Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F369A67F/DABFABF60FC111F09ECD7C73762E951A/501F896C492C11F1A00643D3CE1D38B0.roa
File: 501F896C492C11F1A00643D3CE1D38B0.roa (raw, json)
Hash identifier: j0MYlgw2awLohs40axRmwJt8DOvmdaBZYSEu4Q3eP4I=
Subject key identifier: 9D:C8:9D:1B:F8:5E:F0:E9:34:40:75:5A:8E:F9:85:E3:43:F5:72:6D
Certificate issuer: /CN=F369A67FAF/serialNumber=27A81B05CA4AF511C78632BB55B94FAEF471C8E5
Certificate serial: 01A0
Authority key identifier: 27:A8:1B:05:CA:4A:F5:11:C7:86:32:BB:55:B9:4F:AE:F4:71:C8:E5
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/J6gbBcpK9RHHhjK7VblPrvRxyOU.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F369A67F/DABFABF60FC111F09ECD7C73762E951A/501F896C492C11F1A00643D3CE1D38B0.roa
Signing time: Wed 06 May 2026 09:16:50 +0000
ROA not before: Wed 06 May 2026 09:16:45 +0000
ROA not after: Mon 05 May 2031 09:16:45 +0000
asID: 328713
IP address blocks: 102.221.252.0/22 maxlen: 22
102.221.252.0/23 maxlen: 23
102.221.252.0/24 maxlen: 24
102.221.253.0/24 maxlen: 24
102.221.254.0/23 maxlen: 23
102.221.254.0/24 maxlen: 24
102.221.255.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F369A67F/DABFABF60FC111F09ECD7C73762E951A/J6gbBcpK9RHHhjK7VblPrvRxyOU.crl
rsync://rpki.afrinic.net/repository/member_repository/F369A67F/DABFABF60FC111F09ECD7C73762E951A/J6gbBcpK9RHHhjK7VblPrvRxyOU.mft
rsync://rpki.afrinic.net/repository/afrinic/J6gbBcpK9RHHhjK7VblPrvRxyOU.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 09 May 2026 00:07:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 416 (0x1a0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F369A67FAF, serialNumber=27A81B05CA4AF511C78632BB55B94FAEF471C8E5
Validity
Not Before: May 6 09:16:45 2026 GMT
Not After : May 5 09:16:45 2031 GMT
Subject: CN=69fb0702-1707
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:db:31:0e:17:21:69:ae:b4:3c:ef:ea:84:c4:
1d:f4:73:d8:b0:e3:30:f3:bf:71:6b:43:28:4a:2b:
95:ef:32:19:e6:70:85:52:dc:00:b0:97:45:94:c5:
40:66:28:b8:e8:ca:7a:20:95:24:d8:ba:2b:c8:a8:
62:11:4a:72:2a:a4:82:ec:de:22:3d:aa:5b:d8:b8:
16:9c:e6:7d:7a:b2:6b:8d:c8:4f:2e:c4:d2:16:58:
b8:8f:c7:6f:5a:fc:37:08:d3:86:02:56:87:b4:ea:
44:eb:d9:6d:a1:46:4d:53:2a:53:d7:be:14:6d:c6:
bd:fb:f3:bd:e9:90:28:3a:48:c3:1a:de:97:a3:26:
d8:72:94:b1:a2:21:79:d8:49:06:1f:b1:03:3c:29:
37:d2:91:a0:c4:85:ce:46:ce:cf:26:17:92:e0:0d:
06:f8:1e:99:ae:45:14:85:ed:b0:49:ad:2e:b9:73:
75:87:3d:d5:c8:54:c2:f0:a9:ff:5a:42:6a:d5:c4:
a6:e0:d9:34:33:8d:8d:aa:de:7a:80:5e:47:7c:a0:
00:c8:ca:ef:3b:c3:b3:0b:46:ec:e6:54:3e:cc:73:
73:4c:0d:e7:75:da:d6:c8:3d:89:66:0a:0b:0b:50:
50:bb:2b:9f:d5:86:16:30:b0:f2:05:91:f8:67:82:
4d:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:C8:9D:1B:F8:5E:F0:E9:34:40:75:5A:8E:F9:85:E3:43:F5:72:6D
X509v3 Authority Key Identifier:
keyid:27:A8:1B:05:CA:4A:F5:11:C7:86:32:BB:55:B9:4F:AE:F4:71:C8:E5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F369A67F/DABFABF60FC111F09ECD7C73762E951A/J6gbBcpK9RHHhjK7VblPrvRxyOU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/J6gbBcpK9RHHhjK7VblPrvRxyOU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F369A67F/DABFABF60FC111F09ECD7C73762E951A/501F896C492C11F1A00643D3CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.221.252.0/22
Signature Algorithm: sha256WithRSAEncryption
a4:48:dd:53:90:5c:a6:aa:5c:f9:67:06:71:db:e8:67:7d:2b:
df:10:69:f3:fb:b2:40:f1:c8:27:6d:40:11:f0:eb:9d:05:02:
db:4f:2d:99:c4:1c:6e:ed:86:35:21:14:6c:da:24:7e:a8:43:
4f:2a:7c:a1:03:67:8d:75:be:2e:17:ac:ee:32:da:c4:c4:3c:
81:08:90:d5:82:dd:e8:15:82:40:c1:f7:e4:0b:7e:f3:f3:ea:
86:5e:db:74:17:ce:b5:a8:37:b3:c3:3d:79:f3:22:5c:c5:79:
bd:0c:59:89:f1:e5:10:3c:1b:75:ba:cd:38:e4:47:7f:7f:16:
00:db:6b:36:45:71:01:ea:8a:db:1f:24:ba:78:99:fe:52:ae:
30:75:ec:3e:37:5a:5e:cd:b2:d2:77:d5:3e:c3:9a:d5:44:7a:
a8:5d:a4:11:2e:b6:a9:65:f3:e8:6e:45:27:b9:83:42:ad:5e:
c4:1f:97:ea:30:4a:a6:bb:bb:d4:ed:53:08:f2:fd:c6:ba:53:
cd:13:61:c6:18:26:4e:0c:65:c8:b5:9b:bf:2b:7b:9b:00:cb:
e6:58:94:02:4c:8d:53:a6:da:08:5d:65:b0:e4:24:6b:a1:2b:
b7:0c:07:07:e9:0a:46:67:d1:5c:e7:d2:21:87:99:8c:72:1b:
4d:53:0b:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 7 22:15:57 2026 by rpki-client