Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36E3D7F/B705EAF241A611EA881A6728F8AEA228/F3312BC0196011F1BD761A86DAE4EC9C.roa
File: F3312BC0196011F1BD761A86DAE4EC9C.roa (raw, json)
Hash identifier: ibkIYsf/GzzdmpJ0e4OsQNVAHYchdgJBYBy4m/psamQ=
Subject key identifier: 59:1C:16:98:15:4E:AA:82:AE:47:E2:18:18:17:D4:22:45:7A:D6:FC
Certificate issuer: /CN=F36E3D7FAF/serialNumber=965C8C35B0F10F8EA5DBDA544F291B6CA9283B5D
Certificate serial: 092B
Authority key identifier: 96:5C:8C:35:B0:F1:0F:8E:A5:DB:DA:54:4F:29:1B:6C:A9:28:3B:5D
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/llyMNbDxD46l29pUTykbbKkoO10.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36E3D7F/B705EAF241A611EA881A6728F8AEA228/F3312BC0196011F1BD761A86DAE4EC9C.roa
Signing time: Fri 06 Mar 2026 13:32:42 +0000
ROA not before: Fri 06 Mar 2026 13:32:37 +0000
ROA not after: Tue 06 Mar 2046 13:32:37 +0000
asID: 40123
IP address blocks: 41.221.210.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36E3D7F/B705EAF241A611EA881A6728F8AEA228/llyMNbDxD46l29pUTykbbKkoO10.crl
rsync://rpki.afrinic.net/repository/member_repository/F36E3D7F/B705EAF241A611EA881A6728F8AEA228/llyMNbDxD46l29pUTykbbKkoO10.mft
rsync://rpki.afrinic.net/repository/afrinic/llyMNbDxD46l29pUTykbbKkoO10.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 15 Mar 2026 00:07:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2347 (0x92b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36E3D7FAF, serialNumber=965C8C35B0F10F8EA5DBDA544F291B6CA9283B5D
Validity
Not Before: Mar 6 13:32:37 2026 GMT
Not After : Mar 6 13:32:37 2046 GMT
Subject: CN=69aad77a-eb8f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:72:b3:f4:39:37:da:ca:19:e7:ad:75:a7:ab:
33:20:1e:a2:18:8d:f2:ea:73:5c:cf:b8:49:b0:95:
ca:1e:38:3d:be:da:6c:0e:80:5a:b0:ab:e7:45:52:
d0:4a:b9:12:50:e2:b4:a2:a0:60:0a:c3:bd:a7:04:
46:c9:e8:b0:cb:c8:64:e9:9b:6a:cb:ab:08:53:8c:
e0:61:11:a6:2b:bf:a3:81:ad:65:6b:9d:0b:89:59:
f3:7c:39:72:70:c5:de:c4:97:08:51:47:b0:e5:e4:
62:9a:2d:5b:7e:3b:0e:42:b4:45:1b:57:ed:89:33:
8c:73:57:3f:35:da:45:86:7a:a0:1b:e7:69:c9:44:
08:f0:7f:7a:26:cd:aa:11:af:3f:bd:37:5a:bc:81:
42:47:21:d2:e7:3f:c3:94:ba:34:d3:69:21:06:92:
bc:b2:b8:b4:7e:b0:dc:2f:47:aa:6c:c2:4e:5a:82:
c5:d5:0a:6f:30:28:ca:16:e8:89:0a:b0:d7:ac:1a:
c8:29:62:ee:69:06:21:f7:d7:b0:8e:f2:f8:a7:fa:
4b:47:76:8b:98:4a:b5:0f:6a:10:bd:61:b4:6e:da:
13:e2:61:04:de:9f:a0:d0:76:ba:2c:aa:86:2f:8a:
14:0f:ab:02:de:61:41:b2:11:a6:6a:57:44:b2:e0:
dc:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:1C:16:98:15:4E:AA:82:AE:47:E2:18:18:17:D4:22:45:7A:D6:FC
X509v3 Authority Key Identifier:
keyid:96:5C:8C:35:B0:F1:0F:8E:A5:DB:DA:54:4F:29:1B:6C:A9:28:3B:5D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36E3D7F/B705EAF241A611EA881A6728F8AEA228/llyMNbDxD46l29pUTykbbKkoO10.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/llyMNbDxD46l29pUTykbbKkoO10.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36E3D7F/B705EAF241A611EA881A6728F8AEA228/F3312BC0196011F1BD761A86DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.221.210.0/24
Signature Algorithm: sha256WithRSAEncryption
56:5c:bc:0a:8e:9e:da:48:73:b9:97:cf:e0:d9:af:aa:23:76:
fb:e2:b8:08:c8:5e:01:46:fe:f3:43:c2:9e:e5:e1:1a:14:d7:
99:f5:f9:06:99:ed:72:60:63:d9:61:ab:d2:d8:19:cf:2c:5b:
d8:a5:ab:63:46:31:e9:32:3b:69:b0:a2:96:72:98:ad:bc:01:
6c:47:0a:5b:f5:0c:6d:06:fc:60:c4:cc:e1:2a:98:38:06:d4:
09:2c:c5:26:0d:2c:b9:e5:d0:ec:f1:0d:f4:99:73:30:3a:a4:
87:29:b4:52:4f:05:1e:d4:f9:e1:0d:06:2a:82:64:c5:9a:1b:
8a:9c:fc:59:1a:69:1c:d6:8e:d7:f4:4d:1e:6c:c0:20:0a:75:
3b:21:78:fe:71:d1:73:7b:cd:2a:6c:f3:31:fe:94:0b:17:de:
ea:52:74:29:77:09:b0:ba:29:7c:c8:37:64:2c:d2:11:8a:dc:
ec:df:b5:2a:12:93:c4:d6:45:cd:0c:06:f8:ef:f0:7e:08:c1:
19:51:ea:3d:da:4c:06:6a:3e:8c:ed:65:15:3a:7b:cb:58:11:
61:3f:52:e1:cc:a7:8b:40:03:b9:ab:dd:68:94:75:7c:4f:9f:
b1:38:55:5a:90:7f:a9:54:cd:22:f4:87:2d:36:51:1e:10:9f:
f2:f3:39:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 13 13:49:18 2026 by rpki-client