Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36EF7D0/36E40A16F2FB11ED821B9D804AD9E6FC/653FE7265B6811F1ACA9FDBFCE1D38B0.roa
File: 653FE7265B6811F1ACA9FDBFCE1D38B0.roa (raw, json)
Hash identifier: DQVb5WD1i7NAeZnfDmhDCQg88KuY1yevACFSkjlXvEk=
Subject key identifier: B0:AE:0D:F0:59:93:10:F6:1F:B3:8B:D2:38:87:D1:CB:94:24:DA:6E
Certificate issuer: /CN=F36EF7D0AF/serialNumber=3A553B6EF80BF922312F96B8DDC1F219A8C4121B
Certificate serial: 0526
Authority key identifier: 3A:55:3B:6E:F8:0B:F9:22:31:2F:96:B8:DD:C1:F2:19:A8:C4:12:1B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/OlU7bvgL-SIxL5a43cHyGajEEhs.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36EF7D0/36E40A16F2FB11ED821B9D804AD9E6FC/653FE7265B6811F1ACA9FDBFCE1D38B0.roa
Signing time: Fri 29 May 2026 14:12:16 +0000
ROA not before: Fri 29 May 2026 14:12:11 +0000
ROA not after: Thu 09 May 2030 14:12:11 +0000
asID: 154383
IP address blocks: 102.211.232.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36EF7D0/36E40A16F2FB11ED821B9D804AD9E6FC/OlU7bvgL-SIxL5a43cHyGajEEhs.crl
rsync://rpki.afrinic.net/repository/member_repository/F36EF7D0/36E40A16F2FB11ED821B9D804AD9E6FC/OlU7bvgL-SIxL5a43cHyGajEEhs.mft
rsync://rpki.afrinic.net/repository/afrinic/OlU7bvgL-SIxL5a43cHyGajEEhs.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 15 Jun 2026 00:07:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1318 (0x526)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36EF7D0AF, serialNumber=3A553B6EF80BF922312F96B8DDC1F219A8C4121B
Validity
Not Before: May 29 14:12:11 2026 GMT
Not After : May 9 14:12:11 2030 GMT
Subject: CN=6a199ec0-53ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:87:70:83:49:c0:21:2a:44:f1:57:fa:a3:73:
5f:c7:f1:40:c1:d7:35:74:f4:56:a2:b1:f8:6e:44:
aa:59:1e:b4:6d:cc:f2:ce:48:de:47:5c:16:9c:0c:
53:25:aa:a4:5f:d7:a3:5c:d0:6d:18:88:23:b6:a2:
2a:cf:f3:b8:c2:0f:46:05:4b:dd:30:5d:26:c2:0a:
c4:51:cc:76:2c:44:a3:3e:a3:84:03:68:ec:a7:90:
b3:01:92:ba:af:98:eb:3b:c7:83:ce:d2:a5:ff:5d:
b9:93:e1:39:59:d6:13:28:b5:8c:eb:92:0b:f3:04:
73:c8:aa:b5:4b:a8:42:78:79:a3:b5:6b:cc:a1:8b:
54:98:6a:e1:9e:f2:7b:29:fb:d0:05:6f:4e:ea:b3:
84:e4:6f:cb:f1:0b:66:bd:ed:f5:41:97:24:4b:91:
e1:5f:1f:f9:4d:f5:40:3c:e3:38:d9:39:b8:fc:99:
79:db:59:83:b9:37:59:b8:bb:74:97:a4:41:68:58:
8f:4b:1b:47:1a:b6:a1:e3:1c:5b:8a:64:b1:9d:22:
a0:7d:57:4a:8a:13:b6:00:b5:38:6c:38:9a:db:04:
03:fd:cc:b4:d2:d0:76:40:46:28:2a:45:50:c0:cf:
4d:6b:20:53:2f:b5:d6:ab:9c:f2:6f:91:73:9f:5c:
fb:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:AE:0D:F0:59:93:10:F6:1F:B3:8B:D2:38:87:D1:CB:94:24:DA:6E
X509v3 Authority Key Identifier:
keyid:3A:55:3B:6E:F8:0B:F9:22:31:2F:96:B8:DD:C1:F2:19:A8:C4:12:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36EF7D0/36E40A16F2FB11ED821B9D804AD9E6FC/OlU7bvgL-SIxL5a43cHyGajEEhs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/OlU7bvgL-SIxL5a43cHyGajEEhs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36EF7D0/36E40A16F2FB11ED821B9D804AD9E6FC/653FE7265B6811F1ACA9FDBFCE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.211.232.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:f3:dc:eb:16:ef:64:c6:71:da:1c:31:22:52:5a:0d:a8:1a:
7b:51:66:5b:07:63:98:54:fd:e0:09:5c:01:6c:a4:9d:b0:35:
eb:10:fc:9c:a6:ff:e8:ee:09:e7:0b:53:df:eb:3c:d3:d3:8f:
ac:d3:26:ba:37:95:6f:8a:35:04:a9:e3:05:41:d8:6a:2c:85:
a4:1f:79:ad:18:08:0a:48:22:ed:d2:1e:19:a3:ef:8b:9c:8f:
ec:79:7a:9f:0c:02:52:30:df:cf:8a:ae:73:b5:2e:02:82:35:
2f:cb:6f:db:8a:4c:b7:fa:bc:2b:e7:7c:17:0f:a7:60:e4:72:
72:f6:86:4f:ab:f4:14:01:07:ca:98:b4:f9:73:53:02:aa:3c:
df:9f:96:c5:d3:3f:7c:23:8b:f0:25:9e:ff:6b:a4:27:51:27:
a9:8b:2e:5c:ba:e8:7a:ca:92:17:19:51:61:0b:c2:fd:6c:ca:
8f:0e:28:39:ff:d4:ad:d0:f4:66:b8:3e:67:bf:e7:a3:b8:73:
3f:3b:80:ef:6f:72:19:ef:0a:77:14:85:48:b0:1c:0d:7a:c8:
0a:bd:75:91:a7:48:51:2b:94:9d:92:57:4d:ba:f2:ea:e6:04:
ac:e1:bf:bc:f2:4b:95:10:d8:c1:5a:3e:54:b5:5f:68:c8:9e:
d2:a5:d9:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 06:51:34 2026 by rpki-client