Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3631F16/4A3C25F4342911F18D74331BCF1D38B0/579189BA496911F1939025C0CE1D38B0.roa
File: 579189BA496911F1939025C0CE1D38B0.roa (raw, json)
Hash identifier: 9nu+V4jDpXzggMIj8Gg2sQVf+Ps0AHWXClLk8CxZNuA=
Subject key identifier: 0F:C7:D5:5D:94:07:6A:A7:77:D9:1F:83:A4:BA:FC:F5:16:FD:1C:E5
Certificate issuer: /CN=F3631F16AF/serialNumber=8B64319BD57A10A61D49853F1BA9A266DE5A9713
Certificate serial: 20
Authority key identifier: 8B:64:31:9B:D5:7A:10:A6:1D:49:85:3F:1B:A9:A2:66:DE:5A:97:13
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/i2Qxm9V6EKYdSYU_G6miZt5alxM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3631F16/4A3C25F4342911F18D74331BCF1D38B0/579189BA496911F1939025C0CE1D38B0.roa
Signing time: Wed 06 May 2026 16:33:42 +0000
ROA not before: Wed 06 May 2026 16:33:37 +0000
ROA not after: Tue 06 May 2036 16:33:37 +0000
asID: 197769
IP address blocks: 102.220.160.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3631F16/4A3C25F4342911F18D74331BCF1D38B0/i2Qxm9V6EKYdSYU_G6miZt5alxM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3631F16/4A3C25F4342911F18D74331BCF1D38B0/i2Qxm9V6EKYdSYU_G6miZt5alxM.mft
rsync://rpki.afrinic.net/repository/afrinic/i2Qxm9V6EKYdSYU_G6miZt5alxM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 09 May 2026 00:07:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 32 (0x20)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3631F16AF, serialNumber=8B64319BD57A10A61D49853F1BA9A266DE5A9713
Validity
Not Before: May 6 16:33:37 2026 GMT
Not After : May 6 16:33:37 2036 GMT
Subject: CN=69fb6d66-cb30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:7b:eb:5f:db:22:f9:2a:78:60:aa:4d:b9:23:
e5:49:78:33:ec:e3:8b:87:9b:a5:71:f8:20:52:c2:
00:25:5b:b6:96:0a:b4:15:34:bc:6c:4e:b7:a5:09:
bc:cb:20:f9:6a:4b:5a:72:a5:38:c5:95:a9:5c:45:
6b:6c:b4:48:56:96:e2:09:ec:e3:c1:4a:3e:d2:05:
8d:bf:e8:e9:57:13:b4:75:cf:9c:9c:ca:f4:32:71:
e0:c0:50:4c:e3:d7:c3:64:28:f7:8f:05:ed:f7:e2:
8c:f4:7a:5c:25:c5:00:df:78:67:56:08:88:2f:b7:
8f:8a:1b:93:be:85:f6:b1:aa:04:ef:05:de:cf:b3:
e9:1a:6a:35:48:44:dd:f9:9e:1c:54:51:58:23:35:
fe:a4:73:d2:74:9c:4f:ad:0d:fd:e6:1b:ee:32:9f:
e9:43:d2:70:01:ad:62:1d:1b:47:d3:b7:fb:a1:79:
e5:96:8f:9f:df:fc:b4:b2:44:6a:3b:b6:d6:60:b7:
74:c8:b1:61:d6:c2:10:77:fe:fd:29:9f:ae:dc:4c:
40:b2:2e:04:85:c1:a6:06:b8:e3:63:99:72:95:ed:
7b:ed:91:15:87:b6:61:b7:81:8c:e7:4b:d6:d1:67:
5b:74:52:0c:ba:ef:1f:b3:a4:95:86:81:3a:a8:c1:
08:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:C7:D5:5D:94:07:6A:A7:77:D9:1F:83:A4:BA:FC:F5:16:FD:1C:E5
X509v3 Authority Key Identifier:
keyid:8B:64:31:9B:D5:7A:10:A6:1D:49:85:3F:1B:A9:A2:66:DE:5A:97:13
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3631F16/4A3C25F4342911F18D74331BCF1D38B0/i2Qxm9V6EKYdSYU_G6miZt5alxM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/i2Qxm9V6EKYdSYU_G6miZt5alxM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3631F16/4A3C25F4342911F18D74331BCF1D38B0/579189BA496911F1939025C0CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.220.160.0/22
Signature Algorithm: sha256WithRSAEncryption
9d:5b:39:95:d3:9a:61:e2:62:4d:8c:96:39:94:f1:3f:c8:bd:
6f:ad:e2:05:cd:53:62:ec:32:71:e5:87:20:46:86:97:d3:d4:
03:10:40:62:af:c1:50:40:ef:f7:fd:b7:65:08:03:a4:64:3e:
f6:8d:c8:94:8a:fd:1c:ef:73:b2:99:a4:89:cd:38:ad:d9:ed:
65:30:7e:78:2f:f3:89:c7:54:5b:bd:34:37:23:29:e0:9f:a7:
bc:0b:bc:2d:96:71:c3:b7:2c:25:6c:e5:75:49:29:8b:a8:66:
3a:be:0a:fc:fb:52:21:05:ca:89:db:ad:43:3d:c6:22:8c:b0:
cb:6d:35:bd:d9:3b:39:fb:78:06:30:ba:17:35:21:32:54:72:
9b:c9:2e:91:d8:37:24:cc:ea:46:d6:ce:57:34:e0:19:d5:63:
99:26:81:74:8b:05:b2:fa:ac:e0:62:d5:e4:5e:f3:83:3a:29:
b2:91:8e:bc:5d:f6:42:b5:4f:2c:e1:e0:0d:4f:8a:a8:eb:d7:
b3:b3:f6:b5:66:19:02:80:d5:7d:06:0c:06:28:79:67:68:42:
68:29:63:86:27:0b:ab:2d:ff:f0:33:aa:a3:ef:5a:83:89:75:
10:91:e6:18:4d:57:d9:48:54:9a:9d:3d:d9:4d:09:74:2c:f6:
d5:c5:09:4f
-----BEGIN CERTIFICATE-----
MIIFgjCCBGqgAwIBAgIBIDANBgkqhkiG9w0BAQsFADBIMRMwEQYDVQQDEwpGMzYz
MUYxNkFGMTEwLwYDVQQFEyg4QjY0MzE5QkQ1N0ExMEE2MUQ0OTg1M0YxQkE5QTI2
NkRFNUE5NzEzMB4XDTI2MDUwNjE2MzMzN1oXDTM2MDUwNjE2MzMzN1owGDEWMBQG
A1UEAxMNNjlmYjZkNjYtY2IzMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAM5761/bIvkqeGCqTbkj5Ul4M+zji4ebpXH4IFLCACVbtpYKtBU0vGxOt6UJ
vMsg+WpLWnKlOMWVqVxFa2y0SFaW4gns48FKPtIFjb/o6VcTtHXPnJzK9DJx4MBQ
TOPXw2Qo948F7ffijPR6XCXFAN94Z1YIiC+3j4obk76F9rGqBO8F3s+z6RpqNUhE
3fmeHFRRWCM1/qRz0nScT60N/eYb7jKf6UPScAGtYh0bR9O3+6F55ZaPn9/8tLJE
aju21mC3dMixYdbCEHf+/SmfrtxMQLIuBIXBpga442OZcpXte+2RFYe2YbeBjOdL
1tFnW3RSDLrvH7OklYaBOqjBCPECAwEAAaOCAqUwggKhMB0GA1UdDgQWBBQPx9Vd
lAdqp3fZH4Okuvz1Fv0c5TAfBgNVHSMEGDAWgBSLZDGb1XoQph1JhT8bqaJm3lqX
EzAOBgNVHQ8BAf8EBAMCB4AwgZUGA1UdHwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2MzFGMTYvNEEzQzI1RjQzNDI5MTFGMThENzQzMzFCQ0YxRDM4QjAvaTJReG05
VjZFS1lkU1lVX0c2bWladDVhbHhNLmNybDBnBggrBgEFBQcBAQRbMFkwVwYIKwYB
BQUHMAKGS3JzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L2Fmcmlu
aWMvaTJReG05VjZFS1lkU1lVX0c2bWladDVhbHhNLmNlcjBPBgNVHSABAf8ERTBD
MEEGCCsGAQUFBw4CMDUwMwYIKwYBBQUHAgEWJ2h0dHBzOi8vcnBraS5hZnJpbmlj
Lm5ldC9wb2xpY3kvQ1BTLnBkZjCB2wYIKwYBBQUHAQsEgc4wgcswgZEGCCsGAQUF
BzALhoGEcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVy
X3JlcG9zaXRvcnkvRjM2MzFGMTYvNEEzQzI1RjQzNDI5MTFGMThENzQzMzFCQ0Yx
RDM4QjAvNTc5MTg5QkE0OTY5MTFGMTkzOTAyNUMwQ0UxRDM4QjAucm9hMDUGCCsG
AQUFBzANhilodHRwczovL3JyZHAuYWZyaW5pYy5uZXQvbm90aWZpY2F0aW9uLnht
bDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmbcoDANBgkqhkiG9w0BAQsF
AAOCAQEAnVs5ldOaYeJiTYyWOZTxP8i9b63iBc1TYuwyceWHIEaGl9PUAxBAYq/B
UEDv9/23ZQgDpGQ+9o3IlIr9HO9zspmkic04rdntZTB+eC/zicdUW700NyMp4J+n
vAu8LZZxw7csJWzldUkpi6hmOr4K/PtSIQXKidutQz3GIoywy201vdk7Oft4BjC6
FzUhMlRym8kukdg3JMzqRtbOVzTgGdVjmSaBdIsFsvqs4GLV5F7zgzopspGOvF32
QrVPLOHgDU+KqOvXs7P2tWYZAoDVfQYMBih5Z2hCaCljhicLqy3/8DOqo+9ag4l1
EJHmGE1X2UhUmp092U0JdCz21cUJTw==
-----END CERTIFICATE-----
Generated at Thu May 7 22:27:32 2026 by rpki-client