Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/66DFAE381A4311F1985232F2DAE4EC9C.roa
File: 66DFAE381A4311F1985232F2DAE4EC9C.roa (raw, json)
Hash identifier: bAQwZOc2eEaHphDYBK6F8DBdJG/DAq1+WYGbXlHHVtU=
Subject key identifier: 78:18:FC:97:5E:B2:1E:AE:D2:B4:A8:07:A8:79:F1:F2:E7:CD:09:82
Certificate issuer: /CN=F367DFA4AF/serialNumber=97C90E25212D887CF9E1DE6FDDF551BA812FA139
Certificate serial: 08F8
Authority key identifier: 97:C9:0E:25:21:2D:88:7C:F9:E1:DE:6F:DD:F5:51:BA:81:2F:A1:39
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/66DFAE381A4311F1985232F2DAE4EC9C.roa
Signing time: Sat 07 Mar 2026 16:33:42 +0000
ROA not before: Sat 07 Mar 2026 16:33:37 +0000
ROA not after: Sat 14 Mar 2026 16:33:37 +0000
asID: 22724
IP address blocks: 102.177.167.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.crl
rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.mft
rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 14 Mar 2026 16:33:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2296 (0x8f8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367DFA4AF, serialNumber=97C90E25212D887CF9E1DE6FDDF551BA812FA139
Validity
Not Before: Mar 7 16:33:37 2026 GMT
Not After : Mar 14 16:33:37 2026 GMT
Subject: CN=69ac5366-9e04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:23:6a:b2:8a:42:b4:13:e7:41:e1:86:ec:22:
c6:50:ad:76:5c:62:fc:be:97:bc:79:c9:67:25:38:
e6:f1:0a:6b:ef:fa:62:bf:1d:55:1c:08:31:50:69:
db:e4:d1:5b:bb:6d:05:a7:00:a6:4e:d4:e9:6b:89:
48:50:fe:63:bf:17:68:c1:dc:8b:04:38:9f:99:9e:
88:d9:f4:88:8b:d5:50:2b:59:8e:02:dc:cc:53:a7:
b3:cf:bf:b6:8b:10:1f:c1:c3:7c:21:f0:49:f2:44:
84:c1:b5:21:53:3b:b5:bb:4d:5e:e2:2f:50:c5:5d:
ca:1f:8e:e2:58:7f:34:c8:32:4b:7b:c9:ab:ab:7f:
de:26:6a:ba:12:c8:97:c0:43:9d:69:e0:5a:af:9c:
5d:eb:fe:b8:f7:e1:c7:ea:1b:97:76:71:77:89:f3:
b1:99:72:d3:31:9c:f2:ca:c9:81:5c:4a:17:ae:07:
1c:0c:5b:d0:88:66:f6:74:14:95:a0:d4:23:2f:9f:
e4:80:03:c5:fe:aa:83:11:2e:fa:5c:8d:f6:5b:09:
b9:67:74:c0:b7:77:3e:93:bf:3d:50:18:54:4f:69:
86:84:f9:62:42:66:bf:d8:ce:41:d1:21:ea:92:98:
96:56:f3:37:90:fd:a9:5a:f4:a6:8a:76:3a:e8:06:
42:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:18:FC:97:5E:B2:1E:AE:D2:B4:A8:07:A8:79:F1:F2:E7:CD:09:82
X509v3 Authority Key Identifier:
keyid:97:C9:0E:25:21:2D:88:7C:F9:E1:DE:6F:DD:F5:51:BA:81:2F:A1:39
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/66DFAE381A4311F1985232F2DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.177.167.0/24
Signature Algorithm: sha256WithRSAEncryption
c2:a1:c4:61:e2:2d:82:e2:84:29:e1:a6:0a:a3:9e:a3:8b:9b:
6d:05:2f:79:5f:44:e0:7d:f5:be:13:80:a0:5e:6e:e5:b2:fe:
a5:21:77:0d:b3:23:eb:34:35:e9:7e:47:0d:98:41:48:03:49:
36:f6:e9:69:d1:fa:56:db:68:2b:08:d4:68:6a:c1:e0:9f:56:
97:8f:d8:75:6b:15:70:bd:44:c1:6a:9e:6f:12:05:83:bc:60:
e9:f3:b3:31:b2:2e:04:9e:13:b6:00:ff:0f:81:c8:b9:3c:70:
b3:91:93:81:c2:fa:94:8b:11:68:8d:12:f8:31:5f:85:c8:fa:
fa:19:e7:1c:de:89:49:3f:5c:12:fd:1e:8c:d8:94:d3:b6:43:
89:3d:26:13:8d:90:ae:8b:7e:fb:33:d1:67:5f:ba:6b:83:74:
cf:3d:da:82:a8:7c:80:bf:cd:c5:68:33:e7:0e:c6:e4:cd:ab:
75:7d:d5:1a:a5:de:7b:98:dd:82:c3:27:7c:df:20:47:58:9f:
03:09:8b:da:83:15:f5:86:49:21:1e:56:01:6b:a9:2f:a7:b0:
56:94:d4:d1:5a:06:eb:4e:b0:35:aa:07:f7:99:3b:09:66:5f:
b8:3a:fa:4d:63:ea:28:39:67:c6:72:c7:46:3d:07:31:35:7f:
19:88:4c:78
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICCPgwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
N0RGQTRBRjExMC8GA1UEBRMoOTdDOTBFMjUyMTJEODg3Q0Y5RTFERTZGRERGNTUx
QkE4MTJGQTEzOTAeFw0yNjAzMDcxNjMzMzdaFw0yNjAzMTQxNjMzMzdaMBgxFjAU
BgNVBAMTDTY5YWM1MzY2LTllMDQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDPI2qyikK0E+dB4YbsIsZQrXZcYvy+l7x5yWclOObxCmvv+mK/HVUcCDFQ
advk0Vu7bQWnAKZO1OlriUhQ/mO/F2jB3IsEOJ+ZnojZ9IiL1VArWY4C3MxTp7PP
v7aLEB/Bw3wh8EnyRITBtSFTO7W7TV7iL1DFXcofjuJYfzTIMkt7yaurf94maroS
yJfAQ51p4FqvnF3r/rj34cfqG5d2cXeJ87GZctMxnPLKyYFcSheuBxwMW9CIZvZ0
FJWg1CMvn+SAA8X+qoMRLvpcjfZbCblndMC3dz6Tvz1QGFRPaYaE+WJCZr/YzkHR
IeqSmJZW8zeQ/ala9KaKdjroBkLlAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUeBj8
l16yHq7StKgHqHnx8ufNCYIwHwYDVR0jBBgwFoAUl8kOJSEtiHz54d5v3fVRuoEv
oTkwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjdERkE0LzA4QjhEODIwOTNBQzExRUJCMUQyQTgzMkY4QUVBMjI4L2w4a09K
U0V0aUh6NTRkNXYzZlZSdW9Fdm9Uay5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL2w4a09KU0V0aUh6NTRkNXYzZlZSdW9Fdm9Uay5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjdERkE0LzA4QjhEODIwOTNBQzExRUJCMUQyQTgzMkY4
QUVBMjI4LzY2REZBRTM4MUE0MzExRjE5ODUyMzJGMkRBRTRFQzlDLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABmsacwDQYJKoZIhvcNAQEL
BQADggEBAMKhxGHiLYLihCnhpgqjnqOLm20FL3lfROB99b4TgKBebuWy/qUhdw2z
I+s0Nel+Rw2YQUgDSTb26WnR+lbbaCsI1GhqweCfVpeP2HVrFXC9RMFqnm8SBYO8
YOnzszGyLgSeE7YA/w+ByLk8cLORk4HC+pSLEWiNEvgxX4XI+voZ5xzeiUk/XBL9
HozYlNO2Q4k9JhONkK6Lfvsz0WdfumuDdM892oKofIC/zcVoM+cOxuTNq3V91Rql
3nuY3YLDJ3zfIEdYnwMJi9qDFfWGSSEeVgFrqS+nsFaU1NFaButOsDWqB/eZOwlm
X7g6+k1j6ig5Z8Zyx0Y9BzE1fxmITHg=
-----END CERTIFICATE-----
Generated at Sat Mar 14 03:22:09 2026 by rpki-client