Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C01B9/895D9300DA2E11EEA0B0C4A6775412E6/B6588246689511F1AA6C5AD9CE1D38B0.roa
File: B6588246689511F1AA6C5AD9CE1D38B0.roa (raw, json)
Hash identifier: Gw42W76fdZk+NZipZsxTscdpuUV0+qJYt5/wN/ZShTo=
Subject key identifier: 8F:52:C6:E9:98:8D:78:C5:16:9B:84:C5:70:B7:9E:50:E5:9F:F9:A1
Certificate issuer: /CN=F36C01B9AF/serialNumber=E2FB6437B4C94D5F51221B1650563A48FF54BE09
Certificate serial: 0385
Authority key identifier: E2:FB:64:37:B4:C9:4D:5F:51:22:1B:16:50:56:3A:48:FF:54:BE:09
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/4vtkN7TJTV9RIhsWUFY6SP9Uvgk.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C01B9/895D9300DA2E11EEA0B0C4A6775412E6/B6588246689511F1AA6C5AD9CE1D38B0.roa
Signing time: Mon 15 Jun 2026 08:39:25 +0000
ROA not before: Mon 15 Jun 2026 08:39:20 +0000
ROA not after: Tue 15 Jun 2027 08:39:20 +0000
asID: 25543
IP address blocks: 2c0f:fd80::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C01B9/895D9300DA2E11EEA0B0C4A6775412E6/4vtkN7TJTV9RIhsWUFY6SP9Uvgk.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C01B9/895D9300DA2E11EEA0B0C4A6775412E6/4vtkN7TJTV9RIhsWUFY6SP9Uvgk.mft
rsync://rpki.afrinic.net/repository/afrinic/4vtkN7TJTV9RIhsWUFY6SP9Uvgk.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 23 Jun 2026 00:07:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 901 (0x385)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C01B9AF, serialNumber=E2FB6437B4C94D5F51221B1650563A48FF54BE09
Validity
Not Before: Jun 15 08:39:20 2026 GMT
Not After : Jun 15 08:39:20 2027 GMT
Subject: CN=6a2fba3d-393e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:23:5d:56:6b:4b:17:17:1f:15:17:20:56:c5:
38:aa:c2:cc:e1:5b:ad:80:b1:3f:f0:d8:ea:02:0c:
1a:d4:e7:30:98:4d:95:86:23:c2:a8:6d:28:c0:82:
60:54:7b:cd:48:f6:81:c7:6e:9b:38:59:71:65:06:
88:63:9f:21:47:67:1f:6e:18:5a:96:a9:9e:e5:83:
4a:59:a1:62:cc:4d:49:29:e5:01:78:b2:28:5f:94:
8d:fc:55:dc:c8:a8:89:bb:ad:f8:b8:e5:df:e0:f4:
f0:fe:0a:6a:d2:eb:8f:a0:fb:52:d4:15:3e:64:ba:
5b:1c:97:64:cd:f8:d7:cf:51:6e:38:97:bb:a2:26:
0e:28:9d:e1:2b:60:06:85:bf:8d:97:7d:c3:51:4e:
e3:70:9b:11:e5:b5:48:e2:62:cf:88:91:0c:f5:3a:
7b:a4:26:1e:93:a0:96:48:a2:25:07:11:64:c2:08:
bf:97:49:f9:17:08:d5:52:db:51:71:7b:13:ef:a2:
6e:5c:c3:a9:31:c7:29:41:49:91:4f:ce:c7:18:13:
4c:7a:d4:18:68:e4:7e:71:7c:b3:83:e0:ab:66:87:
fd:83:43:03:29:2c:cc:13:46:d1:7c:97:5e:92:86:
85:98:d5:2b:ec:af:ac:d2:ee:c6:58:11:54:ed:a8:
86:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:52:C6:E9:98:8D:78:C5:16:9B:84:C5:70:B7:9E:50:E5:9F:F9:A1
X509v3 Authority Key Identifier:
keyid:E2:FB:64:37:B4:C9:4D:5F:51:22:1B:16:50:56:3A:48:FF:54:BE:09
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C01B9/895D9300DA2E11EEA0B0C4A6775412E6/4vtkN7TJTV9RIhsWUFY6SP9Uvgk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/4vtkN7TJTV9RIhsWUFY6SP9Uvgk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C01B9/895D9300DA2E11EEA0B0C4A6775412E6/B6588246689511F1AA6C5AD9CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:fd80::/32
Signature Algorithm: sha256WithRSAEncryption
37:a5:de:df:10:90:3d:57:98:92:6d:84:43:f1:d2:3a:79:bd:
6d:b0:7f:8c:b0:73:62:c3:6e:e2:ea:f9:f4:28:da:e0:22:9e:
09:3a:b9:03:5e:22:44:3f:63:7e:ad:6c:9e:c6:e2:d9:b0:72:
ca:5c:04:c7:4a:dd:3d:93:12:08:6f:f3:ac:7e:aa:15:d0:27:
1d:6c:cf:49:de:a8:88:1d:2f:5b:13:f3:da:58:82:cb:f3:fb:
1e:30:ce:1d:05:6d:8d:a9:65:0b:b8:fd:a2:bb:0d:fc:8d:0b:
da:ed:89:1c:9c:e4:a4:d6:0a:e7:66:fc:6e:ae:fc:c2:9c:d8:
ba:e0:9d:6f:62:88:d3:1b:64:79:51:41:e9:56:e4:30:d9:1d:
da:5b:e5:c7:31:3f:62:61:eb:ee:15:e5:a9:72:06:71:62:72:
6c:c3:de:ee:fe:c2:a6:e9:b0:be:1e:d0:85:cc:aa:a0:1d:de:
d3:3b:8d:32:42:5c:dd:4f:46:03:a9:50:8a:e7:c2:75:36:c8:
c2:43:5f:cd:e9:5c:e8:ee:06:bc:d9:59:d0:6a:7d:95:35:ba:
f0:0b:8f:b5:ba:37:02:b1:57:76:a2:c3:c6:42:83:9b:ac:64:
f1:27:74:ad:eb:73:1a:9a:7c:d6:29:76:0d:d4:ee:4e:51:75:
23:a4:02:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 22 00:45:52 2026 by rpki-client