Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F366C4C3/AE002D483E3C11F1BFDE20B0CE1D38B0/565865783EDD11F1B2D4F80CCF1D38B0.roa
File: 565865783EDD11F1B2D4F80CCF1D38B0.roa (raw, json)
Hash identifier: IUp7s3Cgg6XVcektWZxP0D8lEhaEz2t2Nni+2HSHtqM=
Subject key identifier: 0C:03:13:13:5C:B9:DA:3C:2B:E1:60:5F:82:5B:14:A8:B8:37:3E:5A
Certificate issuer: /CN=F366C4C3AF/serialNumber=335295D32E65D282FB2539B3C668F0158E8E0E5A
Certificate serial: 03
Authority key identifier: 33:52:95:D3:2E:65:D2:82:FB:25:39:B3:C6:68:F0:15:8E:8E:0E:5A
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/M1KV0y5l0oL7JTmzxmjwFY6ODlo.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F366C4C3/AE002D483E3C11F1BFDE20B0CE1D38B0/565865783EDD11F1B2D4F80CCF1D38B0.roa
Signing time: Thu 23 Apr 2026 06:26:19 +0000
ROA not before: Thu 23 Apr 2026 06:26:14 +0000
ROA not after: Sun 30 Apr 2028 06:26:14 +0000
asID: 329717
IP address blocks: 102.204.99.0/24 maxlen: 24
2c0f:4920::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F366C4C3/AE002D483E3C11F1BFDE20B0CE1D38B0/M1KV0y5l0oL7JTmzxmjwFY6ODlo.crl
rsync://rpki.afrinic.net/repository/member_repository/F366C4C3/AE002D483E3C11F1BFDE20B0CE1D38B0/M1KV0y5l0oL7JTmzxmjwFY6ODlo.mft
rsync://rpki.afrinic.net/repository/afrinic/M1KV0y5l0oL7JTmzxmjwFY6ODlo.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 09 May 2026 00:07:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3 (0x3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F366C4C3AF, serialNumber=335295D32E65D282FB2539B3C668F0158E8E0E5A
Validity
Not Before: Apr 23 06:26:14 2026 GMT
Not After : Apr 30 06:26:14 2028 GMT
Subject: CN=69e9bb8a-9849
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:7f:73:73:c6:97:8c:f6:7c:2d:1c:be:5c:d9:
90:89:8a:1f:cc:16:74:f6:12:16:37:38:fb:ce:76:
7d:07:ea:48:05:05:06:71:0e:da:a6:41:80:8e:98:
19:eb:4d:e5:bc:00:8e:5e:4c:ba:7f:1e:7c:5a:ad:
d2:e0:50:a3:b5:c0:67:0e:b0:51:3a:c3:fa:c5:fe:
8f:fd:58:e8:94:63:02:c3:e2:b3:93:1d:2a:35:f9:
e0:d5:9b:d4:8e:a3:5e:83:ac:40:41:db:26:9b:20:
b6:76:b0:92:fb:de:73:35:d9:a9:93:dd:74:bf:57:
a3:05:81:66:c1:bf:95:45:c0:09:6f:7e:28:b3:d4:
f0:66:ce:d2:97:0f:79:e0:4d:52:97:a7:9b:f7:3e:
ce:64:6f:51:df:cc:63:18:26:41:65:e7:c8:a9:b1:
27:4c:43:9e:5e:ad:e5:a9:0f:c4:c4:88:9c:e2:58:
ff:51:98:7c:62:f8:d5:2a:64:a2:42:63:72:d8:b9:
f7:4a:7b:e4:a9:25:03:41:41:e6:a1:d5:c5:d7:56:
18:25:27:9d:0f:7e:73:de:bc:78:be:0c:55:df:8d:
ac:39:9b:2e:aa:8a:2b:06:07:e7:3a:fe:47:2d:0c:
61:71:37:f9:a0:90:7c:6e:d2:db:c3:d1:18:19:c3:
68:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:03:13:13:5C:B9:DA:3C:2B:E1:60:5F:82:5B:14:A8:B8:37:3E:5A
X509v3 Authority Key Identifier:
keyid:33:52:95:D3:2E:65:D2:82:FB:25:39:B3:C6:68:F0:15:8E:8E:0E:5A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F366C4C3/AE002D483E3C11F1BFDE20B0CE1D38B0/M1KV0y5l0oL7JTmzxmjwFY6ODlo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/M1KV0y5l0oL7JTmzxmjwFY6ODlo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F366C4C3/AE002D483E3C11F1BFDE20B0CE1D38B0/565865783EDD11F1B2D4F80CCF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.204.99.0/24
IPv6:
2c0f:4920::/32
Signature Algorithm: sha256WithRSAEncryption
87:c4:9c:6b:42:b1:e7:76:48:27:11:a7:00:f6:13:c2:7c:88:
b3:56:18:c3:90:5b:71:b2:ba:ee:e8:b0:a9:29:c9:96:f6:10:
14:ee:07:c8:8f:07:c6:35:cc:4c:dd:8b:ad:34:2d:9b:b8:92:
c1:8f:ea:fd:d0:f6:82:9f:41:b5:e3:60:4e:87:91:1a:e5:ee:
60:fb:7a:b7:e8:fe:b6:a0:12:4b:83:63:1d:c9:4d:1a:cb:45:
21:22:62:b2:39:d9:46:bc:00:74:ce:4d:01:11:51:6b:74:0f:
2f:1a:07:55:0e:da:84:6f:ce:d8:35:81:36:66:eb:45:db:2b:
16:18:1c:98:8d:df:be:af:67:b9:70:14:e7:92:39:77:04:8b:
1f:da:bc:53:b7:b6:c8:64:e3:a9:0c:73:d1:07:27:56:60:37:
d1:6b:5f:20:a3:88:ae:26:50:dd:58:f5:bc:ca:0a:24:78:f4:
88:de:39:8a:57:69:5f:f3:14:93:07:7c:72:8f:fb:83:14:4d:
a8:4c:aa:ca:bc:34:26:58:f5:fe:5a:34:b2:83:91:4c:2f:4c:
57:89:5a:65:53:96:58:0e:79:e4:f4:8c:d6:1a:b2:a8:3b:58:
65:15:6d:ed:5b:ba:86:79:d4:9f:96:c9:03:cc:04:04:94:98:
78:b6:84:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 7 22:24:50 2026 by rpki-client