Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/1E523E1A11C411F1A89019B7DAE4EC9C.roa
File: 1E523E1A11C411F1A89019B7DAE4EC9C.roa (raw, json)
Hash identifier: gsLJZlVdHNnz43T4ywtT5iwV1TsozdZfqwiZ/cDFTco=
Subject key identifier: D4:63:53:1A:07:49:6A:B3:3B:A3:5D:F8:2C:94:75:C0:14:79:C4:7A
Certificate issuer: /CN=F367DFA4AF/serialNumber=97C90E25212D887CF9E1DE6FDDF551BA812FA139
Certificate serial: 08DD
Authority key identifier: 97:C9:0E:25:21:2D:88:7C:F9:E1:DE:6F:DD:F5:51:BA:81:2F:A1:39
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/1E523E1A11C411F1A89019B7DAE4EC9C.roa
Signing time: Tue 24 Feb 2026 21:02:25 +0000
ROA not before: Tue 24 Feb 2026 21:02:20 +0000
ROA not after: Sun 01 Mar 2026 21:02:20 +0000
asID: 209242
IP address blocks: 102.177.189.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.crl
rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.mft
rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 01 Mar 2026 21:02:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2269 (0x8dd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367DFA4AF, serialNumber=97C90E25212D887CF9E1DE6FDDF551BA812FA139
Validity
Not Before: Feb 24 21:02:20 2026 GMT
Not After : Mar 1 21:02:20 2026 GMT
Subject: CN=699e11e0-b027
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:68:fb:3d:b5:05:82:94:06:47:ab:cb:5e:04:
b4:b4:fb:bb:db:d2:8f:5e:87:aa:0a:bd:53:89:4a:
9f:a2:5d:36:e7:e1:75:ea:c7:76:2e:51:21:48:7b:
8e:85:8a:7e:60:89:ab:7e:79:13:ec:82:99:93:58:
57:38:80:a5:86:e4:e9:24:6b:b5:48:12:26:07:63:
1f:90:28:25:78:c2:70:b6:18:ce:b2:6e:5c:93:62:
a8:b0:44:f0:bd:4b:33:9f:19:ef:ed:46:52:9d:6d:
0a:03:17:eb:ec:6c:f8:17:e6:2f:c4:2f:a7:30:43:
ca:1b:b9:8c:9a:d9:91:96:10:72:ed:99:9b:b5:33:
28:40:48:a6:2f:58:56:67:7a:b1:90:10:52:ff:23:
6c:d1:69:6a:b0:a2:08:b3:9a:a4:5a:be:18:ee:77:
51:54:b1:f2:20:c8:c2:76:22:c1:9e:15:47:18:9b:
24:39:5c:3b:ce:a9:e3:cb:84:58:30:cb:c8:21:fe:
1d:c4:76:1d:57:e4:1e:88:3a:07:3c:49:78:55:2a:
d8:47:a9:7d:08:7c:46:b2:ed:32:51:2f:06:3f:d3:
d2:51:26:ef:b1:70:a8:11:86:ea:84:eb:83:c6:11:
9f:47:44:42:2b:4f:9a:ab:cc:46:95:45:d5:53:9a:
18:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:63:53:1A:07:49:6A:B3:3B:A3:5D:F8:2C:94:75:C0:14:79:C4:7A
X509v3 Authority Key Identifier:
keyid:97:C9:0E:25:21:2D:88:7C:F9:E1:DE:6F:DD:F5:51:BA:81:2F:A1:39
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/1E523E1A11C411F1A89019B7DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.177.189.0/24
Signature Algorithm: sha256WithRSAEncryption
97:95:38:54:b7:17:67:e6:d0:63:bc:5b:60:0b:af:44:d5:98:
74:21:ba:5f:cb:df:d2:1f:21:b5:86:b9:6c:17:a1:7f:fe:ce:
76:6d:f3:c7:61:cc:a2:54:da:04:11:a2:cd:e1:d8:9d:cf:5a:
55:54:d0:a9:f6:cd:ac:1f:ab:2f:b1:9b:93:bf:65:a7:cf:0e:
aa:a2:af:98:ae:65:2c:75:75:df:8c:50:3a:19:bc:92:08:90:
51:f5:68:d3:7e:a4:c5:7d:92:e9:23:ec:71:30:e9:26:77:b7:
17:b9:c9:62:b8:55:3f:77:e1:d0:ee:e8:84:1e:45:e6:cc:e6:
39:0a:3f:68:5b:ac:b2:fe:b7:3e:3c:d4:9d:e1:da:fb:bf:31:
31:ba:86:80:4f:8e:64:f8:c6:78:77:2c:72:d5:be:bc:51:0a:
5e:03:29:f3:2a:04:03:03:c8:3a:f7:aa:4f:4d:f7:cb:1a:55:
35:ab:c5:3e:e2:d9:70:3a:38:c5:70:b3:76:52:19:72:a5:98:
84:1a:c9:fd:62:81:97:15:4b:bf:cb:85:60:60:6a:d1:94:8d:
e1:1f:35:f3:97:2c:21:51:69:90:59:28:f1:f7:b8:26:b3:8c:
8a:50:c4:4e:96:68:03:61:ef:80:b6:0c:1f:85:b5:99:8f:85:
e3:10:fa:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 16:24:27 2026 by rpki-client