Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F361033E/D4B202883D8111F1B57317B9CE1D38B0/BA0E425E3E3311F196C104F8CE1D38B0.roa
File: BA0E425E3E3311F196C104F8CE1D38B0.roa (raw, json)
Hash identifier: u7+fqqHQnG+ld2TX7zf+J5qSkRtZWaLPDkz+BXSHa58=
Subject key identifier: 6E:6B:9F:0F:81:5B:AF:17:E6:59:89:9E:9C:4C:F6:4F:99:F5:0B:3C
Certificate issuer: /CN=F361033EAF/serialNumber=239A2395A222C46B689B83A14D4BD9E422F8D171
Certificate serial: 05
Authority key identifier: 23:9A:23:95:A2:22:C4:6B:68:9B:83:A1:4D:4B:D9:E4:22:F8:D1:71
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/I5ojlaIixGtom4OhTUvZ5CL40XE.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F361033E/D4B202883D8111F1B57317B9CE1D38B0/BA0E425E3E3311F196C104F8CE1D38B0.roa
Signing time: Wed 22 Apr 2026 10:12:11 +0000
ROA not before: Wed 22 Apr 2026 10:12:05 +0000
ROA not after: Tue 30 Apr 2030 10:12:05 +0000
asID: 329531
IP address blocks: 102.205.244.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F361033E/D4B202883D8111F1B57317B9CE1D38B0/I5ojlaIixGtom4OhTUvZ5CL40XE.crl
rsync://rpki.afrinic.net/repository/member_repository/F361033E/D4B202883D8111F1B57317B9CE1D38B0/I5ojlaIixGtom4OhTUvZ5CL40XE.mft
rsync://rpki.afrinic.net/repository/afrinic/I5ojlaIixGtom4OhTUvZ5CL40XE.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 09 May 2026 00:07:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5 (0x5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F361033EAF, serialNumber=239A2395A222C46B689B83A14D4BD9E422F8D171
Validity
Not Before: Apr 22 10:12:05 2026 GMT
Not After : Apr 30 10:12:05 2030 GMT
Subject: CN=69e89efb-8815
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:b5:54:84:e8:7e:d5:e3:cb:e1:92:76:0b:e6:
f5:67:0d:b4:6f:5b:04:60:e5:9f:22:c9:49:d6:5e:
da:fa:f6:54:43:1f:a9:e9:2e:08:7d:51:8a:64:27:
22:62:c9:13:7c:5d:22:60:5f:e1:77:a8:43:6c:41:
8f:fd:b7:79:8a:ac:a4:35:10:8f:79:a2:cf:da:de:
41:23:cb:52:6f:9b:f3:ad:72:a2:0b:a2:e1:b9:05:
a8:77:b2:05:df:49:f1:0f:56:4e:22:af:f6:a4:df:
79:5b:c8:73:63:6d:c3:4c:10:e4:24:1e:95:ee:06:
db:c1:24:bb:d5:d4:85:cc:62:60:8f:61:fc:b8:52:
4a:a4:f5:8a:44:05:30:bd:40:2c:aa:12:4f:2e:9e:
2b:92:e6:ff:22:de:b1:f2:d9:d6:44:4a:6b:fc:98:
3a:7b:0f:6c:98:67:26:d6:51:5a:32:3f:9e:d9:b0:
0c:9a:e5:99:5b:9c:d1:30:5a:e4:0d:08:90:07:88:
00:0e:b1:48:9e:9c:54:e7:54:e3:d4:e6:59:55:c4:
ac:fe:cc:54:2a:a9:23:42:b5:d5:b3:64:7c:95:61:
99:68:24:73:18:3b:34:fd:5d:5c:8e:b3:18:76:79:
3e:ad:cd:fe:ed:77:72:69:c1:eb:59:b5:c9:64:95:
1a:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:6B:9F:0F:81:5B:AF:17:E6:59:89:9E:9C:4C:F6:4F:99:F5:0B:3C
X509v3 Authority Key Identifier:
keyid:23:9A:23:95:A2:22:C4:6B:68:9B:83:A1:4D:4B:D9:E4:22:F8:D1:71
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F361033E/D4B202883D8111F1B57317B9CE1D38B0/I5ojlaIixGtom4OhTUvZ5CL40XE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/I5ojlaIixGtom4OhTUvZ5CL40XE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F361033E/D4B202883D8111F1B57317B9CE1D38B0/BA0E425E3E3311F196C104F8CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.205.244.0/22
Signature Algorithm: sha256WithRSAEncryption
a0:32:da:a4:ba:c2:61:af:70:52:2b:dd:7f:a9:18:db:6f:3d:
8e:30:36:a1:78:3b:a6:22:11:7d:16:20:c4:92:7f:88:25:75:
59:0b:4a:07:90:3f:b3:f3:cd:64:d9:84:22:80:43:a2:25:40:
ec:23:8a:c5:8f:03:52:09:88:92:19:50:f8:ad:a0:5b:4c:a6:
55:33:24:1a:72:49:8f:e7:42:ef:52:9b:86:4b:8e:06:6d:14:
25:4d:37:af:da:59:10:e2:a2:b5:fe:b2:7a:fc:9c:e1:b3:10:
60:8f:a3:cc:51:b2:bb:a0:9f:fb:5c:21:d4:07:d6:b5:57:77:
bd:02:91:31:0c:6d:92:16:cc:b7:a0:98:c6:72:5b:32:d8:2c:
c7:f7:71:8d:07:2e:64:e3:de:6f:8a:79:a3:cd:50:e4:e0:24:
b4:82:8d:29:65:fe:a4:5d:bc:4a:a1:2d:be:2f:0a:b8:5f:07:
57:b3:aa:e6:a6:b1:58:c9:67:61:bb:bc:61:7f:3a:d5:0e:df:
e1:06:0c:7d:ff:2d:2e:a1:61:f9:c3:f4:f5:93:16:34:95:5f:
43:5e:c9:11:55:92:61:9c:e5:c8:5d:d4:c9:ad:79:6d:74:c7:
22:f2:88:30:89:1b:fb:34:61:67:f4:99:94:43:ab:36:d1:fe:
a3:0f:84:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 7 22:11:54 2026 by rpki-client