Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367F26D/3F4041FC70B911E9A7F25D3FF8AEA228/2080E9B0188C11F1AB23ECE6DAE4EC9C.roa
File: 2080E9B0188C11F1AB23ECE6DAE4EC9C.roa (raw, json)
Hash identifier: 7+2h/hAR0ZH797eWYPIRfzQR4D387dc0Npd3o5pHyjg=
Subject key identifier: 4B:94:EA:97:1D:C8:D0:7C:19:5D:D6:A4:B4:CA:24:A1:FF:28:3F:CC
Certificate issuer: /CN=F367F26DRI/serialNumber=9D87B3117AA1BD7828B7DD464D73076BAE8DCC96
Certificate serial: 0A08
Authority key identifier: 9D:87:B3:11:7A:A1:BD:78:28:B7:DD:46:4D:73:07:6B:AE:8D:CC:96
Authority info access: rsync://rpki.afrinic.net/repository/ripe/nYezEXqhvXgot91GTXMHa66NzJY.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367F26D/3F4041FC70B911E9A7F25D3FF8AEA228/2080E9B0188C11F1AB23ECE6DAE4EC9C.roa
Signing time: Thu 05 Mar 2026 12:09:16 +0000
ROA not before: Thu 05 Mar 2026 12:08:32 +0000
ROA not after: Fri 01 Dec 2028 12:08:32 +0000
asID: 328366
IP address blocks: 81.26.72.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367F26D/3F4041FC70B911E9A7F25D3FF8AEA228/nYezEXqhvXgot91GTXMHa66NzJY.crl
rsync://rpki.afrinic.net/repository/member_repository/F367F26D/3F4041FC70B911E9A7F25D3FF8AEA228/nYezEXqhvXgot91GTXMHa66NzJY.mft
rsync://rpki.afrinic.net/repository/ripe/nYezEXqhvXgot91GTXMHa66NzJY.cer
rsync://rpki.afrinic.net/repository/ripe/f3rBgIl5g-Kek3wKGHgDwHJ1VUU.crl
rsync://rpki.afrinic.net/repository/ripe/f3rBgIl5g-Kek3wKGHgDwHJ1VUU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/ripe-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 15 Mar 2026 00:45:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2568 (0xa08)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367F26DRI, serialNumber=9D87B3117AA1BD7828B7DD464D73076BAE8DCC96
Validity
Not Before: Mar 5 12:08:32 2026 GMT
Not After : Dec 1 12:08:32 2028 GMT
Subject: CN=69a9726b-2533
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:ce:b7:93:21:2d:bf:d5:2e:55:3f:e4:23:9a:
b0:7b:b2:b5:56:a8:6b:8a:cd:28:5c:e4:d6:a4:49:
3e:3d:84:1b:9d:59:d9:d9:a5:2f:61:59:98:9b:22:
9c:2b:1c:a2:8a:f4:00:6d:b9:5c:ee:fe:d6:1c:3c:
7b:12:5d:44:9d:69:42:cd:04:74:19:74:4d:36:6d:
c7:b6:6e:6c:b9:40:9d:ff:46:36:d9:10:02:c6:df:
56:7f:56:08:8b:0f:f6:90:02:53:28:a3:97:3b:2a:
66:27:99:47:3e:9a:41:c8:dc:d0:f9:be:4c:85:7b:
d6:82:12:a0:2a:6d:dc:0d:bb:f3:aa:1f:6c:74:63:
28:60:1f:b4:70:db:ed:68:76:77:3e:ee:c6:89:aa:
84:fc:6b:5f:f1:a3:76:4d:50:16:51:36:ba:9e:44:
58:74:27:4f:fe:21:aa:80:48:44:d7:7d:9a:9d:75:
2d:e2:e4:b6:39:5f:5e:95:92:1b:02:1f:7c:f6:e4:
07:3f:60:cc:90:39:04:42:89:19:5c:6b:57:47:e4:
da:ae:cb:12:32:dc:c7:3a:c4:63:b6:82:ae:61:ea:
4e:f7:a4:de:86:b4:f4:0c:11:b8:7a:2c:ba:87:c1:
eb:e3:9d:63:05:16:d8:dc:fd:0d:a0:83:f0:bf:62:
a1:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:94:EA:97:1D:C8:D0:7C:19:5D:D6:A4:B4:CA:24:A1:FF:28:3F:CC
X509v3 Authority Key Identifier:
keyid:9D:87:B3:11:7A:A1:BD:78:28:B7:DD:46:4D:73:07:6B:AE:8D:CC:96
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367F26D/3F4041FC70B911E9A7F25D3FF8AEA228/nYezEXqhvXgot91GTXMHa66NzJY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/ripe/nYezEXqhvXgot91GTXMHa66NzJY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367F26D/3F4041FC70B911E9A7F25D3FF8AEA228/2080E9B0188C11F1AB23ECE6DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
81.26.72.0/21
Signature Algorithm: sha256WithRSAEncryption
9d:e6:af:f8:08:7d:86:13:98:f4:43:3a:b7:ad:91:29:8c:b1:
f1:61:aa:52:20:c8:5d:9d:0a:5e:0e:39:20:a4:02:ab:78:f1:
29:63:6d:c2:ad:8d:6c:53:92:33:64:ee:8b:f0:96:2a:10:a3:
37:20:d0:93:6a:81:f3:ad:80:dc:7f:b4:62:6d:2e:22:30:84:
1c:d1:6e:83:95:2d:88:21:0d:c4:30:82:2f:c1:fd:96:08:dc:
cc:f4:5f:d4:db:3c:d2:d9:0e:eb:42:98:7e:41:35:64:9e:6e:
de:a2:d8:7d:42:ca:9d:66:d7:e7:c3:9e:3d:b9:5d:a1:bb:b8:
26:47:d6:f2:f1:6b:35:aa:da:99:d3:9e:60:6e:9a:a2:d1:b3:
eb:04:ae:84:49:7e:10:27:90:de:48:ac:49:20:87:53:b5:87:
24:1f:de:eb:b5:f3:71:b3:d2:26:89:47:c9:b1:06:4e:ba:5d:
27:64:d8:a0:78:da:7a:80:f2:07:93:c3:4b:ee:cb:3b:70:87:
b6:30:af:92:84:2e:3f:38:d7:37:11:2d:56:b8:d4:4f:76:8d:
e4:fc:62:58:d7:88:ae:c6:0e:c2:09:ea:86:a8:c9:51:5c:b5:
d6:15:de:5e:c2:3d:64:ce:64:a3:5b:89:02:6e:5c:41:e1:de:
86:97:fd:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 13 08:47:02 2026 by rpki-client