Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/354FC85E23F211F190A416D6DAE4EC9C.roa
File: 354FC85E23F211F190A416D6DAE4EC9C.roa (raw, json)
Hash identifier: z7jbP1aa8NcXMtIwflwtJp6RP6L2hThDedbJEggF/30=
Subject key identifier: A3:33:C9:63:3B:93:1E:96:37:C2:C4:95:02:42:57:86:CF:A7:97:19
Certificate issuer: /CN=F363BA19AF/serialNumber=6AEA24B099C32B22E4E48BB9F26CF578BEF6BFF3
Certificate serial: 10AC
Authority key identifier: 6A:EA:24:B0:99:C3:2B:22:E4:E4:8B:B9:F2:6C:F5:78:BE:F6:BF:F3
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/354FC85E23F211F190A416D6DAE4EC9C.roa
Signing time: Fri 20 Mar 2026 00:17:41 +0000
ROA not before: Fri 20 Mar 2026 00:00:35 +0000
ROA not after: Wed 31 Mar 2027 00:00:35 +0000
asID: 208185
IP address blocks: 102.135.80.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.crl
rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.mft
rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 23 Mar 2026 00:06:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4268 (0x10ac)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363BA19AF, serialNumber=6AEA24B099C32B22E4E48BB9F26CF578BEF6BFF3
Validity
Not Before: Mar 20 00:00:35 2026 GMT
Not After : Mar 31 00:00:35 2027 GMT
Subject: CN=69bc9225-b9fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:8a:b0:8b:01:b0:f5:54:93:38:1f:4f:7d:c7:
49:7e:52:29:09:f6:1d:d5:28:af:61:26:c5:ac:3f:
2a:5b:8a:92:8b:04:20:cd:e5:45:c4:3c:23:4a:07:
fb:bd:6f:9f:22:96:97:40:37:01:42:13:c2:c1:b5:
fa:2b:eb:34:e8:fa:68:e3:b8:b8:a9:ac:28:b3:cc:
91:a4:6d:7b:93:37:74:1b:23:8c:d0:3e:52:59:2d:
6f:db:c9:5f:9b:1f:62:5b:2d:84:7e:68:d4:31:74:
c1:aa:6a:00:c8:de:fe:71:2d:70:2f:9a:e2:1a:b6:
ea:d2:9d:1b:a8:07:06:fd:4b:33:f9:8b:69:c7:a3:
ab:58:b7:a9:b4:0f:67:7f:18:44:31:ca:ad:8a:bc:
b9:84:d7:4d:15:1d:14:da:ca:63:a6:cf:a0:57:f9:
13:9f:ba:1b:cc:70:fe:e2:49:0d:c3:99:e6:c2:f6:
7d:ae:68:b5:0d:76:71:70:af:c9:34:7a:3a:b7:24:
de:f0:0a:9e:04:64:e1:cb:93:3a:26:ec:a1:c3:ef:
55:a5:51:c7:f4:fc:84:fe:22:5e:cf:7b:d0:fc:d6:
f6:30:13:72:ea:d8:7b:55:36:76:9f:43:7b:c3:dc:
fc:d3:36:ff:b8:29:a2:a1:b1:46:50:dc:8d:20:33:
86:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:33:C9:63:3B:93:1E:96:37:C2:C4:95:02:42:57:86:CF:A7:97:19
X509v3 Authority Key Identifier:
keyid:6A:EA:24:B0:99:C3:2B:22:E4:E4:8B:B9:F2:6C:F5:78:BE:F6:BF:F3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/354FC85E23F211F190A416D6DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.135.80.0/24
Signature Algorithm: sha256WithRSAEncryption
b8:52:86:ed:2b:a9:5c:0f:a0:6c:71:28:98:a2:e3:79:c5:3e:
51:1d:9e:33:cf:4c:92:8a:3d:80:2d:d6:7a:3b:fc:3d:c9:0a:
ea:d7:c1:85:84:03:a2:f9:15:f6:0e:a4:2d:bb:f0:8a:6a:2f:
13:4b:98:0c:dc:80:df:00:4f:f5:f8:bf:ad:b0:8d:09:4c:25:
fc:7c:71:d2:8a:93:90:e0:fa:ba:cf:d4:9c:13:d6:fe:0f:bf:
db:5d:40:9d:4c:d6:60:e5:ac:c8:3d:52:35:b4:a7:a0:17:85:
ea:d5:9e:9b:24:01:f4:e8:a6:d7:ef:6f:ad:47:e5:f4:9f:ec:
2a:ff:d4:6f:a5:0c:ca:e4:2a:5e:6a:c0:f3:91:4f:46:7d:10:
26:6a:e8:5d:54:f2:e9:c3:01:65:bc:f7:08:a7:ba:18:38:65:
1d:5e:b8:c6:d3:2d:45:82:43:d2:5e:34:67:7e:bb:cf:ad:17:
0a:b6:e5:ac:18:d8:54:41:55:83:bd:6c:0e:80:33:ff:90:42:
23:47:1b:0e:36:83:b4:72:03:ba:f5:8a:a4:d1:d0:f2:a9:57:
b0:15:be:df:78:8d:fb:2b:2c:70:fd:13:05:e5:0d:10:55:60:
26:30:e0:97:bb:ee:4f:8b:3e:c8:55:00:90:22:ac:5e:d3:c9:
bb:06:41:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 21 12:17:10 2026 by rpki-client