Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3614659/6656DE746DF811ECBCC210765A40D577/2857AB583E0F11F1BBCF171ECF1D38B0.roa
File: 2857AB583E0F11F1BBCF171ECF1D38B0.roa (raw, json)
Hash identifier: zXKX4+aphgAq7cWal19QXfuEMLB96KnGjV9AjHPPGP0=
Subject key identifier: 8B:B8:0E:49:C4:DB:BF:D8:CF:34:03:94:06:1A:CE:82:B6:DC:0B:65
Certificate issuer: /CN=F3614659AF/serialNumber=60A0E5D1AC66C8AE3B7C9E6A8EF5BC04B8BBB88E
Certificate serial: 0829
Authority key identifier: 60:A0:E5:D1:AC:66:C8:AE:3B:7C:9E:6A:8E:F5:BC:04:B8:BB:B8:8E
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/YKDl0axmyK47fJ5qjvW8BLi7uI4.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3614659/6656DE746DF811ECBCC210765A40D577/2857AB583E0F11F1BBCF171ECF1D38B0.roa
Signing time: Wed 22 Apr 2026 05:50:25 +0000
ROA not before: Wed 22 Apr 2026 05:50:20 +0000
ROA not after: Mon 22 Apr 2030 05:50:20 +0000
asID: 203905
IP address blocks: 102.215.225.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3614659/6656DE746DF811ECBCC210765A40D577/YKDl0axmyK47fJ5qjvW8BLi7uI4.crl
rsync://rpki.afrinic.net/repository/member_repository/F3614659/6656DE746DF811ECBCC210765A40D577/YKDl0axmyK47fJ5qjvW8BLi7uI4.mft
rsync://rpki.afrinic.net/repository/afrinic/YKDl0axmyK47fJ5qjvW8BLi7uI4.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 04 May 2026 02:34:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2089 (0x829)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3614659AF, serialNumber=60A0E5D1AC66C8AE3B7C9E6A8EF5BC04B8BBB88E
Validity
Not Before: Apr 22 05:50:20 2026 GMT
Not After : Apr 22 05:50:20 2030 GMT
Subject: CN=69e861a1-68cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:76:82:01:0c:24:76:d5:ed:4d:76:cf:db:66:
b0:cb:6a:ae:e0:40:65:89:4d:16:f8:97:0c:8a:f6:
71:13:f9:07:dd:58:14:d8:bb:ea:ee:d6:02:1a:c3:
49:1e:5d:4c:35:9f:e5:2e:95:b3:b1:bc:b3:89:eb:
c9:ae:26:d5:b2:0b:ac:ac:67:29:9b:4d:b5:68:c8:
9e:9c:f3:58:8c:19:66:43:45:0c:41:dc:f8:51:85:
6c:53:cc:2c:a5:fc:71:a5:1a:7e:82:89:e1:5e:02:
13:5a:9c:80:7c:1e:c2:80:08:c5:f1:6c:e4:cc:37:
91:31:43:de:39:d5:46:05:56:9b:4b:91:a5:b6:98:
5c:a5:92:3f:10:51:c7:1a:1e:a6:1d:bc:78:f3:14:
6d:00:4c:a2:bc:b1:42:b7:ce:2d:3c:db:ff:6b:af:
39:85:d1:fb:4a:a3:c6:d8:ef:80:8b:a9:26:1a:4c:
b2:c1:23:a6:08:33:1f:da:dd:3c:5e:d4:ce:54:76:
2a:d5:5c:f4:f2:ce:70:8b:31:36:34:ff:83:1c:db:
47:24:a2:42:0f:47:61:c7:4b:e3:3f:e3:8d:9e:9c:
04:64:43:89:44:fe:fe:4b:6a:91:8d:90:3d:d9:12:
88:04:b0:25:7f:57:2d:c4:5f:13:f7:a2:4c:1d:0c:
99:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:B8:0E:49:C4:DB:BF:D8:CF:34:03:94:06:1A:CE:82:B6:DC:0B:65
X509v3 Authority Key Identifier:
keyid:60:A0:E5:D1:AC:66:C8:AE:3B:7C:9E:6A:8E:F5:BC:04:B8:BB:B8:8E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3614659/6656DE746DF811ECBCC210765A40D577/YKDl0axmyK47fJ5qjvW8BLi7uI4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/YKDl0axmyK47fJ5qjvW8BLi7uI4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3614659/6656DE746DF811ECBCC210765A40D577/2857AB583E0F11F1BBCF171ECF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.215.225.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:37:df:d0:25:0c:8b:42:eb:09:46:c2:fe:ef:d8:74:32:c5:
75:bf:86:bb:95:8b:16:8a:09:85:49:95:31:30:96:bd:55:b3:
29:14:b3:73:d5:e3:b2:51:54:a2:d3:ab:65:a7:14:b3:65:a3:
11:7f:8a:f1:13:b3:1d:f2:57:68:4a:f8:82:e8:63:43:9a:fe:
b1:03:1e:51:ac:c8:c0:24:9e:a8:b6:e1:9b:29:03:8a:28:bd:
46:72:f5:61:80:a7:f4:78:6d:2b:db:f3:da:c1:34:68:df:f4:
bf:30:c0:aa:24:9f:79:e9:d9:a3:17:a8:04:de:8a:2d:95:fb:
07:4c:7e:ed:6c:aa:3c:33:a3:29:40:c8:77:93:58:f1:5f:92:
3c:6a:b5:c8:0e:0a:59:1f:03:bc:d9:43:6e:37:f3:86:b1:14:
41:21:5b:ad:10:42:a1:fc:f9:cc:a8:5a:61:d8:61:60:94:96:
45:b7:86:97:27:16:63:82:e9:18:69:e5:3f:42:0f:85:9e:21:
80:ae:4a:6e:6b:c3:36:16:b9:9b:3a:93:39:76:db:f1:9c:5d:
cc:b0:20:4f:a3:c8:6d:76:8e:b7:80:db:ea:18:d9:7c:31:a9:
ac:a0:b7:bc:42:23:0d:81:98:3d:6a:6a:08:eb:d9:07:a6:d7:
be:44:30:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 3 03:05:56 2026 by rpki-client