8E:34
X509v3 Authority Key Identifier:
keyid:F4:3E:06:68:EF:72:BD:87:FA:53:68:BE:2B:68:15:C0:BC:B4:01:49
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36DB492/10DA99764A0311ED8F59D89EF1222468/9D4GaO9yvYf6U2i-K2gVwLy0AUk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/9D4GaO9yvYf6U2i-K2gVwLy0AUk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36DB492/10DA99764A0311ED8F59D89EF1222468/300F5DEC290A11F1843E2C93DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.72.41.0/24
Signature Algorithm: sha256WithRSAEncryption
ae:03:11:5c:72:44:47:bb:b1:03:f1:ae:11:e0:ac:d4:48:d9:
55:55:7b:82:2e:d6:27:a2:99:80:31:7e:df:0c:b5:6c:19:bb:
5e:0b:1b:0f:ae:a4:22:3e:c2:b2:cd:16:bd:b1:b5:bd:39:43:
c9:50:6e:2f:74:34:b3:a3:ab:41:66:f0:bb:e4:85:e4:36:4e:
d7:e3:6a:4c:0c:e3:21:03:88:7c:88:a6:7f:58:f3:6b:a6:8e:
ed:0e:14:6a:a1:8b:64:41:1e:05:be:89:81:1a:08:cd:05:a8:
ad:32:cb:53:d9:6d:21:85:c6:4d:f0:17:e5:cc:ad:62:a5:ea:
10:24:97:61:4f:68:dd:23:e0:28:da:c1:b2:c8:3d:84:f3:f0:
79:45:6b:d3:d7:68:7a:4a:80:c5:bd:d5:ed:4c:f5:71:1e:5a:
92:98:06:79:e4:6f:d1:41:03:9d:f6:16:1f:9c:b6:f3:45:6a:
4f:df:cc:2f:d8:4d:49:a4:e6:17:38:51:60:13:83:f0:c1:2b:
f1:95:41:83:4d:86:af:03:ad:b7:53:ba:b6:cf:66:ff:ec:73:
cf:df:16:a1:79:d9:f9:3d:b2:d9:e9:07:f4:7b:fb:85:61:4f:
e5:25:5a:6b:ff:ff:75:93:b9:11:c6:62:fb:f5:ca:27:71:12:
08:fe:de:64
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICBW0wDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
REI0OTJBRjExMC8GA1UEBRMoRjQzRTA2NjhFRjcyQkQ4N0ZBNTM2OEJFMkI2ODE1
QzBCQ0I0MDE0OTAeFw0yNjAzMjYxMTUxNTFaFw0zMjAzMzExMTUxNTFaMBgxFjAU
BgNVBAMTDTY5YzUxZGRjLTMwNzQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDLvkjoaZHlcUqL2r3DQ+qRlr0F+OpQt+XoRLghntCJG4dxZ0kImUF72r3t
nFUVotFptctZT7Z678aG7QiUr2kAS2kcqG807dKXiExB4c1FNVjDWRr8sI4dGH62
dKkWLx1P/QtGjWjAN21NsGy1cYnTROeuSZYXvlEviGk72/brQm4c9DQ6YRnkRVIM
BvEBImeIAm78S0TO78JxNuGJpAdjs+d9TiTpJ0bKmiirP2fjByvgPzDpm/41yNRd
In029LIAdFEo59kFkt1nOYh2ZOO3M8VL2fuQb8DOO224qq7HiK2AtdjvfcjpIbEo
jPhII4hPtyiqPtQ6GJvdjjUxhxJ7AgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUZl6Q
fj9JC8umW7LiSudC3K5CjjQwHwYDVR0jBBgwFoAU9D4GaO9yvYf6U2i+K2gVwLy0
AUkwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNkRCNDkyLzEwREE5OTc2NEEwMzExRUQ4RjU5RDg5RUYxMjIyNDY4LzlENEdh
Tzl5dllmNlUyaS1LMmdWd0x5MEFVay5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljLzlENEdhTzl5dllmNlUyaS1LMmdWd0x5MEFVay5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNkRCNDkyLzEwREE5OTc2NEEwMzExRUQ4RjU5RDg5RUYx
MjIyNDY4LzMwMEY1REVDMjkwQTExRjE4NDNFMkM5M0RBRTRFQzlDLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACaSCkwDQYJKoZIhvcNAQEL
BQADggEBAK4DEVxyREe7sQPxrhHgrNRI2VVVe4Iu1ieimYAxft8MtWwZu14LGw+u
pCI+wrLNFr2xtb05Q8lQbi90NLOjq0Fm8LvkheQ2TtfjakwM4yEDiHyIpn9Y82um
ju0OFGqhi2RBHgW+iYEaCM0FqK0yy1PZbSGFxk3wF+XMrWKl6hAkl2FPaN0j4Cja
wbLIPYTz8HlFa9PXaHpKgMW91e1M9XEeWpKYBnnkb9FBA532Fh+ctvNFak/fzC/Y
TUmk5hc4UWATg/DBK/GVQYNNhq8DrbdTurbPZv/sc8/fFqF52fk9stnpB/R7+4Vh
T+UlWmv//3WTuRHGYvv1yidxEgj+3mQ=
-----END CERTIFICATE-----
Generated at Fri Apr 17 13:28:50 2026 by rpki-client