Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/89A0CF4C1A4311F182C4F7F3DAE4EC9C.roa
File: 89A0CF4C1A4311F182C4F7F3DAE4EC9C.roa (raw, json)
Hash identifier: SnXiQ0Y/cxZgmgwxBV7KIlx2MQgGCiODsUr8r05sxik=
Subject key identifier: AA:A9:66:8F:83:1C:23:93:28:59:7E:CB:85:7E:DB:12:A4:61:BE:DD
Certificate issuer: /CN=F367DFA4AF/serialNumber=97C90E25212D887CF9E1DE6FDDF551BA812FA139
Certificate serial: 08FA
Authority key identifier: 97:C9:0E:25:21:2D:88:7C:F9:E1:DE:6F:DD:F5:51:BA:81:2F:A1:39
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/89A0CF4C1A4311F182C4F7F3DAE4EC9C.roa
Signing time: Sat 07 Mar 2026 16:34:40 +0000
ROA not before: Sat 07 Mar 2026 16:34:35 +0000
ROA not after: Sat 14 Mar 2026 16:34:35 +0000
asID: 22724
IP address blocks: 102.177.168.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.crl
rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.mft
rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 14 Mar 2026 16:34:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2298 (0x8fa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367DFA4AF, serialNumber=97C90E25212D887CF9E1DE6FDDF551BA812FA139
Validity
Not Before: Mar 7 16:34:35 2026 GMT
Not After : Mar 14 16:34:35 2026 GMT
Subject: CN=69ac53a0-1299
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:d4:11:d2:de:6e:d9:9d:1c:7c:05:31:8f:3e:
d8:7c:6f:45:a9:d2:e0:38:19:3a:dd:5b:6c:14:7f:
ae:94:81:5c:4c:9e:26:8f:ad:f4:41:89:9a:9b:9f:
54:31:45:1c:75:0e:7a:c2:ef:d9:80:4a:54:75:0e:
7f:6a:34:c1:20:f5:dd:f0:e1:f2:61:77:91:b7:dc:
70:0f:ae:02:3c:dd:1d:19:49:3b:10:84:25:3f:69:
e9:9a:b0:5d:80:e7:24:67:e4:3a:b0:87:72:db:8c:
3e:37:d7:f8:1e:8f:6d:e0:2d:d2:fc:2c:54:e2:ea:
12:47:2e:e8:36:8d:5b:28:2f:56:ed:80:4b:49:19:
e3:a6:70:95:41:85:f3:69:70:03:bd:f7:0f:cf:cd:
c9:4e:eb:c0:48:f5:be:43:45:66:d6:a7:dd:76:38:
5f:d9:d3:e8:68:30:c2:c4:98:7b:34:8d:3f:61:a5:
66:31:68:a9:e4:e5:4f:76:59:19:da:ae:59:7e:cd:
61:7e:93:ef:50:d4:ab:b1:b2:94:86:12:a4:ee:5b:
f7:96:2d:ba:9a:4c:f9:1a:6e:83:84:a7:98:d8:31:
63:bc:4d:db:d4:2f:a0:e5:33:ce:e3:35:44:6b:0f:
16:aa:61:0d:8a:47:cf:54:7f:75:2a:16:cf:9b:7a:
ba:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:A9:66:8F:83:1C:23:93:28:59:7E:CB:85:7E:DB:12:A4:61:BE:DD
X509v3 Authority Key Identifier:
keyid:97:C9:0E:25:21:2D:88:7C:F9:E1:DE:6F:DD:F5:51:BA:81:2F:A1:39
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/89A0CF4C1A4311F182C4F7F3DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.177.168.0/24
Signature Algorithm: sha256WithRSAEncryption
c1:6a:1d:f5:96:74:1c:48:61:68:fb:af:4e:65:89:bc:34:78:
7a:d1:bf:f4:ad:10:b5:01:64:7a:f8:68:55:f1:1e:5d:6d:0a:
12:4a:14:97:21:92:db:4a:d0:e9:7f:63:eb:dd:79:67:dd:45:
ee:ee:0d:22:ce:a9:50:1d:4d:c1:dc:15:ac:c2:0e:84:81:c0:
0c:16:ae:f7:cc:7b:be:bd:e2:93:55:8e:26:e1:0f:7f:04:a5:
cb:17:ac:fa:17:02:00:5f:44:2d:18:56:71:db:aa:05:3b:88:
e3:2a:eb:24:78:a1:bd:50:c8:08:ac:20:a8:00:b6:19:2b:99:
a0:56:e8:5d:45:c7:ef:5b:f5:f3:0c:60:24:4f:39:25:54:9a:
d3:1e:b8:b9:29:69:1e:89:6c:7f:29:04:18:9a:1b:f5:07:1f:
2a:95:9d:9c:4e:db:e3:53:3d:af:2a:65:1d:96:9b:3d:c6:ed:
c8:89:ce:64:a9:23:01:ea:66:c3:04:5d:fb:d4:b7:de:64:56:
50:26:84:27:63:9a:fb:1e:d8:fd:cd:fb:52:10:00:2d:b9:ea:
49:f3:72:49:65:48:82:9a:da:80:db:b4:9f:01:8a:f4:51:48:
1b:ab:23:f3:84:01:38:1a:19:47:12:34:49:1d:7e:12:d4:70:
f8:10:eb:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 14 03:22:39 2026 by rpki-client