Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36E1834/0089D61C3F1F11F186F93815CF1D38B0/4A92428456B311F18B35DAA3CE1D38B0.roa
File: 4A92428456B311F18B35DAA3CE1D38B0.roa (raw, json)
Hash identifier: vdspDHy0VVaz3xQOnBfJMXkGW43fBkEK50nNocW6ISk=
Subject key identifier: 0A:F1:60:E3:F7:B0:49:97:3D:E2:11:61:3F:D7:70:2A:D7:F0:D9:9E
Certificate issuer: /CN=F36E1834AF/serialNumber=7BA89BCDC6603DE712B1B05CC2144204EBA39E28
Certificate serial: 20
Authority key identifier: 7B:A8:9B:CD:C6:60:3D:E7:12:B1:B0:5C:C2:14:42:04:EB:A3:9E:28
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/e6ibzcZgPecSsbBcwhRCBOujnig.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36E1834/0089D61C3F1F11F186F93815CF1D38B0/4A92428456B311F18B35DAA3CE1D38B0.roa
Signing time: Sat 23 May 2026 14:25:48 +0000
ROA not before: Sat 23 May 2026 14:25:43 +0000
ROA not after: Sun 30 Jun 2030 14:25:43 +0000
asID: 329720
IP address blocks: 102.202.222.0/24 maxlen: 24
102.202.222.0/25 maxlen: 25
102.202.222.128/25 maxlen: 25
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36E1834/0089D61C3F1F11F186F93815CF1D38B0/e6ibzcZgPecSsbBcwhRCBOujnig.crl
rsync://rpki.afrinic.net/repository/member_repository/F36E1834/0089D61C3F1F11F186F93815CF1D38B0/e6ibzcZgPecSsbBcwhRCBOujnig.mft
rsync://rpki.afrinic.net/repository/afrinic/e6ibzcZgPecSsbBcwhRCBOujnig.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 15 Jun 2026 00:07:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 32 (0x20)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36E1834AF, serialNumber=7BA89BCDC6603DE712B1B05CC2144204EBA39E28
Validity
Not Before: May 23 14:25:43 2026 GMT
Not After : Jun 30 14:25:43 2030 GMT
Subject: CN=6a11b8ec-264f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:b3:c3:6b:e7:56:df:42:22:4c:79:61:6b:f3:
76:cc:85:74:a1:76:2d:82:d0:e0:63:26:aa:18:63:
c9:8e:84:19:7a:c8:75:95:49:fd:6b:18:5a:4a:8e:
2b:6e:5d:f8:55:60:bb:c7:79:d4:0c:0e:41:e3:95:
00:46:43:28:74:78:33:fb:47:ca:9e:0e:df:aa:67:
2e:84:aa:95:92:35:88:83:ef:42:35:a9:e3:66:bd:
f2:ce:d1:ff:ad:fe:4c:be:05:ba:c6:65:96:f0:15:
e7:f1:6e:77:e7:cb:20:c5:90:35:34:9e:03:2e:3a:
6e:07:cf:e5:82:cd:95:a1:a5:7a:62:15:be:84:dc:
18:aa:75:b3:2d:32:b6:2f:3e:53:18:e2:a0:12:f2:
79:98:d8:d3:0d:bb:c3:38:66:ee:6a:70:02:c8:64:
86:ca:ff:09:3e:6c:28:a3:31:44:68:4e:da:11:f2:
a5:b3:82:77:d1:1e:3f:c3:b3:0a:79:65:a9:62:70:
5f:83:14:76:a4:b6:16:7f:5e:d3:cd:2d:98:45:4a:
9a:12:ca:35:f8:7d:99:dd:6d:98:84:85:df:26:05:
d5:a4:cc:78:f9:18:3c:4d:a1:d5:c9:46:85:6a:5b:
3a:b7:51:8c:1e:fa:24:61:4e:5d:9c:1e:ad:b3:cc:
2f:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:F1:60:E3:F7:B0:49:97:3D:E2:11:61:3F:D7:70:2A:D7:F0:D9:9E
X509v3 Authority Key Identifier:
keyid:7B:A8:9B:CD:C6:60:3D:E7:12:B1:B0:5C:C2:14:42:04:EB:A3:9E:28
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36E1834/0089D61C3F1F11F186F93815CF1D38B0/e6ibzcZgPecSsbBcwhRCBOujnig.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/e6ibzcZgPecSsbBcwhRCBOujnig.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36E1834/0089D61C3F1F11F186F93815CF1D38B0/4A92428456B311F18B35DAA3CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.202.222.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:3b:02:57:ae:fa:06:25:ca:45:50:2d:4f:85:b7:b7:03:e7:
2d:a5:24:c2:80:0e:8f:8f:7c:ad:57:25:91:a7:78:01:8d:4f:
d4:e9:ee:56:f4:02:30:11:51:9c:45:f7:3d:20:e2:78:3b:63:
e8:a2:8a:08:f9:32:97:79:10:69:ab:bc:40:b8:95:ff:45:43:
8e:f5:86:96:4d:d7:77:95:d8:1b:0d:bc:c3:a0:76:6e:62:c5:
d8:2d:7f:bf:ff:4d:5d:7a:c5:e8:6f:d5:23:48:53:6f:76:53:
85:42:52:10:66:8b:8e:7b:58:27:a6:82:4f:be:b4:58:93:37:
52:bf:1b:bd:99:64:31:b4:23:1a:a5:6d:c5:aa:2a:c4:19:98:
5b:f6:fa:e1:0f:0e:5f:1e:2f:09:d7:db:91:5e:43:d5:bd:65:
8b:26:a0:b1:38:ca:1d:b7:e0:8b:bd:4d:a4:50:21:d9:4c:58:
bc:5b:d5:5c:92:b4:16:58:5b:8c:0e:a8:ae:9c:fe:df:12:e4:
39:87:fa:d9:ea:fd:98:6c:df:e7:59:5a:ed:72:34:4b:b9:19:
95:e2:e4:ba:d0:c2:a6:f0:95:c5:78:cb:72:8d:f6:73:9e:b3:
7c:43:c2:73:c3:85:c9:ee:4f:55:9e:b5:72:af:fc:75:e7:9a:
9e:5e:be:00
-----BEGIN CERTIFICATE-----
MIIFgjCCBGqgAwIBAgIBIDANBgkqhkiG9w0BAQsFADBIMRMwEQYDVQQDEwpGMzZF
MTgzNEFGMTEwLwYDVQQFEyg3QkE4OUJDREM2NjAzREU3MTJCMUIwNUNDMjE0NDIw
NEVCQTM5RTI4MB4XDTI2MDUyMzE0MjU0M1oXDTMwMDYzMDE0MjU0M1owGDEWMBQG
A1UEAxMNNmExMWI4ZWMtMjY0ZjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAL+zw2vnVt9CIkx5YWvzdsyFdKF2LYLQ4GMmqhhjyY6EGXrIdZVJ/WsYWkqO
K25d+FVgu8d51AwOQeOVAEZDKHR4M/tHyp4O36pnLoSqlZI1iIPvQjWp42a98s7R
/63+TL4FusZllvAV5/Fud+fLIMWQNTSeAy46bgfP5YLNlaGlemIVvoTcGKp1sy0y
ti8+UxjioBLyeZjY0w27wzhm7mpwAshkhsr/CT5sKKMxRGhO2hHypbOCd9EeP8Oz
CnllqWJwX4MUdqS2Fn9e080tmEVKmhLKNfh9md1tmISF3yYF1aTMePkYPE2h1clG
hWpbOrdRjB76JGFOXZwerbPML7ECAwEAAaOCAqUwggKhMB0GA1UdDgQWBBQK8WDj
97BJlz3iEWE/13Aq1/DZnjAfBgNVHSMEGDAWgBR7qJvNxmA95xKxsFzCFEIE66Oe
KDAOBgNVHQ8BAf8EBAMCB4AwgZUGA1UdHwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2RTE4MzQvMDA4OUQ2MUMzRjFGMTFGMTg2RjkzODE1Q0YxRDM4QjAvZTZpYnpj
WmdQZWNTc2JCY3doUkNCT3VqbmlnLmNybDBnBggrBgEFBQcBAQRbMFkwVwYIKwYB
BQUHMAKGS3JzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L2Fmcmlu
aWMvZTZpYnpjWmdQZWNTc2JCY3doUkNCT3VqbmlnLmNlcjBPBgNVHSABAf8ERTBD
MEEGCCsGAQUFBw4CMDUwMwYIKwYBBQUHAgEWJ2h0dHBzOi8vcnBraS5hZnJpbmlj
Lm5ldC9wb2xpY3kvQ1BTLnBkZjCB2wYIKwYBBQUHAQsEgc4wgcswgZEGCCsGAQUF
BzALhoGEcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVy
X3JlcG9zaXRvcnkvRjM2RTE4MzQvMDA4OUQ2MUMzRjFGMTFGMTg2RjkzODE1Q0Yx
RDM4QjAvNEE5MjQyODQ1NkIzMTFGMThCMzVEQUEzQ0UxRDM4QjAucm9hMDUGCCsG
AQUFBzANhilodHRwczovL3JyZHAuYWZyaW5pYy5uZXQvbm90aWZpY2F0aW9uLnht
bDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGbK3jANBgkqhkiG9w0BAQsF
AAOCAQEAXDsCV676BiXKRVAtT4W3twPnLaUkwoAOj498rVclkad4AY1P1OnuVvQC
MBFRnEX3PSDieDtj6KKKCPkyl3kQaau8QLiV/0VDjvWGlk3Xd5XYGw28w6B2bmLF
2C1/v/9NXXrF6G/VI0hTb3ZThUJSEGaLjntYJ6aCT760WJM3Ur8bvZlkMbQjGqVt
xaoqxBmYW/b64Q8OXx4vCdfbkV5D1b1liyagsTjKHbfgi71NpFAh2UxYvFvVXJK0
FlhbjA6orpz+3xLkOYf62er9mGzf51la7XI0S7kZleLkutDCpvCVxXjLco32c56z
fEPCc8OFye5PVZ61cq/8deeanl6+AA==
-----END CERTIFICATE-----
Generated at Sat Jun 13 20:56:12 2026 by rpki-client