Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F361373D/47CCED72478D11F1ABAFC0F7CE1D38B0/F5AB9874478F11F190E5E807CF1D38B0.roa
File: F5AB9874478F11F190E5E807CF1D38B0.roa (raw, json)
Hash identifier: trV7BwMqPto1yHF/DuYdQJNnLE/XCST1fhJr5+Udcv0=
Subject key identifier: 54:2A:6B:CA:5A:0B:BB:49:97:46:25:91:91:B8:C3:60:2C:64:CD:57
Certificate issuer: /CN=F361373DAF/serialNumber=CC16C8DDDCCE13A9A0BA72B20FAB903BD9EA0DCE
Certificate serial: 02
Authority key identifier: CC:16:C8:DD:DC:CE:13:A9:A0:BA:72:B2:0F:AB:90:3B:D9:EA:0D:CE
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/zBbI3dzOE6mgunKyD6uQO9nqDc4.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F361373D/47CCED72478D11F1ABAFC0F7CE1D38B0/F5AB9874478F11F190E5E807CF1D38B0.roa
Signing time: Mon 04 May 2026 08:05:06 +0000
ROA not before: Mon 04 May 2026 08:05:01 +0000
ROA not after: Mon 31 May 2027 08:05:01 +0000
asID: 329425
IP address blocks: 197.157.204.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F361373D/47CCED72478D11F1ABAFC0F7CE1D38B0/zBbI3dzOE6mgunKyD6uQO9nqDc4.crl
rsync://rpki.afrinic.net/repository/member_repository/F361373D/47CCED72478D11F1ABAFC0F7CE1D38B0/zBbI3dzOE6mgunKyD6uQO9nqDc4.mft
rsync://rpki.afrinic.net/repository/afrinic/zBbI3dzOE6mgunKyD6uQO9nqDc4.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 09 May 2026 00:07:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F361373DAF, serialNumber=CC16C8DDDCCE13A9A0BA72B20FAB903BD9EA0DCE
Validity
Not Before: May 4 08:05:01 2026 GMT
Not After : May 31 08:05:01 2027 GMT
Subject: CN=69f85331-f332
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:15:27:40:3d:d1:18:df:3d:55:57:bf:7d:3b:
8b:60:55:b4:ad:6f:50:af:4f:22:34:d7:6a:e3:a4:
0d:f8:d5:4f:6a:ab:eb:65:3e:51:b2:71:46:64:d3:
a8:e5:74:0c:18:1d:fd:f6:1f:b4:f6:b1:4e:ad:17:
9e:07:c8:7b:fa:6a:c3:54:5b:17:c4:d5:13:96:22:
15:00:a6:0b:f4:73:8b:24:e4:c7:0a:c1:63:10:41:
f4:b0:e9:6e:b7:bf:a9:b9:6a:3c:3c:62:bb:6b:07:
93:04:f5:2e:ed:2e:64:cf:93:f9:8b:a2:92:b2:aa:
a5:82:a8:7a:d9:dc:0f:82:bc:e2:fa:70:21:a9:8b:
f5:8e:5d:39:21:02:af:fa:da:51:61:45:81:21:3a:
34:f0:b2:c3:7d:c1:9f:10:02:c5:a9:43:bd:dc:c2:
1d:c5:bd:97:e8:36:20:f5:63:66:ac:2a:c4:c7:5e:
31:9e:d9:c4:77:e1:f6:9f:a5:41:20:3f:89:76:c7:
60:c5:89:df:dc:f1:83:d3:9e:11:e5:33:1f:08:eb:
4d:c3:b2:ad:44:33:a4:43:ad:50:df:1c:c9:76:ab:
63:73:fe:79:33:3c:a4:ec:43:98:c8:6b:b9:32:b7:
3d:42:3f:25:ed:6c:d9:c1:84:36:e1:7f:3b:80:f8:
75:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:2A:6B:CA:5A:0B:BB:49:97:46:25:91:91:B8:C3:60:2C:64:CD:57
X509v3 Authority Key Identifier:
keyid:CC:16:C8:DD:DC:CE:13:A9:A0:BA:72:B2:0F:AB:90:3B:D9:EA:0D:CE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F361373D/47CCED72478D11F1ABAFC0F7CE1D38B0/zBbI3dzOE6mgunKyD6uQO9nqDc4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/zBbI3dzOE6mgunKyD6uQO9nqDc4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F361373D/47CCED72478D11F1ABAFC0F7CE1D38B0/F5AB9874478F11F190E5E807CF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
197.157.204.0/22
Signature Algorithm: sha256WithRSAEncryption
ba:79:16:c3:2d:5e:93:8d:c6:a5:ff:01:de:93:2a:3e:ee:44:
ed:12:97:7d:1a:36:dd:35:68:48:7f:7d:31:9d:65:53:42:c2:
4b:54:cf:51:ce:ca:b8:6e:08:8c:63:01:a5:ac:8a:22:74:83:
c9:4b:59:b7:ed:89:b6:a9:fd:9c:08:cb:07:a0:73:6c:e2:cc:
3a:cc:4d:f3:ca:a7:2d:bc:b7:68:28:db:e6:ed:5c:83:bd:55:
57:34:3e:57:38:9a:b5:45:a4:aa:f2:40:2c:25:52:84:91:97:
92:9e:01:9d:85:c5:29:74:5b:ef:e0:bd:b8:73:9b:7d:83:ed:
19:ae:be:ca:a2:63:71:ae:ba:16:54:e7:1c:ba:24:7c:4d:cf:
52:06:e0:e6:69:ab:fa:1f:77:28:b8:b4:1f:6b:ab:5f:bc:e3:
aa:6d:bf:a2:2c:c4:f1:1c:e1:d8:36:94:70:29:ea:e0:5b:d7:
3b:e1:a8:5c:86:71:f0:c9:c8:5b:91:a3:a2:11:8d:cc:6a:9e:
ed:3d:6f:bb:93:01:d4:45:a5:95:3b:c2:1f:5e:e5:51:38:a5:
aa:c8:61:16:2b:fc:1f:7e:09:a7:ea:ac:c2:66:94:07:b7:99:
88:d8:13:c8:ba:4c:3c:50:0a:1c:4d:92:f2:a2:38:03:97:fe:
ef:98:e6:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 7 22:11:47 2026 by rpki-client