Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3617560/30C4542CF25911EC90D029C2F1222468/0F017D1260AD11F1B5A1E2CDCE1D38B0.roa
File: 0F017D1260AD11F1B5A1E2CDCE1D38B0.roa (raw, json)
Hash identifier: eS18DiySWyYvUU6o4IL9+Uz5q6U7DX44S61JdbmHeq0=
Subject key identifier: A0:25:6B:45:2E:A1:DE:F4:4A:DE:B8:34:22:47:04:C2:04:C7:45:FC
Certificate issuer: /CN=F3617560AF/serialNumber=559608F1905C17B2C1EB888134CC383C8FD4EEF4
Certificate serial: 05D7
Authority key identifier: 55:96:08:F1:90:5C:17:B2:C1:EB:88:81:34:CC:38:3C:8F:D4:EE:F4
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/VZYI8ZBcF7LB64iBNMw4PI_U7vQ.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3617560/30C4542CF25911EC90D029C2F1222468/0F017D1260AD11F1B5A1E2CDCE1D38B0.roa
Signing time: Fri 05 Jun 2026 07:06:22 +0000
ROA not before: Fri 05 Jun 2026 07:06:17 +0000
ROA not after: Wed 31 Dec 2042 07:06:17 +0000
asID: 4755
IP address blocks: 41.136.0.0/16 maxlen: 24
41.212.128.0/17 maxlen: 24
196.27.64.0/19 maxlen: 24
196.192.96.0/20 maxlen: 24
197.224.0.0/14 maxlen: 24
2001:4290::/32 maxlen: 64
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3617560/30C4542CF25911EC90D029C2F1222468/VZYI8ZBcF7LB64iBNMw4PI_U7vQ.crl
rsync://rpki.afrinic.net/repository/member_repository/F3617560/30C4542CF25911EC90D029C2F1222468/VZYI8ZBcF7LB64iBNMw4PI_U7vQ.mft
rsync://rpki.afrinic.net/repository/afrinic/VZYI8ZBcF7LB64iBNMw4PI_U7vQ.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 08 Jun 2026 00:08:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1495 (0x5d7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3617560AF, serialNumber=559608F1905C17B2C1EB888134CC383C8FD4EEF4
Validity
Not Before: Jun 5 07:06:17 2026 GMT
Not After : Dec 31 07:06:17 2042 GMT
Subject: CN=6a22756e-dc90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:07:37:0e:f2:81:ed:78:12:1e:6d:de:8e:70:
99:76:93:d2:fc:da:7e:4d:97:56:88:c1:9a:21:21:
13:cd:f7:47:24:66:09:d4:3e:60:b7:54:36:b5:ee:
8a:da:5c:e5:3e:be:52:01:72:1a:c9:7a:f4:0f:31:
37:0c:45:18:a1:47:a8:b9:86:56:3c:5e:9d:db:12:
29:f5:90:40:42:a0:e2:7b:bb:43:44:2a:17:47:39:
21:ca:d0:c1:82:c5:5e:12:a8:42:73:f6:09:67:f3:
04:e9:40:3b:4e:b2:da:3d:d1:d9:c4:99:4a:75:b0:
56:71:be:f4:5f:7a:51:d2:31:11:c7:b1:bb:30:0a:
39:92:bd:04:e5:ca:c8:65:cb:64:d5:03:8b:b8:ec:
79:1e:b9:df:86:34:bf:f7:4d:c0:dd:d1:7a:49:32:
5c:a6:0e:fd:18:a9:6c:b2:ab:fd:76:f9:fd:f1:de:
15:ba:01:cd:10:fc:33:97:11:68:bc:72:a0:2a:15:
ce:bb:f5:68:1f:0e:aa:e2:ec:7a:f0:62:b5:3b:91:
0c:01:fe:23:64:2d:c5:e1:d0:51:76:97:a3:cd:0d:
44:73:4f:90:57:02:9f:0e:19:8c:ec:2f:84:09:3e:
fe:48:8a:49:6c:8c:46:fa:82:b5:90:d1:15:d0:22:
82:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:25:6B:45:2E:A1:DE:F4:4A:DE:B8:34:22:47:04:C2:04:C7:45:FC
X509v3 Authority Key Identifier:
keyid:55:96:08:F1:90:5C:17:B2:C1:EB:88:81:34:CC:38:3C:8F:D4:EE:F4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3617560/30C4542CF25911EC90D029C2F1222468/VZYI8ZBcF7LB64iBNMw4PI_U7vQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/VZYI8ZBcF7LB64iBNMw4PI_U7vQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3617560/30C4542CF25911EC90D029C2F1222468/0F017D1260AD11F1B5A1E2CDCE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.136.0.0/16
41.212.128.0/17
196.27.64.0/19
196.192.96.0/20
197.224.0.0/14
IPv6:
2001:4290::/32
Signature Algorithm: sha256WithRSAEncryption
54:c0:37:3a:6e:c9:e0:ed:73:36:81:89:48:00:47:ff:12:c1:
5a:7b:70:15:58:ea:bc:f2:0f:d8:0e:44:c7:ee:74:9c:f1:1b:
f9:8d:15:c4:79:c5:2e:65:a5:34:18:c8:25:a1:b5:85:92:f4:
ed:3a:87:91:9e:50:a7:b4:1a:dd:ba:4f:68:ac:e8:eb:26:99:
fc:7c:35:ca:23:56:88:40:78:11:81:7a:e8:94:52:41:bd:a4:
56:79:2b:29:75:88:0e:9b:a8:83:bd:f9:78:d5:bb:62:de:5a:
48:12:a7:84:ad:2c:a9:07:5c:19:6a:3a:a1:d0:76:27:1f:ee:
c8:5d:a7:49:72:ae:58:b4:a9:4a:7f:09:aa:26:fb:35:b2:07:
c7:24:f0:af:1c:3f:f6:c7:b9:66:d3:f6:8d:14:da:e7:70:6a:
1d:ee:07:ba:4e:cb:08:00:3f:fa:be:4e:7a:55:c7:39:3f:ad:
ad:c4:30:b4:89:6a:d5:1f:b2:c4:9c:e3:16:a3:10:f0:40:1f:
a9:f1:d2:c9:13:50:1f:07:01:73:15:01:7e:44:c4:91:33:b1:
76:91:ad:1f:9e:b1:e7:5f:58:e0:c1:4e:b2:a2:0e:31:84:c2:
07:d0:7a:5d:44:fa:47:f7:b1:c7:c5:35:e0:5d:78:fb:63:39:
2d:ee:a8:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 6 08:21:31 2026 by rpki-client