Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36E3D7F/B705EAF241A611EA881A6728F8AEA228/28C356B4196111F184DBF487DAE4EC9C.roa
File: 28C356B4196111F184DBF487DAE4EC9C.roa (raw, json)
Hash identifier: aSzuJgc4hXP1yI45B2SkSx8ZkUWaYTT+OBaaHmbOFSc=
Subject key identifier: F4:E7:19:3A:C8:11:14:B9:11:28:A6:6F:84:74:2F:6F:0E:7E:2A:8B
Certificate issuer: /CN=F36E3D7FAF/serialNumber=965C8C35B0F10F8EA5DBDA544F291B6CA9283B5D
Certificate serial: 092D
Authority key identifier: 96:5C:8C:35:B0:F1:0F:8E:A5:DB:DA:54:4F:29:1B:6C:A9:28:3B:5D
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/llyMNbDxD46l29pUTykbbKkoO10.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36E3D7F/B705EAF241A611EA881A6728F8AEA228/28C356B4196111F184DBF487DAE4EC9C.roa
Signing time: Fri 06 Mar 2026 13:34:12 +0000
ROA not before: Fri 06 Mar 2026 13:34:07 +0000
ROA not after: Tue 06 Mar 2046 13:34:07 +0000
asID: 7262
IP address blocks: 41.221.214.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36E3D7F/B705EAF241A611EA881A6728F8AEA228/llyMNbDxD46l29pUTykbbKkoO10.crl
rsync://rpki.afrinic.net/repository/member_repository/F36E3D7F/B705EAF241A611EA881A6728F8AEA228/llyMNbDxD46l29pUTykbbKkoO10.mft
rsync://rpki.afrinic.net/repository/afrinic/llyMNbDxD46l29pUTykbbKkoO10.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 15 Mar 2026 00:07:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2349 (0x92d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36E3D7FAF, serialNumber=965C8C35B0F10F8EA5DBDA544F291B6CA9283B5D
Validity
Not Before: Mar 6 13:34:07 2026 GMT
Not After : Mar 6 13:34:07 2046 GMT
Subject: CN=69aad7d3-64db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:52:3d:32:96:00:f9:c3:30:c1:4b:bc:82:45:
5f:ee:d5:05:ff:d2:d2:63:ef:9e:81:c2:e0:50:74:
8f:09:02:9d:01:df:78:9d:e2:ec:f9:04:9a:0a:27:
f7:e1:a5:02:5f:7d:24:4f:b8:88:29:28:44:60:0b:
2b:e4:4d:2e:77:44:11:be:36:cb:30:13:0e:25:6e:
ce:ca:e8:0b:b4:ed:d9:91:4f:1a:5d:41:b4:56:7e:
f5:a7:5f:15:10:83:15:b6:61:b9:eb:3c:d6:1d:49:
b3:9e:98:79:90:66:cb:e2:6c:ac:99:00:8c:a3:66:
29:62:21:ed:3d:6f:c3:36:a1:78:57:ce:6e:97:3d:
3f:49:87:7d:88:76:e0:0a:2f:98:f5:7b:cb:c1:0c:
ad:3e:ef:a1:75:30:f4:7f:90:be:1d:bd:30:58:a4:
e4:d1:6a:6b:cc:23:0e:62:f5:d6:f8:6f:ec:6f:f0:
e8:1e:41:9e:62:cc:30:10:51:8e:dc:cd:db:bd:7c:
26:89:8e:60:c5:d2:8a:6e:1c:14:79:93:7c:91:7a:
2e:85:e9:e0:5a:b5:2d:dd:73:f6:78:64:2d:56:bb:
e7:ca:dd:70:61:44:80:eb:08:08:a4:a9:94:61:ad:
74:71:f1:1e:94:a2:37:82:8b:85:32:53:1e:13:65:
28:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:E7:19:3A:C8:11:14:B9:11:28:A6:6F:84:74:2F:6F:0E:7E:2A:8B
X509v3 Authority Key Identifier:
keyid:96:5C:8C:35:B0:F1:0F:8E:A5:DB:DA:54:4F:29:1B:6C:A9:28:3B:5D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36E3D7F/B705EAF241A611EA881A6728F8AEA228/llyMNbDxD46l29pUTykbbKkoO10.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/llyMNbDxD46l29pUTykbbKkoO10.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36E3D7F/B705EAF241A611EA881A6728F8AEA228/28C356B4196111F184DBF487DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.221.214.0/24
Signature Algorithm: sha256WithRSAEncryption
94:09:77:1c:3f:13:32:e7:74:c4:6d:c1:57:05:09:27:6f:23:
bc:fd:39:0d:be:74:24:0d:8a:43:a5:c7:23:a0:0b:73:cb:85:
d0:a4:71:2c:e0:8b:ed:e6:18:f9:81:19:71:36:18:fb:58:a9:
04:60:4a:e0:0e:21:ce:ce:9c:9a:55:61:41:95:7d:8e:6e:65:
d4:30:fd:af:c1:da:92:30:e1:43:d4:3e:2b:b8:15:26:63:99:
c0:36:ee:63:ea:a5:71:23:15:17:58:6d:dc:cf:8d:5b:ec:48:
c1:0f:73:13:e7:5c:7e:b7:f9:7c:b1:f6:e7:b5:d8:93:b9:b9:
82:4b:84:c7:aa:85:09:f0:02:23:d7:11:1a:43:6f:5a:00:a0:
71:02:71:2e:49:a5:c0:9f:c1:16:77:c9:1a:8b:ce:d2:e0:65:
06:ee:11:07:40:45:73:c9:08:d8:30:19:99:79:cb:75:0b:2d:
3f:42:94:b1:bf:7a:a1:b5:01:5a:d2:68:8e:8d:21:84:ee:ef:
23:63:33:77:9b:cc:94:a9:5e:33:6e:10:39:d9:77:61:12:57:
61:a7:66:df:9a:f9:0a:4e:9d:50:05:52:1b:36:20:34:89:9a:
a1:d3:92:4c:b2:4a:db:f9:82:f4:cd:0d:32:4d:05:25:c8:73:
56:31:ca:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 13 11:26:49 2026 by rpki-client