Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/353748921C4F11F1ADD57AD6DAE4EC9C.roa
File: 353748921C4F11F1ADD57AD6DAE4EC9C.roa (raw, json)
Hash identifier: xnQ2hT7MpWCY0RmpPMOVKrxAWU4Jp+40vMopZwdqJnY=
Subject key identifier: 76:54:79:CA:54:C1:BC:5B:66:47:48:DA:32:E5:28:93:08:5C:D8:40
Certificate issuer: /CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Certificate serial: 17BC
Authority key identifier: 48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/353748921C4F11F1ADD57AD6DAE4EC9C.roa
Signing time: Tue 10 Mar 2026 07:03:15 +0000
ROA not before: Tue 10 Mar 2026 07:03:10 +0000
ROA not after: Fri 10 Mar 2028 07:03:10 +0000
asID: 29802
IP address blocks: 102.165.60.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.mft
rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 18 Mar 2026 01:19:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6076 (0x17bc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C58D6AF, serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Validity
Not Before: Mar 10 07:03:10 2026 GMT
Not After : Mar 10 07:03:10 2028 GMT
Subject: CN=69afc233-19ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:25:6a:19:79:0d:4e:bb:31:fa:0c:77:ce:bb:
ce:aa:0a:b8:56:d3:c3:d6:17:81:77:f9:37:24:6e:
72:52:18:b5:af:f2:ce:96:6f:ff:f7:f9:c4:43:b7:
6c:b3:11:df:5e:41:4e:8a:37:8a:08:69:02:b7:a7:
11:04:84:e8:23:85:f0:6e:bc:96:cf:56:d5:b9:fa:
15:cd:99:d0:18:4e:d5:ab:5d:05:2b:4c:00:b7:e0:
f1:2e:43:a5:cb:c8:ef:c2:fa:e9:5e:9d:22:ee:db:
bf:4a:09:4b:2c:4d:6b:f0:20:d8:73:18:bd:3d:06:
44:f7:2e:6f:db:83:29:f5:75:b7:21:59:7f:4a:e2:
9f:cf:43:6c:a3:e7:95:61:f2:a2:a2:65:2b:ce:2e:
17:4e:98:ae:0b:d0:79:17:6b:13:7e:2e:5d:91:7f:
1a:4a:db:52:59:9f:de:7c:46:82:8b:3b:8e:1d:bc:
2c:9d:a5:b3:d2:4c:a2:f9:3f:0f:74:15:30:d1:cf:
3b:7e:fd:34:f2:9e:50:80:98:a8:24:8c:30:bb:95:
48:f4:f9:a4:ec:5a:a1:45:46:c0:17:88:8b:c3:f5:
c3:99:99:9b:aa:9c:ef:70:19:19:23:1a:2c:47:91:
c5:bf:25:72:af:11:b3:96:11:96:61:31:bf:cb:99:
70:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:54:79:CA:54:C1:BC:5B:66:47:48:DA:32:E5:28:93:08:5C:D8:40
X509v3 Authority Key Identifier:
keyid:48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/353748921C4F11F1ADD57AD6DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.165.60.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:8c:1f:32:a3:64:c7:45:be:92:12:50:d9:e4:f5:bc:58:ae:
f2:15:9e:80:6f:aa:d3:0a:0a:df:38:16:cf:0e:67:4c:b8:b7:
28:59:a8:3a:51:ec:58:37:dc:e2:5d:44:94:da:8e:5e:56:76:
54:5b:5a:2e:28:96:93:bc:07:4e:df:98:b2:55:45:34:ce:34:
4e:95:37:f2:d3:af:87:29:04:f5:a5:07:d8:0d:ce:d3:80:23:
4e:38:5a:f8:af:0a:9b:52:6f:9c:1c:62:73:d5:03:ad:8f:eb:
2b:f0:93:0b:cd:9c:9d:74:b0:01:75:84:fa:12:6e:ae:d8:1a:
82:03:26:61:c1:e0:5e:1b:26:2f:dd:52:91:e1:b0:76:2e:08:
2d:ad:a9:f0:da:46:92:23:58:99:aa:2c:d7:12:41:be:7c:a1:
2e:65:8c:64:5b:fb:db:1c:b4:36:cb:71:14:c5:25:3e:ff:12:
af:1c:1d:0c:6d:2d:45:71:25:6b:d9:78:1f:91:56:8a:7c:55:
62:61:6b:f4:5c:b9:56:34:8b:60:16:d7:e6:88:f2:fd:78:e2:
12:1d:37:60:11:9d:df:58:f5:66:41:ee:a1:9f:a4:8e:a5:a6:
79:9c:ad:05:47:03:50:34:98:7b:3e:5f:f7:b9:bb:f1:20:f0:
35:12:6a:12
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICF7wwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
QzU4RDZBRjExMC8GA1UEBRMoNDhBMkYyQzRBQTRBRUEzOUJFNDZCRkU1Rjk5Qzky
NjI5QkJFRDhGQzAeFw0yNjAzMTAwNzAzMTBaFw0yODAzMTAwNzAzMTBaMBgxFjAU
BgNVBAMTDTY5YWZjMjMzLTE5YWMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQCtJWoZeQ1OuzH6DHfOu86qCrhW08PWF4F3+TckbnJSGLWv8s6Wb//3+cRD
t2yzEd9eQU6KN4oIaQK3pxEEhOgjhfBuvJbPVtW5+hXNmdAYTtWrXQUrTAC34PEu
Q6XLyO/C+ulenSLu279KCUssTWvwINhzGL09BkT3Lm/bgyn1dbchWX9K4p/PQ2yj
55Vh8qKiZSvOLhdOmK4L0HkXaxN+Ll2RfxpK21JZn958RoKLO44dvCydpbPSTKL5
Pw90FTDRzzt+/TTynlCAmKgkjDC7lUj0+aTsWqFFRsAXiIvD9cOZmZuqnO9wGRkj
GixHkcW/JXKvEbOWEZZhMb/LmXCHAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUdlR5
ylTBvFtmR0jaMuUokwhc2EAwHwYDVR0jBBgwFoAUSKLyxKpK6jm+Rr/l+ZySYpu+
2PwwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNkM1OEQ2L0Q2OUE0REZFNzMxNjExRTk5MTMzMDM3Q0Y4QUVBMjI4L1NLTHl4
S3BLNmptLVJyX2wtWnlTWXB1LTJQdy5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL1NLTHl4S3BLNmptLVJyX2wtWnlTWXB1LTJQdy5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNkM1OEQ2L0Q2OUE0REZFNzMxNjExRTk5MTMzMDM3Q0Y4
QUVBMjI4LzM1Mzc0ODkyMUM0RjExRjFBREQ1N0FENkRBRTRFQzlDLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABmpTwwDQYJKoZIhvcNAQEL
BQADggEBAAyMHzKjZMdFvpISUNnk9bxYrvIVnoBvqtMKCt84Fs8OZ0y4tyhZqDpR
7Fg33OJdRJTajl5WdlRbWi4olpO8B07fmLJVRTTONE6VN/LTr4cpBPWlB9gNztOA
I044WvivCptSb5wcYnPVA62P6yvwkwvNnJ10sAF1hPoSbq7YGoIDJmHB4F4bJi/d
UpHhsHYuCC2tqfDaRpIjWJmqLNcSQb58oS5ljGRb+9sctDbLcRTFJT7/Eq8cHQxt
LUVxJWvZeB+RVop8VWJha/RcuVY0i2AW1+aI8v144hIdN2ARnd9Y9WZB7qGfpI6l
pnmcrQVHA1A0mHs+X/e5u/Eg8DUSahI=
-----END CERTIFICATE-----
Generated at Tue Mar 17 02:22:05 2026 by rpki-client