Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/AE6583084EC911F19D366EF3CE1D38B0.roa
File: AE6583084EC911F19D366EF3CE1D38B0.roa (raw, json)
Hash identifier: zE6NTqf5Uw0JXvHAF+0drrrmqJLi/Q1ZKzGCGM7ahIU=
Subject key identifier: B2:14:AB:FD:1F:1A:11:DF:49:5A:77:B0:D6:EE:06:5D:2A:81:A6:06
Certificate issuer: /CN=F367DFA4AF/serialNumber=97C90E25212D887CF9E1DE6FDDF551BA812FA139
Certificate serial: 0974
Authority key identifier: 97:C9:0E:25:21:2D:88:7C:F9:E1:DE:6F:DD:F5:51:BA:81:2F:A1:39
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/AE6583084EC911F19D366EF3CE1D38B0.roa
Signing time: Wed 13 May 2026 12:45:55 +0000
ROA not before: Wed 13 May 2026 12:45:50 +0000
ROA not after: Thu 28 May 2026 12:45:50 +0000
asID: 211826
IP address blocks: 102.177.184.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.crl
rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.mft
rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 26 May 2026 00:07:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2420 (0x974)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367DFA4AF, serialNumber=97C90E25212D887CF9E1DE6FDDF551BA812FA139
Validity
Not Before: May 13 12:45:50 2026 GMT
Not After : May 28 12:45:50 2026 GMT
Subject: CN=6a047283-81ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:63:17:cf:47:35:82:7a:d4:58:32:ba:fe:0a:
6a:00:ad:9a:8f:a2:4a:54:22:aa:ca:cb:10:6d:2b:
0f:34:34:68:96:d8:99:41:93:3c:8a:07:46:7c:e0:
0b:0c:e0:f2:6b:55:13:08:ef:af:db:ff:b5:cc:a8:
92:49:81:30:d0:ea:98:ae:68:4e:ed:63:ed:ac:27:
68:65:31:c3:ff:d4:78:37:2f:71:83:02:0f:b6:63:
96:7b:67:96:f7:9d:0c:c7:19:15:18:fa:af:99:0e:
cc:af:1f:48:03:3a:06:58:33:b1:4d:49:2b:ca:19:
72:b3:85:bd:52:45:9e:16:72:44:0a:42:32:10:62:
f0:09:6f:02:37:14:a2:fe:99:b7:21:06:f1:aa:fb:
d1:8f:dd:1c:1d:a3:66:37:e0:62:0c:a7:33:87:ab:
2b:be:90:09:df:2d:96:a1:09:13:aa:c9:86:07:c0:
c1:1f:1b:26:ff:f1:0b:77:06:0d:bc:eb:17:f3:11:
f0:a1:87:80:50:65:dc:86:f0:5e:f7:c7:45:42:d4:
40:4a:0b:4d:0c:d6:a5:29:89:67:86:63:19:5c:21:
fd:38:d0:e4:52:1c:1d:67:92:0d:59:80:31:ba:44:
c5:c6:6e:43:9b:bf:34:fe:ca:fb:96:3b:4b:2c:58:
90:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:14:AB:FD:1F:1A:11:DF:49:5A:77:B0:D6:EE:06:5D:2A:81:A6:06
X509v3 Authority Key Identifier:
keyid:97:C9:0E:25:21:2D:88:7C:F9:E1:DE:6F:DD:F5:51:BA:81:2F:A1:39
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/AE6583084EC911F19D366EF3CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.177.184.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:76:29:88:e0:5d:28:b1:e7:dc:16:78:9c:1f:02:5b:b1:9a:
b3:f7:9e:2c:f4:36:f7:0e:a0:4f:76:3e:6b:ed:f4:91:04:ca:
71:5f:d7:25:26:42:bd:28:9e:ed:72:33:6e:0f:67:ca:7f:74:
59:25:e5:15:fb:ee:c7:9d:78:99:31:2b:ca:de:06:e0:91:16:
60:9f:36:7d:4e:f6:cc:b2:79:a0:29:59:f2:01:03:72:c5:33:
58:81:a5:7b:38:d7:8c:7f:36:23:49:56:20:c3:1d:59:b6:28:
e5:2d:fe:58:da:b6:b9:80:64:58:2c:ad:73:ea:fc:54:d6:b8:
0b:af:e4:71:59:dc:69:f7:f8:00:c4:91:e0:d5:5f:86:cd:52:
db:78:ed:eb:ae:aa:9a:8f:03:21:f6:83:ea:dc:75:2d:5c:0f:
74:0b:64:fe:ec:48:f0:ee:53:42:38:45:c5:ce:27:72:18:f0:
02:c3:a1:f1:89:c1:2d:b1:80:8d:4d:53:f0:7b:d2:36:66:dc:
92:3c:89:4f:a0:16:f8:e9:91:51:07:fe:d0:8a:ea:b9:4f:95:
93:e7:79:7d:3d:c5:e9:f4:c4:2a:4c:a1:76:19:3e:9c:1d:3d:
75:55:99:c5:d6:8e:f9:1f:7a:f6:9e:9e:0d:f1:0a:82:5d:a4:
c0:5c:e8:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 24 13:09:13 2026 by rpki-client