Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/C174B9701C4A11F1AE7817BDDAE4EC9C.roa
File: C174B9701C4A11F1AE7817BDDAE4EC9C.roa (raw, json)
Hash identifier: WEsGInqjU2xJ3anSFz6ooNW5de/+21PqYqwjRlNTW94=
Subject key identifier: 98:3F:B6:56:8A:98:2D:0B:39:1B:50:29:5B:34:14:23:58:70:C7:0D
Certificate issuer: /CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Certificate serial: 17A9
Authority key identifier: 48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/C174B9701C4A11F1AE7817BDDAE4EC9C.roa
Signing time: Tue 10 Mar 2026 06:31:23 +0000
ROA not before: Tue 10 Mar 2026 06:31:18 +0000
ROA not after: Fri 10 Mar 2028 06:31:18 +0000
asID: 29802
IP address blocks: 102.129.249.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.mft
rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 18 Mar 2026 01:19:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6057 (0x17a9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C58D6AF, serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Validity
Not Before: Mar 10 06:31:18 2026 GMT
Not After : Mar 10 06:31:18 2028 GMT
Subject: CN=69afbabb-dc2b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:67:c3:12:2a:a1:bc:a2:58:e7:87:ab:aa:0e:
ec:de:ff:6b:1d:46:ad:e9:f3:3d:84:98:70:b2:bd:
f3:7f:63:2f:c7:9b:bc:47:0c:c3:b3:85:52:ef:00:
36:1a:8d:88:77:7d:30:4d:0d:7a:4e:71:a0:f3:36:
02:77:f8:43:dd:91:2d:c1:9d:11:d1:8b:5d:c0:c6:
47:47:43:d8:8e:ad:d6:d6:bb:21:fc:f0:bd:15:8d:
eb:91:9f:a9:a5:ff:3b:38:5c:a3:8c:bf:2a:ac:01:
81:ea:4d:3b:d8:b7:d0:8c:32:6f:4b:2d:23:2d:e6:
54:90:7b:89:a9:b7:de:fb:a0:88:84:5a:66:1f:39:
fc:f3:0b:d3:22:67:c5:1e:ec:e5:95:55:ab:12:df:
58:2d:90:6b:28:45:7a:ea:c3:9b:56:2a:5d:42:96:
39:56:84:00:db:2d:53:9c:5d:a2:88:45:53:f6:83:
33:87:92:09:e5:cb:33:0a:65:3a:3c:e5:43:9c:69:
e4:d7:8d:44:cb:20:70:3d:b8:f7:cf:f3:a7:20:e9:
d1:39:b9:8e:2d:cf:06:d8:d1:5b:43:72:a6:ca:68:
86:c0:16:9a:fd:9c:4a:14:42:01:d7:6c:b6:f1:0b:
1e:16:81:b4:87:88:bc:93:09:f8:89:db:29:5d:a9:
6d:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:3F:B6:56:8A:98:2D:0B:39:1B:50:29:5B:34:14:23:58:70:C7:0D
X509v3 Authority Key Identifier:
keyid:48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/C174B9701C4A11F1AE7817BDDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.129.249.0/24
Signature Algorithm: sha256WithRSAEncryption
76:35:8b:14:06:fa:7a:da:56:87:7b:79:95:49:65:8a:4c:6c:
39:11:8f:29:5b:b8:c9:3b:3d:d3:5a:7a:ad:7b:05:ad:08:95:
e7:e2:ee:b1:f0:01:1d:19:b0:29:15:dc:91:1d:b5:2d:af:10:
54:88:c6:58:57:3f:ce:36:ce:bc:e8:83:b0:de:25:8d:0e:fb:
4e:c3:73:79:07:2c:4f:89:e5:42:51:5a:a3:55:5a:3b:61:92:
2b:44:45:f4:53:34:40:0a:dd:55:7e:f0:00:dc:c1:61:a9:04:
8e:2f:7a:8b:fa:25:cf:de:89:0d:59:0b:1c:9f:05:60:d6:58:
4c:23:6e:05:f3:6d:c3:8d:ac:68:1e:72:86:b1:62:e1:e2:1b:
f3:f7:fd:b2:cf:b9:f9:57:8b:7f:24:76:50:76:c2:f5:58:3a:
89:bf:45:25:99:79:d9:2b:38:42:ed:ee:70:80:01:b8:a3:95:
11:a8:1d:b4:1c:fe:b2:60:b7:89:ca:8b:51:19:1d:d7:b8:e5:
16:89:4d:23:f5:3f:df:25:7b:72:dd:9e:23:1f:89:cd:fa:3c:
9d:3c:70:79:ab:3e:66:8f:59:f1:68:10:42:d6:6b:29:05:df:
1f:ab:51:f8:04:21:b2:f1:d0:f9:ad:06:86:c0:31:72:d0:7f:
d1:1e:09:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 17 02:23:36 2026 by rpki-client