Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/69B7B09E2C2011F197D271D5DAE4EC9C.roa
File: 69B7B09E2C2011F197D271D5DAE4EC9C.roa (raw, json)
Hash identifier: 4feU0LHQmwbI0qxcJFJ5B3PqmhqTPHkMeKrpfVkOdkU=
Subject key identifier: C8:AE:1D:E6:77:9D:99:33:6C:D7:E5:C0:D2:36:F2:61:60:AA:5B:10
Certificate issuer: /CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Certificate serial: 17E9
Authority key identifier: 48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/69B7B09E2C2011F197D271D5DAE4EC9C.roa
Signing time: Mon 30 Mar 2026 10:08:35 +0000
ROA not before: Mon 30 Mar 2026 10:08:30 +0000
ROA not after: Thu 30 Mar 2028 10:08:30 +0000
asID: 200017
IP address blocks: 102.129.133.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.mft
rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 09 Apr 2026 01:19:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6121 (0x17e9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C58D6AF, serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Validity
Not Before: Mar 30 10:08:30 2026 GMT
Not After : Mar 30 10:08:30 2028 GMT
Subject: CN=69ca4ba3-18a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:2b:39:f8:2a:33:f7:69:c1:db:30:b9:ca:c8:
36:eb:38:e4:6d:73:62:56:1b:25:25:e4:5a:db:8d:
21:96:36:8e:f1:81:09:4b:9c:49:62:4b:22:fc:09:
54:bc:a0:f0:47:8f:38:77:76:4d:40:99:11:25:07:
95:b9:54:2d:33:2f:f7:10:4a:9c:f4:ab:f2:34:a3:
42:2a:aa:f9:72:32:1f:3f:61:0e:3c:42:c2:63:b8:
72:76:a6:a8:5f:b4:2b:32:32:12:2c:c9:47:4e:32:
24:aa:41:d8:6b:46:55:25:cd:03:d7:aa:06:4c:49:
c1:96:a3:0b:8c:f2:5e:0c:ba:99:65:ba:fc:2d:54:
e1:82:0f:4a:98:5c:a8:93:77:f6:c3:38:5f:b0:4c:
ba:23:df:1e:61:48:05:c4:5d:62:20:36:25:51:b6:
f2:80:56:62:7a:50:56:34:cd:1a:4b:14:df:90:ab:
d0:de:b5:8f:ad:a2:95:ff:00:21:04:2d:de:27:09:
30:7a:cb:6c:5e:e9:1c:ba:d0:1f:08:06:e3:ee:64:
ec:ab:5c:bc:04:61:df:35:6d:f4:7b:64:47:79:f8:
ac:bf:b2:a4:30:e0:19:90:1e:3e:d1:4d:23:63:0c:
17:0f:d0:ad:68:39:b8:d6:5c:2b:39:ce:cc:24:8d:
7f:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:AE:1D:E6:77:9D:99:33:6C:D7:E5:C0:D2:36:F2:61:60:AA:5B:10
X509v3 Authority Key Identifier:
keyid:48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/69B7B09E2C2011F197D271D5DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.129.133.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:11:7d:cf:1b:ca:0d:66:f0:37:cd:16:48:74:57:e2:84:3e:
d7:f8:ca:1a:9f:b9:5a:2c:7b:e0:b3:6f:f2:e3:db:3c:f9:91:
f0:ce:57:f4:8c:1e:3a:d0:7e:67:6e:21:97:7e:c8:a6:d1:48:
96:08:47:c0:60:0d:38:67:3a:b5:2b:9f:ae:98:37:2b:59:3b:
a3:1c:38:ff:42:02:e8:75:f1:a8:b6:ab:02:6e:42:b1:1e:cd:
c5:9c:15:6a:33:33:a8:62:a6:1b:24:48:09:2f:e0:05:b8:d9:
1b:a1:eb:0f:63:73:f6:07:68:c7:63:1f:66:0b:e8:d0:21:c5:
38:da:fb:da:89:b6:ca:73:6b:65:57:f4:42:64:cc:a4:1f:69:
b0:64:21:b5:56:88:fb:c3:3f:b2:99:6f:dd:c0:5f:7a:40:7c:
93:ed:69:57:72:bb:5f:94:2f:65:a4:b3:85:42:53:63:9e:ed:
a1:a7:29:86:76:8d:16:dd:69:5b:19:61:67:b2:38:92:e7:94:
bf:ad:ec:27:02:90:c7:c6:5c:7c:f2:75:3c:19:8e:14:91:77:
82:57:c7:28:2c:b2:6d:79:07:38:0f:78:6f:5f:5e:29:12:c9:
e7:db:a7:5e:44:87:f3:33:c2:c2:09:29:b9:e9:e6:42:2f:3e:
dd:e2:33:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 7 13:13:03 2026 by rpki-client