Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/BCB5DB0A544211F19D8B04BDCE1D38B0.roa
File: BCB5DB0A544211F19D8B04BDCE1D38B0.roa (raw, json)
Hash identifier: q6MKk+LEA6q52m0QIF7CJezM4jJw7DDxJ6LgrLa1Ja0=
Subject key identifier: AB:E0:42:26:36:BA:4F:42:99:E7:15:AC:13:01:14:0A:1F:F3:51:B9
Certificate issuer: /CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Certificate serial: 1891
Authority key identifier: 48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/BCB5DB0A544211F19D8B04BDCE1D38B0.roa
Signing time: Wed 20 May 2026 11:55:04 +0000
ROA not before: Wed 20 May 2026 11:54:59 +0000
ROA not after: Sat 20 May 2028 11:54:59 +0000
asID: 209557
IP address blocks: 102.129.183.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.mft
rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 May 2026 01:19:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6289 (0x1891)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C58D6AF, serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Validity
Not Before: May 20 11:54:59 2026 GMT
Not After : May 20 11:54:59 2028 GMT
Subject: CN=6a0da118-191d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:91:a4:64:04:32:cf:13:44:b8:ff:e0:0b:29:
42:6f:4a:0a:e4:74:40:37:82:44:a3:23:f0:a6:6e:
8b:99:ee:2f:0d:c3:fe:16:3c:98:33:3f:cb:10:7b:
b7:64:3d:ef:ec:01:28:10:c6:b1:a7:f1:b6:4f:55:
f2:e7:d4:1d:8e:fb:90:e0:c1:96:c6:52:c0:f7:c8:
f3:f2:34:1b:fe:51:5d:8d:34:05:9d:53:1c:9d:d9:
0e:d1:e9:ed:65:e7:67:43:b1:c6:ae:e5:0a:17:87:
03:18:36:63:0f:2f:42:c4:23:02:d5:b5:33:af:d0:
5f:69:b1:80:d6:e7:bb:f2:99:9b:a9:3e:a0:13:a3:
c3:ad:83:23:9f:a6:3a:60:4a:0b:fc:a3:b4:47:82:
2f:a7:1f:0f:6f:c8:c2:0d:af:61:f4:be:99:af:fc:
15:b5:e2:a8:ea:94:5d:a1:67:96:54:4c:36:69:42:
c0:a8:af:31:c2:4e:7b:2d:20:f5:5c:4d:76:8c:ce:
97:17:4b:48:d9:06:b3:2d:7d:13:dd:64:fd:fb:ea:
21:cb:75:b4:a7:1b:89:b2:64:cf:e4:15:df:30:b0:
b4:50:5d:da:31:ce:c1:30:89:d9:b1:fc:1b:33:03:
c6:4c:4e:71:e6:7b:33:96:fb:1d:b2:7b:62:d6:71:
e8:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:E0:42:26:36:BA:4F:42:99:E7:15:AC:13:01:14:0A:1F:F3:51:B9
X509v3 Authority Key Identifier:
keyid:48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/BCB5DB0A544211F19D8B04BDCE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.129.183.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:20:d3:2d:64:5f:19:a9:b5:38:ca:4f:5d:74:ff:26:88:24:
85:25:c9:01:b7:5e:a1:22:80:3c:04:fc:46:52:4b:75:0e:41:
49:a6:97:d9:2e:4e:f1:4e:09:26:b0:cd:db:58:e4:01:a2:99:
f9:e2:71:32:75:e2:63:51:02:d1:30:fb:75:e5:fa:91:08:98:
63:f2:b7:10:8e:92:9a:7e:b8:50:be:db:b9:e4:e5:ca:6b:ac:
c1:09:9d:e6:47:15:5b:a9:7a:e9:d4:7e:78:7e:7f:38:dd:17:
b0:9a:89:b8:cb:d8:bb:99:6e:8a:48:ae:1a:5f:c3:d2:3f:1a:
be:8b:50:3c:36:32:23:91:d1:2b:7e:9f:8d:7f:3f:1e:99:41:
63:95:cb:f2:11:f1:67:9a:73:8a:8e:c7:57:1b:bf:f5:1d:87:
31:75:e3:da:b0:83:a0:57:f7:69:6d:d2:86:5b:07:a7:03:69:
9a:ac:cc:37:38:a6:a8:bf:aa:9b:a8:80:42:01:fc:7c:0e:5f:
a3:3e:12:22:d1:c8:e1:86:f7:53:f4:fa:0f:31:14:15:b8:9a:
2e:cf:d4:63:72:dc:93:18:d9:4b:44:0b:7d:b9:2a:9c:7b:59:
bc:82:f0:f3:1f:29:74:44:1f:34:33:0e:fd:e0:3e:d3:8b:47:
de:99:7b:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 21 16:09:01 2026 by rpki-client