Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/AFD094721A4311F1AB8D10F6DAE4EC9C.roa
File: AFD094721A4311F1AB8D10F6DAE4EC9C.roa (raw, json)
Hash identifier: lFWmkELaQuW0qjhX+0moblv4bWbw+p9dA+ryYFkiBqw=
Subject key identifier: 01:E8:32:8A:13:99:97:33:FB:98:F7:2D:10:DE:A8:50:72:9F:A3:88
Certificate issuer: /CN=F367DFA4AF/serialNumber=97C90E25212D887CF9E1DE6FDDF551BA812FA139
Certificate serial: 08FC
Authority key identifier: 97:C9:0E:25:21:2D:88:7C:F9:E1:DE:6F:DD:F5:51:BA:81:2F:A1:39
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/AFD094721A4311F1AB8D10F6DAE4EC9C.roa
Signing time: Sat 07 Mar 2026 16:35:44 +0000
ROA not before: Sat 07 Mar 2026 16:35:40 +0000
ROA not after: Sat 14 Mar 2026 16:35:40 +0000
asID: 22724
IP address blocks: 102.177.174.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.crl
rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.mft
rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 14 Mar 2026 16:35:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2300 (0x8fc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367DFA4AF, serialNumber=97C90E25212D887CF9E1DE6FDDF551BA812FA139
Validity
Not Before: Mar 7 16:35:40 2026 GMT
Not After : Mar 14 16:35:40 2026 GMT
Subject: CN=69ac53e0-dd61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:fe:af:5b:30:b6:87:d2:18:e4:c1:66:ac:ea:
b3:3b:94:62:45:b2:45:7b:13:7d:f9:d3:44:d1:02:
c0:20:e6:4e:17:57:69:f5:0a:47:ad:41:01:92:1e:
6d:4e:51:2c:72:73:77:0d:01:ed:85:88:49:a2:d9:
f3:56:0b:b8:5b:59:05:d0:c2:45:a0:26:1a:dd:d8:
a7:44:7e:ae:c8:4d:b3:d4:c9:05:2d:6d:15:ba:b3:
6c:d7:27:a4:a9:39:90:2d:ec:86:f2:b9:f6:7f:e9:
dd:ca:69:96:23:2b:0f:b1:4b:08:42:59:8f:dc:17:
13:41:9c:c2:ef:38:5c:e1:e8:19:f7:2c:a7:84:68:
25:96:aa:a0:d8:59:cc:23:d0:02:86:d3:e5:67:8d:
3c:58:14:c6:d7:c5:cb:c1:a2:9c:16:5e:9d:a6:e7:
22:18:10:c7:7d:ce:c5:19:14:cd:44:34:98:06:35:
38:f1:1a:0b:f8:81:51:0d:ad:2b:f7:54:c2:2f:87:
b1:3f:2a:f4:34:72:fc:f8:cf:bc:8e:71:2e:0b:f7:
d7:68:b3:1e:3b:27:6e:7f:2a:12:65:60:58:83:25:
b7:25:37:92:c8:10:9d:a2:9c:1c:5d:5e:24:f7:12:
d6:93:9c:3a:7e:13:68:4c:af:85:50:04:51:98:c9:
05:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:E8:32:8A:13:99:97:33:FB:98:F7:2D:10:DE:A8:50:72:9F:A3:88
X509v3 Authority Key Identifier:
keyid:97:C9:0E:25:21:2D:88:7C:F9:E1:DE:6F:DD:F5:51:BA:81:2F:A1:39
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/AFD094721A4311F1AB8D10F6DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.177.174.0/24
Signature Algorithm: sha256WithRSAEncryption
bb:de:5d:7c:3e:5e:e8:5d:26:ba:48:7e:c6:19:01:0a:b2:82:
dc:c0:34:07:22:a6:b6:2f:9a:97:bd:4f:3c:cb:7c:39:b0:90:
0c:da:8d:df:64:bf:32:11:f2:40:4d:16:a0:a2:f7:2a:5a:1a:
19:65:f1:40:96:af:7f:8c:54:63:9d:b3:32:a8:e5:09:43:b5:
53:e9:8d:ac:70:8a:83:5e:44:20:50:f5:98:7a:e1:21:9c:2a:
93:1f:51:32:3e:53:bc:ca:12:00:92:fe:e6:44:ee:d9:1a:cf:
b0:b4:82:3c:49:20:e1:88:a7:13:c9:f1:98:53:b2:db:ef:f9:
8f:6e:c7:b4:d7:b8:5c:2f:0e:1f:5a:ea:9b:7b:8f:9f:57:6c:
f9:50:21:fc:53:ac:6e:68:dd:1d:79:99:67:12:92:2e:cd:67:
10:22:6b:ec:73:cc:f8:1a:b2:e1:1d:a4:83:38:15:c9:2d:84:
9d:2b:15:39:70:2c:ec:ff:03:00:d4:06:d3:da:f6:34:97:d5:
30:4c:87:cd:9b:2a:7c:71:92:ff:c3:4f:0d:e2:7e:e1:07:8e:
85:ce:c8:9f:1f:88:af:05:60:c8:cc:6e:2a:b8:65:3d:6a:17:
a9:21:26:29:44:94:4f:33:95:b1:2f:a3:74:7f:96:fe:2f:6c:
2b:af:58:ef
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICCPwwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
N0RGQTRBRjExMC8GA1UEBRMoOTdDOTBFMjUyMTJEODg3Q0Y5RTFERTZGRERGNTUx
QkE4MTJGQTEzOTAeFw0yNjAzMDcxNjM1NDBaFw0yNjAzMTQxNjM1NDBaMBgxFjAU
BgNVBAMTDTY5YWM1M2UwLWRkNjEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQC+/q9bMLaH0hjkwWas6rM7lGJFskV7E33500TRAsAg5k4XV2n1CketQQGS
Hm1OUSxyc3cNAe2FiEmi2fNWC7hbWQXQwkWgJhrd2KdEfq7ITbPUyQUtbRW6s2zX
J6SpOZAt7IbyufZ/6d3KaZYjKw+xSwhCWY/cFxNBnMLvOFzh6Bn3LKeEaCWWqqDY
Wcwj0AKG0+VnjTxYFMbXxcvBopwWXp2m5yIYEMd9zsUZFM1ENJgGNTjxGgv4gVEN
rSv3VMIvh7E/KvQ0cvz4z7yOcS4L99dosx47J25/KhJlYFiDJbclN5LIEJ2inBxd
XiT3EtaTnDp+E2hMr4VQBFGYyQVrAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUAegy
ihOZlzP7mPctEN6oUHKfo4gwHwYDVR0jBBgwFoAUl8kOJSEtiHz54d5v3fVRuoEv
oTkwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjdERkE0LzA4QjhEODIwOTNBQzExRUJCMUQyQTgzMkY4QUVBMjI4L2w4a09K
U0V0aUh6NTRkNXYzZlZSdW9Fdm9Uay5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL2w4a09KU0V0aUh6NTRkNXYzZlZSdW9Fdm9Uay5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjdERkE0LzA4QjhEODIwOTNBQzExRUJCMUQyQTgzMkY4
QUVBMjI4L0FGRDA5NDcyMUE0MzExRjFBQjhEMTBGNkRBRTRFQzlDLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABmsa4wDQYJKoZIhvcNAQEL
BQADggEBALveXXw+XuhdJrpIfsYZAQqygtzANAciprYvmpe9TzzLfDmwkAzajd9k
vzIR8kBNFqCi9ypaGhll8UCWr3+MVGOdszKo5QlDtVPpjaxwioNeRCBQ9Zh64SGc
KpMfUTI+U7zKEgCS/uZE7tkaz7C0gjxJIOGIpxPJ8ZhTstvv+Y9ux7TXuFwvDh9a
6pt7j59XbPlQIfxTrG5o3R15mWcSki7NZxAia+xzzPgasuEdpIM4FckthJ0rFTlw
LOz/AwDUBtPa9jSX1TBMh82bKnxxkv/DTw3ifuEHjoXOyJ8fiK8FYMjMbiq4ZT1q
F6khJilElE8zlbEvo3R/lv4vbCuvWO8=
-----END CERTIFICATE-----
Generated at Sat Mar 14 03:22:10 2026 by rpki-client