Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/063D9F0E1A4311F1B81EE8F1DAE4EC9C.roa
File: 063D9F0E1A4311F1B81EE8F1DAE4EC9C.roa (raw, json)
Hash identifier: 3H2U3hS+qbmxtdNS4fEkL6p2ZlRjH5u9njPQd/plaow=
Subject key identifier: FB:CF:C7:73:84:23:4D:2A:4F:18:9C:4A:FD:31:92:C4:BC:07:A3:63
Certificate issuer: /CN=F367DFA4AF/serialNumber=97C90E25212D887CF9E1DE6FDDF551BA812FA139
Certificate serial: 08F4
Authority key identifier: 97:C9:0E:25:21:2D:88:7C:F9:E1:DE:6F:DD:F5:51:BA:81:2F:A1:39
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/063D9F0E1A4311F1B81EE8F1DAE4EC9C.roa
Signing time: Sat 07 Mar 2026 16:30:59 +0000
ROA not before: Sat 07 Mar 2026 16:30:55 +0000
ROA not after: Sat 14 Mar 2026 16:30:55 +0000
asID: 22724
IP address blocks: 102.177.171.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.crl
rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.mft
rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 14 Mar 2026 16:30:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2292 (0x8f4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367DFA4AF, serialNumber=97C90E25212D887CF9E1DE6FDDF551BA812FA139
Validity
Not Before: Mar 7 16:30:55 2026 GMT
Not After : Mar 14 16:30:55 2026 GMT
Subject: CN=69ac52c3-8967
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:92:1b:30:7b:2b:22:3b:7e:d7:bf:73:e3:e9:
db:02:36:50:36:b2:e7:a8:a1:cb:5c:89:ef:9b:a1:
1f:d4:37:1a:d5:1a:95:95:cd:29:ae:80:4c:c7:a9:
24:49:06:b8:c6:75:d5:c6:9a:eb:6d:70:c8:5f:cb:
62:1e:42:2e:e0:1a:f7:bb:f9:06:37:9a:40:2e:1d:
2f:a7:a2:4b:96:8c:59:1e:a0:35:02:a8:e8:8b:c3:
bd:5d:1c:4f:b6:f0:ed:a4:0a:d8:0d:49:82:ac:d7:
97:15:7c:59:ce:d4:b7:cd:db:37:09:b6:06:00:74:
8e:ea:52:2d:cf:73:e9:0a:30:9e:bb:f7:e9:c4:fd:
c7:f1:04:39:ac:c4:d9:ac:7f:fd:8d:26:77:1d:30:
73:ca:1f:94:27:32:f3:c4:df:36:7e:7a:96:8d:36:
0d:98:e2:ef:9a:17:f0:4f:34:fc:d2:c6:ec:b1:bf:
7d:ca:f0:31:70:f0:90:a2:db:f5:76:77:a6:0c:b8:
c3:1b:a1:60:cd:d6:73:c2:35:cf:00:f2:07:ee:a5:
76:16:9f:63:52:c7:c4:13:19:df:ca:fa:ea:ea:66:
92:a9:57:86:c3:41:3d:9c:e6:a2:fb:05:1e:b1:92:
00:b6:fd:9e:3d:7c:37:72:23:15:8e:db:6e:41:47:
bd:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:CF:C7:73:84:23:4D:2A:4F:18:9C:4A:FD:31:92:C4:BC:07:A3:63
X509v3 Authority Key Identifier:
keyid:97:C9:0E:25:21:2D:88:7C:F9:E1:DE:6F:DD:F5:51:BA:81:2F:A1:39
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/063D9F0E1A4311F1B81EE8F1DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.177.171.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:47:b4:ff:c3:78:64:55:05:c6:3f:c1:6c:00:86:44:a6:e0:
f2:5f:58:56:51:49:c1:3c:8f:d5:b5:de:bc:b8:73:39:12:72:
49:5a:72:4c:39:15:0d:97:a6:54:37:03:1f:b5:f7:07:4d:e4:
18:06:28:c8:9f:4f:24:4e:be:05:54:20:01:84:33:b6:0f:68:
de:ce:31:58:ee:96:67:da:69:a2:d3:a2:37:b7:6d:f2:10:e2:
f5:22:92:d2:e1:97:34:19:1b:d0:65:f4:89:9d:2c:49:ed:ac:
1b:0f:ae:61:14:ea:7b:aa:fc:3c:a4:46:48:5b:42:7a:54:68:
91:99:64:2b:08:81:26:30:1a:5b:1f:e4:f0:91:71:56:f1:f9:
ac:1b:9f:c1:d6:96:05:5e:81:27:4e:e7:73:64:63:b2:81:2b:
d9:cb:25:ce:5d:73:23:13:31:4e:ea:7a:17:e3:f9:7a:40:85:
e5:b1:cc:1e:8b:63:01:28:29:b3:6e:ba:c1:25:da:27:e5:48:
ea:25:d6:5a:49:51:5e:85:be:a1:88:23:27:07:86:11:d0:3d:
15:a9:e2:02:bc:d0:d5:16:ed:bf:97:13:ba:6f:8a:6c:e1:f8:
69:55:a4:84:46:d1:ba:ec:99:19:94:1b:3b:e6:71:7e:93:55:
05:85:87:ac
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICCPQwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
N0RGQTRBRjExMC8GA1UEBRMoOTdDOTBFMjUyMTJEODg3Q0Y5RTFERTZGRERGNTUx
QkE4MTJGQTEzOTAeFw0yNjAzMDcxNjMwNTVaFw0yNjAzMTQxNjMwNTVaMBgxFjAU
BgNVBAMTDTY5YWM1MmMzLTg5NjcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQC/khsweysiO37Xv3Pj6dsCNlA2sueooctcie+boR/UNxrVGpWVzSmugEzH
qSRJBrjGddXGmuttcMhfy2IeQi7gGve7+QY3mkAuHS+nokuWjFkeoDUCqOiLw71d
HE+28O2kCtgNSYKs15cVfFnO1LfN2zcJtgYAdI7qUi3Pc+kKMJ679+nE/cfxBDms
xNmsf/2NJncdMHPKH5QnMvPE3zZ+epaNNg2Y4u+aF/BPNPzSxuyxv33K8DFw8JCi
2/V2d6YMuMMboWDN1nPCNc8A8gfupXYWn2NSx8QTGd/K+urqZpKpV4bDQT2c5qL7
BR6xkgC2/Z49fDdyIxWO225BR71jAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQU+8/H
c4QjTSpPGJxK/TGSxLwHo2MwHwYDVR0jBBgwFoAUl8kOJSEtiHz54d5v3fVRuoEv
oTkwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjdERkE0LzA4QjhEODIwOTNBQzExRUJCMUQyQTgzMkY4QUVBMjI4L2w4a09K
U0V0aUh6NTRkNXYzZlZSdW9Fdm9Uay5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL2w4a09KU0V0aUh6NTRkNXYzZlZSdW9Fdm9Uay5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjdERkE0LzA4QjhEODIwOTNBQzExRUJCMUQyQTgzMkY4
QUVBMjI4LzA2M0Q5RjBFMUE0MzExRjFCODFFRThGMURBRTRFQzlDLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABmsaswDQYJKoZIhvcNAQEL
BQADggEBAG5HtP/DeGRVBcY/wWwAhkSm4PJfWFZRScE8j9W13ry4czkScklackw5
FQ2XplQ3Ax+19wdN5BgGKMifTyROvgVUIAGEM7YPaN7OMVjulmfaaaLToje3bfIQ
4vUiktLhlzQZG9Bl9ImdLEntrBsPrmEU6nuq/DykRkhbQnpUaJGZZCsIgSYwGlsf
5PCRcVbx+awbn8HWlgVegSdO53NkY7KBK9nLJc5dcyMTMU7qehfj+XpAheWxzB6L
YwEoKbNuusEl2iflSOol1lpJUV6FvqGIIycHhhHQPRWp4gK80NUW7b+XE7pvimzh
+GlVpIRG0brsmRmUGzvmcX6TVQWFh6w=
-----END CERTIFICATE-----
Generated at Sat Mar 14 03:22:09 2026 by rpki-client