Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/DE2FE726163011F1829CE9EADAE4EC9C.roa
File: DE2FE726163011F1829CE9EADAE4EC9C.roa (raw, json)
Hash identifier: TMIMgwsogkJNyAx0X77xxGocwvE2m5HEfSTcrhrwoyI=
Subject key identifier: A5:9D:04:9A:F2:65:01:76:31:0B:DB:1B:CD:F4:04:25:A2:CD:F2:A1
Certificate issuer: /CN=F367DFA4AF/serialNumber=97C90E25212D887CF9E1DE6FDDF551BA812FA139
Certificate serial: 08E5
Authority key identifier: 97:C9:0E:25:21:2D:88:7C:F9:E1:DE:6F:DD:F5:51:BA:81:2F:A1:39
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/DE2FE726163011F1829CE9EADAE4EC9C.roa
Signing time: Mon 02 Mar 2026 12:10:57 +0000
ROA not before: Mon 02 Mar 2026 12:10:53 +0000
ROA not after: Fri 19 Feb 2027 12:10:53 +0000
asID: 209242
IP address blocks: 102.177.189.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.crl
rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.mft
rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 15 Mar 2026 01:54:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2277 (0x8e5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367DFA4AF, serialNumber=97C90E25212D887CF9E1DE6FDDF551BA812FA139
Validity
Not Before: Mar 2 12:10:53 2026 GMT
Not After : Feb 19 12:10:53 2027 GMT
Subject: CN=69a57e51-f6b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:3b:b2:ce:bd:58:d2:c7:51:cb:a5:94:37:d3:
73:1b:2d:81:49:6c:80:3f:c2:b8:cf:a6:3e:e4:9e:
78:46:43:93:94:55:60:a1:10:6c:39:88:58:4d:c9:
9e:20:ca:51:c0:1f:9c:76:c7:6d:fa:d0:fb:59:27:
b5:15:1d:c6:f2:b3:ba:af:df:27:6c:99:c8:d8:7a:
e8:8d:c7:46:34:67:80:8a:be:62:79:09:ec:a6:a8:
57:b5:84:77:0c:ad:3a:b1:0a:10:09:39:07:2d:93:
35:3a:11:88:67:75:0b:94:a0:c8:cc:48:06:97:3d:
91:21:d6:c5:75:d2:ba:c7:31:c5:a6:e8:e2:7b:ba:
68:c8:b0:d6:a2:1e:83:ae:0e:22:5c:ee:20:03:2f:
e0:0d:85:5e:98:19:bf:3e:7f:18:f3:e7:e6:05:b5:
3a:ab:5c:2a:5a:5c:13:1e:b2:c0:84:08:ec:b1:51:
aa:1b:0c:a5:e8:13:2c:81:4f:b9:ed:07:7e:5a:9c:
fe:10:83:94:29:5c:d1:c1:6f:48:20:d3:19:51:91:
75:0d:9c:d2:91:30:21:2c:d7:3f:ee:ec:48:a8:35:
90:c6:dd:83:59:84:18:c4:45:4d:fb:a7:c2:62:ca:
8d:82:e1:01:bc:fc:02:d6:d5:d4:b0:93:77:51:d1:
6e:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:9D:04:9A:F2:65:01:76:31:0B:DB:1B:CD:F4:04:25:A2:CD:F2:A1
X509v3 Authority Key Identifier:
keyid:97:C9:0E:25:21:2D:88:7C:F9:E1:DE:6F:DD:F5:51:BA:81:2F:A1:39
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/DE2FE726163011F1829CE9EADAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.177.189.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:e2:f7:6e:ec:53:d2:fe:5f:d6:c2:2b:f9:07:b0:07:da:a9:
a7:31:a0:10:94:36:b8:d5:86:6a:c9:26:f3:ba:bd:4e:d8:d7:
8e:e4:9b:1a:31:0b:ad:92:88:ec:be:1a:13:20:12:50:58:c3:
46:d8:5f:3a:96:a8:5d:8a:c4:20:25:d0:28:78:54:c8:a1:0d:
9c:cf:fc:a1:0e:3e:60:7a:15:2f:07:a5:ba:91:31:05:60:81:
2d:f3:97:33:72:2f:9f:61:ac:a8:2b:37:ce:90:81:09:7e:06:
a5:ba:00:c1:21:a5:41:93:04:03:7c:1c:98:fc:8b:7d:06:51:
ca:42:52:20:d8:4c:5e:3d:0f:37:3b:cd:6d:29:9b:f8:48:03:
e5:f0:0c:e5:cb:5e:90:38:d3:eb:a1:26:fb:da:5d:c1:94:e5:
02:ef:8f:f9:dd:44:18:40:45:d9:90:5a:46:2c:26:0a:90:ab:
8c:03:ce:a4:fb:2b:bc:e1:7d:1a:f6:53:e5:47:37:d5:4e:5b:
81:4a:cb:fa:c0:7e:f1:12:83:42:7d:d2:58:e3:0f:e5:ec:ff:
68:93:45:4a:25:02:95:b2:22:c2:d2:70:84:44:db:6e:59:a2:
17:35:81:08:9e:f6:c1:52:3b:e5:d7:05:2a:51:ae:4f:49:98:
a0:b7:d6:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 14 03:22:45 2026 by rpki-client