Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/75BAE87E52FF11F18B1C83FECE1D38B0.roa
File: 75BAE87E52FF11F18B1C83FECE1D38B0.roa (raw, json)
Hash identifier: cVYvTsMIGtzAyBJmEhEk2w1YOiJ3Oyku/1YdMmKwNIs=
Subject key identifier: 2B:8F:5F:E4:96:C9:FA:BA:33:FE:F8:87:E5:B2:B7:01:EB:26:1B:EE
Certificate issuer: /CN=F367DFA4AF/serialNumber=97C90E25212D887CF9E1DE6FDDF551BA812FA139
Certificate serial: 097F
Authority key identifier: 97:C9:0E:25:21:2D:88:7C:F9:E1:DE:6F:DD:F5:51:BA:81:2F:A1:39
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/75BAE87E52FF11F18B1C83FECE1D38B0.roa
Signing time: Mon 18 May 2026 21:20:57 +0000
ROA not before: Mon 18 May 2026 21:20:53 +0000
ROA not after: Sun 28 Jun 2026 21:20:53 +0000
asID: 211826
IP address blocks: 102.177.184.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.crl
rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.mft
rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 26 May 2026 00:07:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2431 (0x97f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367DFA4AF, serialNumber=97C90E25212D887CF9E1DE6FDDF551BA812FA139
Validity
Not Before: May 18 21:20:53 2026 GMT
Not After : Jun 28 21:20:53 2026 GMT
Subject: CN=6a0b82b9-a48a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:30:cf:a7:9f:48:8a:7a:76:65:f0:7d:05:69:
ea:07:c3:05:47:51:a2:a8:36:7c:1f:f8:62:4d:0c:
06:56:f0:4d:50:16:87:9c:0d:47:41:b2:01:37:26:
c5:4c:b6:24:92:08:16:86:41:0c:55:87:08:66:89:
1b:0d:40:e8:eb:82:03:ef:04:6a:dc:c3:5b:8f:fa:
c0:7b:e1:a6:b3:b3:e0:34:17:54:db:64:5b:6b:c7:
74:8a:dc:60:98:33:9d:c1:3e:80:c7:5b:6d:d8:a6:
69:ef:8d:1e:03:88:ef:11:e2:a5:04:af:93:43:13:
7e:ba:c4:95:de:26:d0:03:49:ad:5c:5e:2b:9b:3f:
b3:28:95:0c:36:b2:3e:aa:19:cf:7e:71:31:46:53:
e9:ef:d3:b9:ab:65:3e:8c:a4:c2:19:35:98:77:30:
04:25:df:4c:e1:f6:1e:3d:94:0e:b1:66:bc:f4:c9:
13:ed:ce:5c:01:88:97:31:bb:72:0c:3d:32:b4:4f:
d2:c3:f6:50:a4:ba:5d:f9:ed:f1:11:4c:1f:df:14:
06:21:bc:11:be:81:e5:bb:07:cd:67:19:a4:af:c9:
c4:ac:8e:80:a9:30:76:a8:10:d7:49:97:6a:fd:61:
52:bb:79:5c:77:69:31:0b:f3:76:1f:49:8b:e3:c1:
2f:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:8F:5F:E4:96:C9:FA:BA:33:FE:F8:87:E5:B2:B7:01:EB:26:1B:EE
X509v3 Authority Key Identifier:
keyid:97:C9:0E:25:21:2D:88:7C:F9:E1:DE:6F:DD:F5:51:BA:81:2F:A1:39
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/75BAE87E52FF11F18B1C83FECE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.177.184.0/24
Signature Algorithm: sha256WithRSAEncryption
af:5c:4f:80:e5:57:fb:c9:e6:a6:e8:52:74:58:d0:e3:ff:65:
46:35:e3:7b:13:98:25:a5:00:bb:b9:cb:ed:71:13:13:f9:e2:
25:cf:ae:94:1b:d0:ae:0d:98:5e:e1:bd:fa:26:d3:fa:1f:9b:
27:82:ae:03:9e:54:a5:5b:c9:a4:84:99:b0:a9:a3:20:a5:96:
1e:76:eb:b9:60:c7:a0:98:c3:c0:54:ca:d3:77:7b:b5:a2:23:
0f:fe:b4:3a:24:d3:c8:1c:bd:78:45:17:ee:f8:01:11:88:d2:
98:39:3e:55:7c:95:3f:e5:e5:1b:90:fd:44:6f:49:fa:96:65:
5c:8d:fc:40:8b:4d:c0:a6:90:5c:42:d2:74:04:bf:11:b7:96:
39:8c:52:ee:4f:14:82:7c:0e:0b:63:57:c8:ad:25:0a:6f:ee:
d5:ea:05:2d:12:ca:32:fa:9d:af:68:06:34:3c:a1:9c:3e:92:
93:f8:81:26:c1:b5:af:68:47:77:39:c7:a6:31:f4:40:c7:7d:
60:76:aa:96:e5:87:ad:2c:6d:b4:7c:11:25:b2:ee:44:f8:0b:
1d:ea:fe:23:68:7b:0d:96:8d:ba:76:ad:7b:da:34:de:20:a2:
96:f5:8c:3d:dc:92:63:2f:d4:a4:60:1a:99:ff:3f:c1:ef:e7:
b2:3b:fb:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 24 13:09:12 2026 by rpki-client