Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/4B0FAD8C2AB711F1A5261CD8DAE4EC9C.roa
File: 4B0FAD8C2AB711F1A5261CD8DAE4EC9C.roa (raw, json)
Hash identifier: iDwntjXc0TkUcKq7YPpoYX8y6uqRkFD/EWhYMmqZVT4=
Subject key identifier: C6:55:5A:C4:7E:11:73:AB:53:72:E6:E1:CF:C1:30:96:15:21:21:D7
Certificate issuer: /CN=F367DFA4AF/serialNumber=97C90E25212D887CF9E1DE6FDDF551BA812FA139
Certificate serial: 091F
Authority key identifier: 97:C9:0E:25:21:2D:88:7C:F9:E1:DE:6F:DD:F5:51:BA:81:2F:A1:39
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/4B0FAD8C2AB711F1A5261CD8DAE4EC9C.roa
Signing time: Sat 28 Mar 2026 15:03:36 +0000
ROA not before: Sat 28 Mar 2026 15:03:31 +0000
ROA not after: Thu 22 Apr 2027 15:03:31 +0000
asID: 21859
IP address blocks: 102.177.183.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.crl
rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.mft
rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 09 Apr 2026 00:07:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2335 (0x91f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367DFA4AF, serialNumber=97C90E25212D887CF9E1DE6FDDF551BA812FA139
Validity
Not Before: Mar 28 15:03:31 2026 GMT
Not After : Apr 22 15:03:31 2027 GMT
Subject: CN=69c7edc8-333b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:03:ea:da:e4:95:2e:41:aa:1d:2f:60:11:53:
16:72:cb:c7:25:29:ed:39:b5:e0:4f:a5:25:e0:0c:
92:84:00:52:d9:1c:21:58:ae:5e:ed:1a:bd:16:01:
9e:30:0d:0e:78:1a:f1:30:91:36:e4:4e:15:1b:79:
5d:e6:3d:d4:8e:60:be:22:09:47:9a:a4:f4:0c:e0:
ba:ab:e9:f3:8d:c2:7f:f0:da:f7:43:bf:7a:64:1e:
de:77:50:93:f1:09:c6:51:fa:ed:42:ed:6b:8c:f2:
df:3e:d0:26:7e:ec:dd:8b:7b:4a:22:2e:9a:3d:9f:
50:dc:fd:57:65:9c:d0:c1:17:5c:bf:7a:41:8c:3a:
e7:23:85:07:c0:6a:8f:3a:79:64:a4:16:8a:6b:bc:
72:d5:95:a1:d8:39:f8:ae:57:ac:1e:53:b4:1a:6a:
15:5d:c9:0d:1d:3d:ee:66:82:0b:ba:83:67:c9:c2:
99:63:46:42:96:5d:e2:a6:20:33:ab:47:84:20:79:
17:b9:34:13:be:77:32:00:72:24:b2:fc:09:f4:0d:
e3:74:70:a4:35:63:62:4e:4b:c8:1b:e3:35:c9:05:
ab:2f:1b:75:eb:69:d6:76:fc:ca:70:6d:4e:39:cd:
b9:45:7d:05:20:0f:6b:01:d5:d2:6f:25:20:7e:39:
ea:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:55:5A:C4:7E:11:73:AB:53:72:E6:E1:CF:C1:30:96:15:21:21:D7
X509v3 Authority Key Identifier:
keyid:97:C9:0E:25:21:2D:88:7C:F9:E1:DE:6F:DD:F5:51:BA:81:2F:A1:39
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/4B0FAD8C2AB711F1A5261CD8DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.177.183.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:06:85:98:a0:27:26:b9:24:6c:98:24:de:63:30:ec:19:41:
34:46:0d:de:40:d8:b8:bc:9c:f7:2c:47:09:02:a3:7a:0e:83:
1f:7b:da:6a:ca:11:67:29:80:61:5e:65:ff:79:df:ef:68:46:
73:9d:97:87:de:7c:dd:77:6a:ed:06:62:42:8f:eb:d5:e5:38:
ce:ec:88:f3:1c:62:bc:9b:f4:f6:27:e5:d8:9f:c3:2d:6e:43:
fc:27:3e:a0:2e:45:2e:c2:a6:ec:eb:1d:49:90:40:0b:a0:0b:
b3:e3:1c:6f:4f:b5:f5:60:c6:40:dd:87:07:ba:c2:84:4a:87:
71:46:7b:e1:91:13:3c:36:d5:02:2d:a3:e4:2f:81:7b:15:2b:
65:67:0a:fc:a2:7d:db:05:e8:93:f5:75:c2:80:7e:dd:76:af:
78:04:9c:92:c5:9a:73:1a:8d:28:cf:33:3e:ec:34:d6:56:3e:
26:a7:8e:f9:a6:80:31:41:eb:9a:0b:b1:39:39:aa:49:2f:f0:
43:46:90:4f:16:8b:ab:e0:8a:89:ca:04:72:2d:3d:6b:ea:fe:
6e:e0:bf:8a:03:05:23:e0:9e:39:de:7c:43:ae:de:b9:20:44:
d6:13:03:98:b4:5b:ee:16:2e:de:2b:3c:03:73:c8:64:34:9a:
7f:20:4f:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 7 04:59:17 2026 by rpki-client