Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/AF4FB9546EF511F1833692DFCE1D38B0.roa
File: AF4FB9546EF511F1833692DFCE1D38B0.roa (raw, json)
Hash identifier: F3tcagjF1LQTjG4m/igjwKQmAiqYVIyqf3B1BRwQDMQ=
Subject key identifier: C3:0A:33:AF:8E:15:03:FD:02:EC:F5:49:AC:71:59:83:7E:F1:22:E2
Certificate issuer: /CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Certificate serial: 1920
Authority key identifier: 48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/AF4FB9546EF511F1833692DFCE1D38B0.roa
Signing time: Tue 23 Jun 2026 11:21:31 +0000
ROA not before: Tue 23 Jun 2026 11:21:27 +0000
ROA not after: Fri 23 Jun 2028 11:21:27 +0000
asID: 212384
IP address blocks: 196.251.249.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.mft
rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 25 Jun 2026 11:21:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6432 (0x1920)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C58D6AF, serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Validity
Not Before: Jun 23 11:21:27 2026 GMT
Not After : Jun 23 11:21:27 2028 GMT
Subject: CN=6a3a6c3b-d400
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:ff:70:b7:ad:ad:ff:7f:4f:d1:e4:0a:c2:6a:
a4:ed:5c:d0:9d:ba:08:73:85:b9:cb:05:4a:64:b4:
f0:4a:b6:94:c4:5b:64:1e:71:b1:6b:9c:c6:b8:93:
20:85:bb:e0:6f:71:94:b9:18:9c:79:cc:92:a8:a3:
c4:cd:5a:24:7e:3b:77:08:f3:9c:c9:64:22:a3:24:
39:a4:f0:08:6c:be:8d:9c:64:2d:77:ae:81:ef:42:
da:be:b2:55:3f:c7:27:a0:95:75:5b:ee:90:6b:37:
cb:08:ea:61:69:88:74:54:0f:2c:d1:b2:3c:2d:b9:
e6:b8:6b:5f:ee:fa:74:df:7d:f4:a2:d8:46:b3:dd:
cc:fe:2b:09:e5:07:84:31:a3:ce:9c:f3:62:e2:c7:
16:84:1b:e8:48:1e:59:58:ef:fa:34:16:3d:24:f2:
4e:7e:2a:76:90:ac:b1:af:a1:28:2c:62:e6:ad:56:
30:9d:7f:7b:2e:e4:14:9c:77:65:65:c2:e3:02:e4:
0f:91:5d:00:76:bc:da:27:77:bd:33:9b:67:16:65:
c1:1a:43:c9:e1:e2:e6:3c:17:41:9b:82:6a:e5:33:
dc:91:fa:7f:af:2d:75:77:ad:61:3f:76:0a:27:b2:
39:a1:f1:ff:f0:1a:29:90:e7:a8:ad:8f:67:53:a5:
63:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:0A:33:AF:8E:15:03:FD:02:EC:F5:49:AC:71:59:83:7E:F1:22:E2
X509v3 Authority Key Identifier:
keyid:48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/AF4FB9546EF511F1833692DFCE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.251.249.0/24
Signature Algorithm: sha256WithRSAEncryption
45:d0:e5:41:19:d5:ef:53:be:71:63:76:28:bd:cb:d1:ed:c5:
71:ce:54:18:a0:6b:9d:2f:fc:67:84:6b:23:bd:16:46:84:c3:
f3:c3:58:6f:0d:5c:77:45:f6:b1:12:9e:62:a7:61:ef:2b:74:
ec:08:ba:d0:d1:91:e9:27:47:d1:93:0e:03:3f:69:94:79:9f:
99:95:89:92:d8:5b:ac:fc:82:ad:3b:f7:eb:10:8b:68:44:d4:
90:fd:f2:b6:f6:c8:fe:8b:ce:50:2d:bf:6b:6f:cc:86:26:c5:
55:13:9b:56:2f:0c:9b:eb:9e:92:8c:0e:ae:d6:03:05:ed:47:
06:67:a4:50:a6:8b:75:0a:63:88:22:a3:73:34:a2:84:57:7b:
3c:f6:3e:83:97:f4:52:f8:af:ac:c9:9e:f7:37:ad:e0:70:76:
17:43:ad:43:ca:35:d2:8e:21:b7:90:a6:45:82:9e:d9:ec:6b:
13:e9:fa:98:b9:a9:37:da:49:82:d4:7c:b6:bd:a6:e8:66:9b:
72:34:f7:0f:ba:0d:a6:14:6b:4a:a5:66:fc:2d:26:97:69:40:
33:e9:61:e8:39:0b:85:63:8b:63:99:80:5d:12:98:e7:f7:08:
2a:75:7a:67:b6:8f:a0:3b:28:61:7e:97:06:a4:3b:75:fe:3b:
aa:58:30:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 24 01:07:00 2026 by rpki-client