Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36DB492/10DA99764A0311ED8F59D89EF1222468/D6504E68290B11F184129C9FDAE4EC9C.roa
File: D6504E68290B11F184129C9FDAE4EC9C.roa (raw, json)
Hash identifier: qckDSZpiADz4C0oSDtx3Icnh2HGIkg3DMc6q7pmD1Lg=
Subject key identifier: CD:0C:3C:4D:1F:9A:62:10:6C:0C:BD:38:BA:AE:36:48:0D:D2:2A:A3
Certificate issuer: /CN=F36DB492AF/serialNumber=F43E0668EF72BD87FA5368BE2B6815C0BCB40149
Certificate serial: 0576
Authority key identifier: F4:3E:06:68:EF:72:BD:87:FA:53:68:BE:2B:68:15:C0:BC:B4:01:49
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/9D4GaO9yvYf6U2i-K2gVwLy0AUk.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36DB492/10DA99764A0311ED8F59D89EF1222468/D6504E68290B11F184129C9FDAE4EC9C.roa
Signing time: Thu 26 Mar 2026 12:03:45 +0000
ROA not before: Thu 26 Mar 2026 12:03:40 +0000
ROA not after: Wed 31 Mar 2032 12:03:40 +0000
asID: 23764
IP address blocks: 154.72.45.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36DB492/10DA99764A0311ED8F59D89EF1222468/9D4GaO9yvYf6U2i-K2gVwLy0AUk.crl
rsync://rpki.afrinic.net/repository/member_repository/F36DB492/10DA99764A0311ED8F59D89EF1222468/9D4GaO9yvYf6U2i-K2gVwLy0AUk.mft
rsync://rpki.afrinic.net/repository/afrinic/9D4GaO9yvYf6U2i-K2gVwLy0AUk.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 00:07:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1398 (0x576)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36DB492AF, serialNumber=F43E0668EF72BD87FA5368BE2B6815C0BCB40149
Validity
Not Before: Mar 26 12:03:40 2026 GMT
Not After : Mar 31 12:03:40 2032 GMT
Subject: CN=69c520a1-6140
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:73:c1:7b:0f:1e:5b:e2:9d:48:8a:a0:91:1d:
5a:c8:c5:4e:71:5a:41:5c:94:df:3e:eb:88:3c:9f:
04:36:57:3f:4e:d5:4d:6c:54:68:ea:bc:73:11:c6:
46:b7:de:7d:4a:8d:37:68:73:c2:ac:ac:f1:0b:c7:
ec:54:6c:db:26:67:70:e3:6c:28:9d:2f:ee:ec:4e:
61:83:b6:05:c2:b9:d7:d2:b3:b9:f7:73:8a:d7:ce:
74:83:08:7c:53:81:04:da:10:13:18:06:62:eb:41:
70:f8:81:9d:e7:a4:80:b5:55:ec:12:9a:1a:7c:08:
b5:61:83:94:ce:e4:45:bd:99:20:79:d1:bb:71:36:
51:bf:22:2f:59:a0:b6:d5:33:07:00:ad:b3:fe:fa:
29:6e:4a:2c:f5:10:59:b8:66:35:cf:d8:0e:ca:b5:
e1:03:01:d0:08:20:1e:b3:29:30:4f:d8:fd:e8:5d:
04:fe:98:f1:02:64:7c:f6:5f:00:69:90:a3:41:7a:
d3:5d:b7:12:d3:8f:84:99:14:c5:65:f7:79:2d:2a:
1b:e5:bd:09:66:50:64:b2:1f:c6:1a:f6:2b:a0:5b:
47:fd:34:49:ef:b6:ff:05:cd:92:55:2e:fb:e8:f2:
b9:59:4b:bb:c7:b1:63:a5:62:20:f6:8a:e1:ee:e0:
68:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:0C:3C:4D:1F:9A:62:10:6C:0C:BD:38:BA:AE:36:48:0D:D2:2A:A3
X509v3 Authority Key Identifier:
keyid:F4:3E:06:68:EF:72:BD:87:FA:53:68:BE:2B:68:15:C0:BC:B4:01:49
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36DB492/10DA99764A0311ED8F59D89EF1222468/9D4GaO9yvYf6U2i-K2gVwLy0AUk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/9D4GaO9yvYf6U2i-K2gVwLy0AUk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36DB492/10DA99764A0311ED8F59D89EF1222468/D6504E68290B11F184129C9FDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.72.45.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:12:a9:fd:30:06:d1:de:14:27:11:0a:05:14:af:21:08:30:
c4:d6:29:9e:6a:30:e3:7d:61:a7:ac:91:83:91:51:34:17:eb:
75:40:5a:03:73:92:de:a2:54:5e:73:d5:44:a5:27:9c:bf:8b:
a4:3e:e6:74:e7:0d:b5:b1:ee:99:ff:61:96:77:56:aa:ea:a0:
f2:a3:06:f1:b6:a0:63:2c:ae:67:78:8b:96:2c:ed:47:cf:1c:
e6:a9:bf:ea:73:73:3e:db:9e:63:2d:9c:ad:7a:c7:92:61:73:
84:a7:2c:d8:6f:25:20:1f:9b:26:6c:39:48:a0:69:b2:7e:88:
87:d7:d6:e5:43:aa:d2:f0:4e:9b:38:95:4d:a2:34:44:b0:72:
09:86:e6:01:21:89:cd:9e:cd:f8:60:b2:67:a1:c1:40:69:42:
e7:2a:e4:88:20:11:ce:0f:60:a7:f1:64:1d:fd:45:ad:84:f9:
55:19:19:c7:5a:75:8a:61:6d:36:22:60:88:6a:d4:31:1e:53:
4c:0c:7b:7d:36:d6:0b:64:74:62:c4:dd:cd:63:52:6d:22:20:
d6:82:2e:c0:1a:7b:f0:6d:53:cf:d0:8f:06:6d:5a:52:0f:38:
2e:33:fc:a0:3a:68:67:91:cc:fd:de:c5:67:cb:59:df:99:ea:
fe:9f:71:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 13:28:30 2026 by rpki-client