Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/53CF91501C4B11F1B0F5F3C0DAE4EC9C.roa
File: 53CF91501C4B11F1B0F5F3C0DAE4EC9C.roa (raw, json)
Hash identifier: tFdrIE3Dy+TnZiso1gPS5FYTOhnAIyZByU01igzsjrU=
Subject key identifier: 19:26:9C:95:3D:BC:90:10:C7:E4:77:98:35:0F:0F:A2:86:C3:6D:8F
Certificate issuer: /CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Certificate serial: 17AC
Authority key identifier: 48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/53CF91501C4B11F1B0F5F3C0DAE4EC9C.roa
Signing time: Tue 10 Mar 2026 06:35:28 +0000
ROA not before: Tue 10 Mar 2026 06:35:23 +0000
ROA not after: Fri 10 Mar 2028 06:35:23 +0000
asID: 29802
IP address blocks: 102.129.254.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.mft
rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 18 Mar 2026 01:19:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6060 (0x17ac)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C58D6AF, serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Validity
Not Before: Mar 10 06:35:23 2026 GMT
Not After : Mar 10 06:35:23 2028 GMT
Subject: CN=69afbbb0-248f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:9c:2e:34:c7:f5:26:d0:6e:58:91:c7:f9:7c:
87:6b:37:6d:4c:b2:8f:6f:12:eb:7f:48:e7:ad:08:
40:ba:3e:45:50:76:22:2e:a5:16:d5:1e:0e:91:80:
22:c2:37:9f:ac:38:d7:ca:5c:61:7c:94:2c:f2:25:
68:ed:f3:7a:b0:ca:36:8d:65:00:b5:f8:b7:7e:3f:
89:3a:49:19:32:28:4c:a4:83:d2:08:92:6f:b4:8b:
b6:f5:64:34:3b:6c:3d:df:ba:d6:19:84:71:ac:b3:
72:ed:af:e1:ed:2b:fc:97:a5:0a:38:59:af:80:ce:
b5:57:a6:61:5b:bc:39:51:9d:af:9b:e2:85:a0:5e:
a7:43:dd:10:8c:45:5e:30:92:d6:66:0b:33:f4:eb:
b7:61:b4:95:c1:62:8d:8e:42:87:c8:c3:2b:78:e2:
2a:11:8a:4c:31:9f:14:31:62:ad:54:71:5b:7a:dc:
ef:5b:4e:2b:1a:df:49:66:be:da:97:e3:ab:2d:ca:
40:71:aa:48:57:6a:c8:a6:9d:33:f5:51:86:11:49:
d2:8c:e9:85:61:f6:b9:7f:80:24:f0:1f:ab:e8:e2:
59:66:35:1f:79:09:02:43:2a:0f:49:ba:55:80:89:
7f:e3:2a:96:d8:f5:ca:15:c6:5e:4e:2a:7d:b5:32:
b6:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:26:9C:95:3D:BC:90:10:C7:E4:77:98:35:0F:0F:A2:86:C3:6D:8F
X509v3 Authority Key Identifier:
keyid:48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/53CF91501C4B11F1B0F5F3C0DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.129.254.0/24
Signature Algorithm: sha256WithRSAEncryption
c0:bc:f4:8a:35:ae:28:fb:d4:1a:3a:b8:9e:58:80:66:77:21:
f6:95:9f:34:b4:7a:c9:c9:5e:10:a9:d1:a5:e6:c0:9d:d3:41:
0c:1c:4d:2a:a2:6e:02:fc:46:49:5c:3b:7e:39:d1:34:7a:a2:
a1:38:8c:93:0a:64:99:4a:83:bf:07:fd:15:fd:4b:30:b8:5b:
e7:8f:79:51:29:1c:ef:1e:98:f0:76:3b:51:3d:f3:7f:7b:be:
ed:12:40:07:a0:fb:87:a9:3c:fb:88:b1:e2:04:f3:c2:28:99:
66:16:26:67:79:06:f7:1a:00:01:21:37:a3:b6:8e:15:d1:71:
86:50:07:4e:0d:5b:81:79:5f:65:5d:b7:24:8a:a5:c6:71:c3:
fc:4b:ab:3a:ee:86:05:15:dd:5f:61:cd:c6:d4:8b:f2:84:06:
ee:2c:33:41:27:cb:99:08:5b:db:c4:49:d0:35:f9:ab:37:a8:
14:0c:ba:1f:4b:6d:af:80:f6:87:4c:5a:be:1c:e4:f4:9d:d1:
35:2e:58:7d:90:bf:af:0d:07:8e:37:cc:c3:d8:02:99:22:59:
2b:3e:b9:c3:c1:a9:ab:b5:8f:a0:fa:ce:2c:dc:f8:2e:5d:bd:
a9:f5:33:88:48:4f:39:28:04:c2:e4:c7:2b:3e:18:8b:e1:70:
44:fb:23:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 17 02:22:05 2026 by rpki-client