Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/248DF6EE52FF11F1B55F19FECE1D38B0.roa
File: 248DF6EE52FF11F1B55F19FECE1D38B0.roa (raw, json)
Hash identifier: OPFRB7VduXoWNIddCoRi9pekE10l3+Supz76maZYJEs=
Subject key identifier: 29:C5:2B:E7:4E:04:49:1D:7C:35:32:20:3A:F6:2E:BA:38:92:08:91
Certificate issuer: /CN=F367DFA4AF/serialNumber=97C90E25212D887CF9E1DE6FDDF551BA812FA139
Certificate serial: 097B
Authority key identifier: 97:C9:0E:25:21:2D:88:7C:F9:E1:DE:6F:DD:F5:51:BA:81:2F:A1:39
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/248DF6EE52FF11F1B55F19FECE1D38B0.roa
Signing time: Mon 18 May 2026 21:18:41 +0000
ROA not before: Mon 18 May 2026 21:18:35 +0000
ROA not after: Sun 28 Jun 2026 21:18:35 +0000
asID: 141718
IP address blocks: 102.177.180.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.crl
rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.mft
rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 14 Jun 2026 00:07:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2427 (0x97b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367DFA4AF, serialNumber=97C90E25212D887CF9E1DE6FDDF551BA812FA139
Validity
Not Before: May 18 21:18:35 2026 GMT
Not After : Jun 28 21:18:35 2026 GMT
Subject: CN=6a0b8231-0994
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:ca:bb:0b:2e:ab:74:86:ac:8a:17:77:1a:a4:
35:80:4b:46:84:4f:8e:e3:cd:0f:14:1e:c6:15:8f:
cc:01:58:83:2f:20:cc:9d:e0:26:07:2c:58:be:d7:
d5:5c:5e:42:d3:f3:23:c6:dd:ba:0e:90:d8:93:c2:
ff:61:7f:58:3b:5c:4a:53:d1:89:f9:43:8d:3a:41:
f0:72:c2:8d:3d:ef:ef:ea:92:8e:0b:b0:d0:74:d7:
28:78:16:64:72:5a:2f:cb:ce:79:b8:c6:03:9f:1f:
a1:7a:5f:88:cb:67:1b:03:9b:be:b2:5e:02:e9:15:
6b:7a:c6:87:8d:e0:93:72:2a:98:e4:5f:c9:50:10:
5c:c3:8b:a2:85:95:f6:cf:2c:b9:0e:bb:3e:b5:98:
ec:fc:8f:35:e1:a6:0a:46:30:6a:4a:62:72:a8:3d:
38:e8:c8:b1:66:c5:59:f5:4e:01:d1:58:ef:7a:e5:
ec:5a:1d:cb:5f:f8:25:4d:86:c6:fd:ec:75:5d:a5:
68:f5:fd:79:cd:67:73:2d:3c:a8:c9:4f:7b:2e:1d:
af:92:07:9c:38:ba:91:45:54:fe:9a:0a:3d:8d:de:
0e:72:55:5b:23:c0:3b:36:4b:4b:ba:1b:e6:5f:72:
6a:ae:25:9a:1e:9f:b8:20:dc:48:3b:a3:7d:92:2a:
27:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:C5:2B:E7:4E:04:49:1D:7C:35:32:20:3A:F6:2E:BA:38:92:08:91
X509v3 Authority Key Identifier:
keyid:97:C9:0E:25:21:2D:88:7C:F9:E1:DE:6F:DD:F5:51:BA:81:2F:A1:39
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/248DF6EE52FF11F1B55F19FECE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.177.180.0/24
Signature Algorithm: sha256WithRSAEncryption
97:43:8e:30:1a:7b:1c:3f:1a:06:56:81:02:e3:34:f4:53:19:
42:84:07:28:5b:b3:92:f3:a0:1c:89:14:83:4a:0c:49:29:15:
52:4e:dc:93:a1:81:ff:ea:59:9c:8e:65:5d:8a:06:fd:b0:ab:
43:b6:19:e4:34:05:16:d6:23:fe:45:38:bb:d7:b5:34:20:2b:
8d:a5:37:15:98:3d:23:26:80:14:be:bd:67:e5:e7:0f:51:3d:
6c:4d:5f:94:2f:ee:9b:1c:46:54:b9:9b:0b:e7:d7:fe:b1:e3:
a2:f4:48:76:b2:f8:98:de:e3:01:cb:0a:46:fd:07:f6:28:65:
88:4f:9c:eb:00:67:ce:f1:af:ed:cd:8b:7f:4d:1e:52:fc:49:
c1:77:2f:3e:b2:78:a1:db:f4:ed:e3:a6:62:e7:a9:88:b5:57:
35:40:06:ac:2c:38:c5:0a:b4:7f:ac:12:25:2a:66:d5:bc:fe:
c2:8f:f0:99:f9:62:ab:0d:01:ec:4a:89:5c:ea:64:05:09:ab:
f2:32:05:9f:df:e0:79:22:a5:77:61:64:94:15:f7:55:ca:dc:
0c:f3:68:f8:29:a0:68:af:85:ee:88:f4:b9:2f:a1:c8:aa:22:
e3:e9:0a:df:14:bd:ad:3e:5a:af:1c:c4:62:49:f5:60:43:ab:
4d:2a:1c:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 01:17:38 2026 by rpki-client