Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3668B03/6F9343B2011411F0BB17FC57762E951A/459839D618D411F1AC5BCD9ADAE4EC9C.roa
File: 459839D618D411F1AC5BCD9ADAE4EC9C.roa (raw, json)
Hash identifier: BfFfHk0YqSC5jIwTInr9vZ02QnCCqNGC6jKPrxhqZps=
Subject key identifier: 20:43:11:D4:86:56:C0:B3:1D:B5:DD:8D:D7:A7:94:92:29:BE:A9:CD
Certificate issuer: /CN=F3668B03AF/serialNumber=C0E60D828818A0C15EFF3A12049E6575597ED9AB
Certificate serial: 0175
Authority key identifier: C0:E6:0D:82:88:18:A0:C1:5E:FF:3A:12:04:9E:65:75:59:7E:D9:AB
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/wOYNgogYoMFe_zoSBJ5ldVl-2as.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3668B03/6F9343B2011411F0BB17FC57762E951A/459839D618D411F1AC5BCD9ADAE4EC9C.roa
Signing time: Thu 05 Mar 2026 20:45:41 +0000
ROA not before: Thu 05 Mar 2026 20:45:36 +0000
ROA not after: Mon 03 Dec 2035 20:45:36 +0000
asID: 22351
IP address blocks: 41.194.128.0/20 maxlen: 20
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3668B03/6F9343B2011411F0BB17FC57762E951A/wOYNgogYoMFe_zoSBJ5ldVl-2as.crl
rsync://rpki.afrinic.net/repository/member_repository/F3668B03/6F9343B2011411F0BB17FC57762E951A/wOYNgogYoMFe_zoSBJ5ldVl-2as.mft
rsync://rpki.afrinic.net/repository/afrinic/wOYNgogYoMFe_zoSBJ5ldVl-2as.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 27 Mar 2026 00:07:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 373 (0x175)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3668B03AF, serialNumber=C0E60D828818A0C15EFF3A12049E6575597ED9AB
Validity
Not Before: Mar 5 20:45:36 2026 GMT
Not After : Dec 3 20:45:36 2035 GMT
Subject: CN=69a9eb75-c459
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:7d:2d:48:81:95:5f:f6:93:56:ce:28:19:ae:
53:e1:35:31:18:9f:50:a6:25:d5:2e:9f:1a:cd:97:
22:a3:1b:40:80:79:87:ab:fb:6e:53:a4:dd:77:6d:
47:2f:89:a7:ef:40:84:08:6a:26:59:af:ce:12:e0:
36:69:2a:51:6d:f4:05:2f:4a:5c:d0:19:c2:b0:0d:
6f:7d:2a:54:74:d7:1f:f9:38:f0:b8:ac:7e:4b:35:
b7:3c:cd:ab:10:4d:0e:bc:5a:1d:65:23:d2:eb:f2:
9d:ca:9c:96:cd:5e:48:5a:a1:c4:b7:e9:98:4e:c7:
01:24:44:94:9f:8c:25:5b:10:46:1d:43:9f:e0:42:
fe:41:22:0e:fa:7c:72:8a:3b:f0:51:01:12:f8:73:
f0:72:43:60:a8:17:b9:47:b3:a5:84:75:bc:c7:06:
33:bb:24:75:ff:68:85:ed:a1:cf:14:54:aa:18:16:
b6:b1:65:cb:c3:33:2e:5f:e4:a6:84:73:81:e8:45:
e4:03:34:8c:6c:c2:97:ab:e8:45:5f:90:8e:02:00:
d6:41:cb:51:67:36:4c:4c:07:94:c9:33:07:cf:69:
da:cb:42:1d:ce:ae:c2:49:98:28:f4:4b:23:54:fb:
67:33:99:f6:51:d3:a9:8f:2a:30:c6:3e:1f:bc:87:
16:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:43:11:D4:86:56:C0:B3:1D:B5:DD:8D:D7:A7:94:92:29:BE:A9:CD
X509v3 Authority Key Identifier:
keyid:C0:E6:0D:82:88:18:A0:C1:5E:FF:3A:12:04:9E:65:75:59:7E:D9:AB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3668B03/6F9343B2011411F0BB17FC57762E951A/wOYNgogYoMFe_zoSBJ5ldVl-2as.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/wOYNgogYoMFe_zoSBJ5ldVl-2as.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3668B03/6F9343B2011411F0BB17FC57762E951A/459839D618D411F1AC5BCD9ADAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.194.128.0/20
Signature Algorithm: sha256WithRSAEncryption
73:db:11:95:5a:b5:77:14:f0:b5:5c:cf:b9:76:e2:4b:43:bd:
5e:70:28:38:3d:69:6d:77:4f:5d:ce:22:5b:6f:fb:f9:be:52:
78:b7:86:2b:d2:4d:e5:a2:18:a3:2f:f5:17:51:0f:6e:7a:b9:
65:8e:bc:85:a2:b5:5f:5b:f1:23:98:03:1e:7d:7a:43:8d:d8:
0b:0e:6c:0b:ab:28:20:b6:08:ca:bd:f4:d0:77:ee:a4:47:fd:
c1:c0:54:9e:5c:3d:33:80:0f:6e:c0:56:41:3f:8a:c2:f9:78:
57:14:0f:04:cf:23:d4:3b:5c:35:19:ba:02:5c:c3:3f:de:b9:
a1:e1:14:dc:65:8e:31:8c:a5:93:3a:53:ac:01:00:b0:df:d6:
9b:dc:14:aa:de:10:75:3a:0d:5f:b0:32:5a:3e:5d:64:84:53:
16:13:1f:61:91:ed:56:63:fe:e8:fe:db:0e:03:91:7b:c5:11:
f2:e5:a4:72:01:a2:66:2b:1b:92:ed:bd:19:bb:5f:8f:da:1b:
93:ec:d1:a1:6d:5e:f9:c5:32:74:0b:a8:2c:76:65:bd:7a:70:
47:87:bb:df:d7:85:20:a6:95:9d:7e:03:f1:ed:ab:ef:d5:7e:
19:d9:4f:df:93:86:5e:a4:a2:f4:b9:f9:b6:da:5f:9c:91:66:
10:3f:c6:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 25 08:29:17 2026 by rpki-client