Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/9A83110459BC11F1A2AFC51DCF1D38B0.roa
File: 9A83110459BC11F1A2AFC51DCF1D38B0.roa (raw, json)
Hash identifier: jfqx15azi8BBckAMv++hzznbjFOl+JfVW5IcDy53bwM=
Subject key identifier: 54:F9:B6:14:E0:B7:64:40:0C:5D:E5:57:BF:49:13:AF:B3:00:D7:F2
Certificate issuer: /CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Certificate serial: 18AF
Authority key identifier: 48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/9A83110459BC11F1A2AFC51DCF1D38B0.roa
Signing time: Wed 27 May 2026 11:10:01 +0000
ROA not before: Wed 27 May 2026 11:09:56 +0000
ROA not after: Sat 27 May 2028 11:09:56 +0000
asID: 213476
IP address blocks: 102.129.250.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.mft
rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 29 May 2026 00:07:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6319 (0x18af)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C58D6AF, serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Validity
Not Before: May 27 11:09:56 2026 GMT
Not After : May 27 11:09:56 2028 GMT
Subject: CN=6a16d109-6ffb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:33:c7:68:2c:f2:e8:36:d3:15:22:1f:5b:81:
bf:1c:2b:d0:f3:4d:8c:c6:c7:c8:29:e7:26:71:ca:
51:e5:d2:b3:20:d7:1b:a4:7e:9e:6d:f1:ce:e5:2d:
df:a5:f3:d7:d7:e2:e0:b7:e7:2c:fd:46:b6:33:61:
32:f2:e1:d6:9c:1a:24:e7:a4:6d:ed:3e:86:5d:1d:
76:8c:4c:cd:6a:72:1a:cb:32:9a:06:da:82:19:0a:
34:53:ce:65:3e:07:a6:c0:72:2a:c2:77:26:60:fc:
53:57:22:9d:f2:53:f2:42:cc:d2:9a:b6:b5:95:70:
9f:90:06:24:e2:0c:79:83:a8:42:94:08:2b:a6:78:
6a:2d:04:72:ff:b8:da:fb:59:d7:e4:36:20:97:87:
e7:2f:1e:5a:b5:51:be:da:bf:26:de:91:14:dc:9e:
44:f1:5a:39:19:f7:89:f0:0b:6e:ba:d3:79:17:4b:
b0:a9:7c:fe:9a:0c:a7:3b:66:8a:d8:8a:a6:84:7f:
ab:25:f4:d0:25:41:f4:30:39:46:16:84:0c:0a:f7:
07:cc:ad:3e:6d:ad:78:83:64:91:76:e2:63:00:d9:
01:c9:e3:1b:a2:9a:ab:28:49:74:36:40:33:af:8d:
63:51:2e:9f:2b:67:34:3c:65:97:9e:f5:dc:06:91:
6d:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:F9:B6:14:E0:B7:64:40:0C:5D:E5:57:BF:49:13:AF:B3:00:D7:F2
X509v3 Authority Key Identifier:
keyid:48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/9A83110459BC11F1A2AFC51DCF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.129.250.0/24
Signature Algorithm: sha256WithRSAEncryption
86:d2:9e:45:43:c4:99:7c:37:80:28:85:10:13:c8:69:87:b9:
af:89:5b:c8:9e:a8:7c:aa:99:ec:38:15:ad:d4:c7:3f:e2:32:
96:33:29:00:59:36:85:eb:7a:d6:0d:0a:2c:51:3e:1d:d5:10:
c1:e2:d5:93:91:ef:d6:b7:29:6b:5a:bd:66:94:21:25:ce:2f:
de:ff:e2:09:b7:f7:cc:47:a4:f3:c8:ba:0f:ed:d8:c0:df:b6:
87:46:78:fe:9e:cb:df:ec:f0:9f:78:7f:6d:ad:a0:ef:9c:45:
f0:cd:d4:9a:4e:ff:c7:62:60:f8:72:cd:fa:4f:b6:4a:bd:28:
c2:08:f6:44:c4:71:4d:13:e8:b6:37:87:25:08:66:14:f6:f2:
bd:35:34:62:d4:ac:14:fa:9f:29:54:d3:e6:a5:1d:8c:92:b7:
b1:8b:3e:99:2a:ee:e4:64:18:73:5f:1e:cf:56:77:e1:2d:f3:
77:6a:b7:e5:85:13:b2:29:dc:c4:62:81:5e:3f:06:f9:03:9a:
fe:c5:c0:5c:47:a6:ce:f3:d7:16:96:4e:ff:79:a9:31:64:74:
94:e0:b5:15:4f:e5:84:a4:be:8e:f9:dd:5d:e3:1e:73:95:de:
31:34:73:b5:b6:77:97:b0:9d:18:b3:25:57:40:6a:44:4a:65:
31:6a:2c:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 27 18:29:22 2026 by rpki-client