Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F366A61A/7578EB6A386511EFA61FC86B762E951A/973BB7C6631711F1BCDFE1FFCE1D38B0.roa
File: 973BB7C6631711F1BCDFE1FFCE1D38B0.roa (raw, json)
Hash identifier: sImt8cmgbaJqZXXZzRlb5Ms2n0/AxBr/6lNtnsye+fI=
Subject key identifier: 95:89:8C:0D:3C:A0:07:F1:95:58:9A:D3:EC:D9:63:94:60:31:F6:9F
Certificate issuer: /CN=F366A61AAF/serialNumber=31813322C9B9A2BAFD7C7AF5CE0F4FF874D9CDA1
Certificate serial: 02E4
Authority key identifier: 31:81:33:22:C9:B9:A2:BA:FD:7C:7A:F5:CE:0F:4F:F8:74:D9:CD:A1
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/MYEzIsm5orr9fHr1zg9P-HTZzaE.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F366A61A/7578EB6A386511EFA61FC86B762E951A/973BB7C6631711F1BCDFE1FFCE1D38B0.roa
Signing time: Mon 08 Jun 2026 08:54:00 +0000
ROA not before: Mon 08 Jun 2026 08:53:55 +0000
ROA not after: Wed 31 Dec 2036 08:53:55 +0000
asID: 328943
IP address blocks: 102.218.84.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F366A61A/7578EB6A386511EFA61FC86B762E951A/MYEzIsm5orr9fHr1zg9P-HTZzaE.crl
rsync://rpki.afrinic.net/repository/member_repository/F366A61A/7578EB6A386511EFA61FC86B762E951A/MYEzIsm5orr9fHr1zg9P-HTZzaE.mft
rsync://rpki.afrinic.net/repository/afrinic/MYEzIsm5orr9fHr1zg9P-HTZzaE.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 14 Jun 2026 04:16:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 740 (0x2e4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F366A61AAF, serialNumber=31813322C9B9A2BAFD7C7AF5CE0F4FF874D9CDA1
Validity
Not Before: Jun 8 08:53:55 2026 GMT
Not After : Dec 31 08:53:55 2036 GMT
Subject: CN=6a268328-fd0c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:72:f0:39:66:b0:ff:c1:04:91:8b:67:eb:cf:
26:19:af:b9:9f:a8:be:7e:00:a3:d3:4e:0c:71:9c:
61:64:74:41:fc:10:74:92:32:c1:8b:9e:ec:90:db:
86:a8:68:35:56:4d:f4:de:e2:3d:ca:f2:4f:e5:19:
36:dd:d0:be:dd:4e:d8:39:68:fc:b8:23:99:0a:4b:
eb:4a:53:b6:f6:6d:85:4c:8f:cb:30:29:96:93:bd:
1c:a0:31:d6:79:a1:be:2d:aa:4d:cd:6a:43:c1:f4:
bd:61:36:cf:f7:16:a5:b5:cb:a0:fe:17:47:e8:22:
3d:2a:57:63:29:d4:db:3f:dd:8e:ba:5a:d2:11:c0:
c7:98:0a:10:cc:cc:41:62:e1:6f:61:74:2e:d8:0a:
1e:28:68:86:01:31:b0:46:ec:70:33:22:1c:68:6b:
70:cf:44:e6:b5:a7:df:03:2e:98:f8:79:0f:7b:1d:
e1:dd:83:10:6e:8c:6d:cc:f2:33:22:6e:49:c0:53:
38:8b:f0:d6:b3:f6:33:f1:ea:13:64:14:06:6d:17:
94:15:b9:10:87:73:37:5f:57:f1:64:50:6d:79:1e:
59:2a:21:e9:06:d6:8b:60:28:8f:6e:c1:89:11:ce:
ad:70:0b:c7:4f:9d:6d:06:42:54:e9:37:49:6c:95:
31:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:89:8C:0D:3C:A0:07:F1:95:58:9A:D3:EC:D9:63:94:60:31:F6:9F
X509v3 Authority Key Identifier:
keyid:31:81:33:22:C9:B9:A2:BA:FD:7C:7A:F5:CE:0F:4F:F8:74:D9:CD:A1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F366A61A/7578EB6A386511EFA61FC86B762E951A/MYEzIsm5orr9fHr1zg9P-HTZzaE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/MYEzIsm5orr9fHr1zg9P-HTZzaE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F366A61A/7578EB6A386511EFA61FC86B762E951A/973BB7C6631711F1BCDFE1FFCE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.218.84.0/22
Signature Algorithm: sha256WithRSAEncryption
d6:5b:28:ee:f1:f0:2d:16:ba:60:96:43:f7:4e:6a:9a:4a:87:
a0:26:11:42:88:57:5e:be:58:0c:c1:57:82:40:c5:aa:7b:65:
4b:58:e5:40:b8:0c:f2:9c:dc:dd:fe:80:10:41:58:b5:cf:3f:
58:9d:95:87:d3:56:36:1a:4f:4f:8a:51:85:9f:bd:84:16:39:
1c:12:a7:f5:c2:ed:53:d8:5b:4c:a5:6b:49:a7:b1:51:f7:22:
bc:ba:78:49:e2:98:f8:5d:c2:53:56:89:b1:13:ae:7a:99:59:
8e:9e:55:c2:59:a8:94:f5:d5:62:9a:fd:2e:c6:4b:d1:58:43:
4a:74:57:14:d1:f5:5a:07:62:35:f4:41:2c:3d:7d:74:a3:1a:
8c:3a:d2:0e:f6:3e:9d:50:b2:d0:6d:ba:87:06:b2:f2:65:36:
fe:64:4c:c3:c7:44:03:e0:18:13:37:f8:60:c1:84:48:8a:34:
2f:00:37:c1:eb:eb:12:ee:e3:ea:e9:87:07:64:a6:7f:86:16:
92:bf:b6:9c:13:ac:88:b2:8f:14:41:ab:f0:bc:8c:5d:10:11:
58:31:0f:f7:5d:f2:c0:b4:7c:09:79:67:27:61:74:7a:78:5a:
cb:0f:ed:2c:37:b6:b0:d5:86:62:c9:73:1c:30:6e:7d:64:f6:
b5:3a:9a:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 05:54:10 2026 by rpki-client