Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/FD2659B459BD11F1A5A491A7CE1D38B0.roa
File: FD2659B459BD11F1A5A491A7CE1D38B0.roa (raw, json)
Hash identifier: Ks7BVX9P2i3Q7doGY2l8FcMW4YCnlUyYh4CpUwcthQo=
Subject key identifier: 8F:1D:2B:29:22:90:D9:95:E8:AA:24:1A:90:A8:6F:6B:58:FB:78:71
Certificate issuer: /CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Certificate serial: 18B1
Authority key identifier: 48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/FD2659B459BD11F1A5A491A7CE1D38B0.roa
Signing time: Wed 27 May 2026 11:19:56 +0000
ROA not before: Wed 27 May 2026 11:19:51 +0000
ROA not after: Sat 27 May 2028 11:19:51 +0000
asID: 214266
IP address blocks: 102.129.128.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.mft
rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 29 May 2026 00:07:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6321 (0x18b1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C58D6AF, serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Validity
Not Before: May 27 11:19:51 2026 GMT
Not After : May 27 11:19:51 2028 GMT
Subject: CN=6a16d35c-c863
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:d4:e9:58:99:9a:a6:23:b9:32:34:e5:70:50:
82:60:49:cd:a9:68:a5:64:57:0a:c8:e3:da:f9:b0:
33:b6:fd:6c:44:3e:aa:0e:a4:9e:d3:c9:85:ff:97:
d0:4f:18:f2:c6:74:e8:b5:c3:93:bc:2d:43:7b:8b:
ad:af:a9:22:34:90:17:c7:33:0b:5d:c8:a1:94:41:
ae:38:49:f5:fa:0e:93:cb:0b:2e:de:90:5a:0e:21:
68:b9:42:2f:e2:42:45:a0:7e:7d:6a:6f:56:47:3c:
d0:9e:a8:b2:64:49:9d:72:6d:c5:44:4f:4f:9a:ed:
89:15:c3:9b:4c:a2:5a:34:75:5f:f8:da:ad:77:03:
00:fc:51:24:85:2b:67:8a:00:bf:fe:34:d0:61:e9:
cf:c8:d8:75:62:19:52:99:52:bf:df:73:13:79:82:
c4:d4:86:83:b1:6c:6d:38:39:93:ba:5e:de:a2:65:
97:27:1b:54:6d:93:28:1f:6e:91:a0:b5:1d:58:b6:
ed:f6:f8:b0:db:6e:a7:a9:f1:af:62:7e:5c:e6:29:
84:8c:0b:77:9f:6f:2b:a7:a7:0a:71:97:13:08:7b:
1a:fe:3d:3f:5a:6f:36:15:b6:1a:06:68:2e:0e:56:
8a:8b:bd:c1:6b:2b:41:bc:9a:2a:cb:32:ce:bd:21:
6c:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:1D:2B:29:22:90:D9:95:E8:AA:24:1A:90:A8:6F:6B:58:FB:78:71
X509v3 Authority Key Identifier:
keyid:48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/FD2659B459BD11F1A5A491A7CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.129.128.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:6b:5d:f4:73:ad:92:f4:f1:48:66:2e:79:c8:49:29:82:1e:
4e:ea:d4:8d:55:e0:de:54:a7:38:79:41:fc:d3:48:cb:ea:a4:
83:fa:d4:6b:99:9a:3d:f5:85:3e:f8:92:28:16:63:ca:6f:7c:
1e:2f:7f:8b:98:22:70:9f:9e:ce:0f:af:f4:82:70:fb:da:1b:
4a:bf:f1:63:f1:2f:ab:0c:67:8b:24:a9:a1:28:fe:62:f1:24:
34:46:e4:1a:6e:be:c5:ca:de:0c:3d:6d:39:16:1e:2e:20:77:
6c:6f:f8:36:34:cf:32:b6:27:a9:a8:27:90:a2:5b:79:f9:3e:
f4:5e:fa:a6:74:5e:1d:6e:74:8a:89:92:fe:59:04:f7:f7:a4:
f0:84:68:d6:78:37:51:76:e3:58:e8:1a:fd:ca:b5:a8:da:62:
6a:b0:a0:65:5f:e5:86:35:31:44:0e:30:e5:2b:bc:d6:e5:c4:
0d:6b:a7:ca:48:74:8c:21:5d:35:56:3e:8e:80:82:0f:48:0a:
b1:0c:1a:3b:85:cf:f2:f2:13:54:40:f6:cc:f7:5d:c5:0c:99:
13:bd:fb:b7:c6:38:96:68:45:47:a9:4a:64:40:9b:24:96:db:
64:04:01:7e:9b:6b:87:25:72:4f:02:3a:20:18:ef:54:a2:be:
cd:e1:f1:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 27 17:19:07 2026 by rpki-client