Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36F9E2C/04403A7C376211F1B1D917A9CE1D38B0/7C26F76C376511F1BAF793BDCE1D38B0.roa
File: 7C26F76C376511F1BAF793BDCE1D38B0.roa (raw, json)
Hash identifier: 77e7VRgMRSlm6uOaN3Nx3MxL9LPRRokgu8uG9DPIPbk=
Subject key identifier: 01:56:DE:7B:A6:5F:77:30:CF:A8:DF:09:42:7E:42:94:7E:B1:36:05
Certificate issuer: /CN=F36F9E2CAF/serialNumber=6A7DF7A8B42AF199BF9C62CCA92F1F2CF5CCFC81
Certificate serial: 02
Authority key identifier: 6A:7D:F7:A8:B4:2A:F1:99:BF:9C:62:CC:A9:2F:1F:2C:F5:CC:FC:81
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/an33qLQq8Zm_nGLMqS8fLPXM_IE.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36F9E2C/04403A7C376211F1B1D917A9CE1D38B0/7C26F76C376511F1BAF793BDCE1D38B0.roa
Signing time: Mon 13 Apr 2026 18:20:45 +0000
ROA not before: Mon 13 Apr 2026 18:20:39 +0000
ROA not after: Wed 13 May 2026 18:20:39 +0000
asID: 328809
IP address blocks: 102.221.152.0/24 maxlen: 24
2c0f:7c00::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36F9E2C/04403A7C376211F1B1D917A9CE1D38B0/an33qLQq8Zm_nGLMqS8fLPXM_IE.crl
rsync://rpki.afrinic.net/repository/member_repository/F36F9E2C/04403A7C376211F1B1D917A9CE1D38B0/an33qLQq8Zm_nGLMqS8fLPXM_IE.mft
rsync://rpki.afrinic.net/repository/afrinic/an33qLQq8Zm_nGLMqS8fLPXM_IE.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 00:07:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36F9E2CAF, serialNumber=6A7DF7A8B42AF199BF9C62CCA92F1F2CF5CCFC81
Validity
Not Before: Apr 13 18:20:39 2026 GMT
Not After : May 13 18:20:39 2026 GMT
Subject: CN=69dd33fc-c699
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:02:3c:e3:1f:41:19:33:37:73:56:fc:00:fd:
ee:37:0f:0b:0b:0a:5f:5c:34:e6:67:38:73:3d:94:
04:e1:0e:ec:61:c5:9a:b5:ae:98:5a:0d:8f:06:6d:
0a:67:3b:e8:68:12:1b:3b:fb:90:72:7c:02:74:d5:
43:d0:17:d8:28:6c:22:1a:31:b5:e1:35:d0:13:be:
16:8a:e2:3a:7a:f3:12:e0:45:41:5a:f8:61:3b:8d:
f8:2e:b5:a3:29:cc:80:4f:4c:9a:9c:fb:f0:aa:b8:
af:ad:9d:6c:9d:45:c9:be:d8:6b:bb:fa:4b:80:82:
06:37:8c:0c:98:49:aa:0d:5f:1b:87:c2:fc:2f:f1:
dc:71:55:6b:9e:91:0c:f1:24:ea:98:c7:93:d0:f4:
a4:a6:ea:b4:09:2e:ac:5f:4c:86:94:44:a1:bd:4e:
53:1d:06:e2:b3:a8:80:4f:d9:2a:20:38:6b:56:94:
cd:b5:48:f8:72:51:69:e3:d3:a4:a8:a3:5f:7d:08:
73:fc:00:e2:22:13:a8:d1:44:23:8b:5f:a0:24:9c:
3d:eb:18:ec:f6:bf:a3:84:51:20:cd:b4:5f:97:a5:
9b:b5:76:22:50:05:fc:0a:53:5f:e5:78:44:11:01:
40:1d:ca:fb:0f:0f:34:a9:94:7e:27:b8:bd:a5:29:
49:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:56:DE:7B:A6:5F:77:30:CF:A8:DF:09:42:7E:42:94:7E:B1:36:05
X509v3 Authority Key Identifier:
keyid:6A:7D:F7:A8:B4:2A:F1:99:BF:9C:62:CC:A9:2F:1F:2C:F5:CC:FC:81
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36F9E2C/04403A7C376211F1B1D917A9CE1D38B0/an33qLQq8Zm_nGLMqS8fLPXM_IE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/an33qLQq8Zm_nGLMqS8fLPXM_IE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36F9E2C/04403A7C376211F1B1D917A9CE1D38B0/7C26F76C376511F1BAF793BDCE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.221.152.0/24
IPv6:
2c0f:7c00::/32
Signature Algorithm: sha256WithRSAEncryption
09:bf:97:46:37:80:f5:fe:68:5a:58:82:3f:7f:55:86:6f:86:
86:ee:78:60:11:23:c1:8e:07:ec:05:b6:95:31:b7:d2:81:55:
2c:40:d9:df:ff:ff:dd:f5:51:f7:01:ae:4e:5e:39:a7:2f:48:
aa:c8:51:72:33:b9:8a:33:d3:cf:93:95:25:14:d4:8e:24:9a:
33:6b:f8:97:4f:45:ca:37:ad:e5:a6:3b:4a:ef:7e:4b:17:4f:
48:18:4b:9d:2d:f6:34:08:99:3d:b0:1f:65:30:da:9a:6f:e8:
08:3a:32:04:6d:a8:68:a0:0c:f4:e9:83:e5:31:19:99:70:df:
a7:f0:c4:b9:1b:29:6b:22:19:47:78:63:f6:f6:f2:f4:75:c7:
9f:d0:c9:5a:da:3c:99:96:00:5f:61:fd:56:95:fe:da:1d:75:
12:39:20:2b:b5:27:30:87:76:e1:0e:d6:dc:06:0d:7e:ca:89:
47:cd:41:40:c5:d1:ff:05:11:cf:12:31:0d:f5:64:51:84:17:
f7:43:78:9a:83:2a:23:a6:50:c1:3f:d1:0d:9d:66:b4:fc:fa:
e6:40:9d:14:03:59:8a:d5:46:32:43:75:e0:71:1d:ed:c9:db:
66:09:f1:d8:bf:2d:1d:6b:f5:56:bd:03:36:c6:aa:13:06:ab:
39:ca:b8:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 13:01:40 2026 by rpki-client