Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/D4FCE8D0FE7911F0A94F90B7DAE4EC9C.roa
File: D4FCE8D0FE7911F0A94F90B7DAE4EC9C.roa (raw, json)
Hash identifier: LpVUDpN3zZ1w6ptE0V9TWzphg+xIi5Gfhx19Sx0oldE=
Subject key identifier: F6:A6:11:FD:0C:6D:65:4C:2E:D7:8C:3C:0B:0E:B5:32:42:D1:B0:FD
Certificate issuer: /CN=F367DFA4AF/serialNumber=97C90E25212D887CF9E1DE6FDDF551BA812FA139
Certificate serial: 08AD
Authority key identifier: 97:C9:0E:25:21:2D:88:7C:F9:E1:DE:6F:DD:F5:51:BA:81:2F:A1:39
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/D4FCE8D0FE7911F0A94F90B7DAE4EC9C.roa
Signing time: Sat 31 Jan 2026 07:52:47 +0000
ROA not before: Sat 31 Jan 2026 07:52:42 +0000
ROA not after: Mon 02 Mar 2026 07:52:42 +0000
asID: 22724
IP address blocks: 102.177.171.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2221 (0x8ad)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367DFA4AF, serialNumber=97C90E25212D887CF9E1DE6FDDF551BA812FA139
Validity
Not Before: Jan 31 07:52:42 2026 GMT
Not After : Mar 2 07:52:42 2026 GMT
Subject: CN=697db4ce-b27e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:1c:69:38:be:52:03:16:c6:5a:62:59:2e:ad:
89:b3:fc:c7:82:31:3e:92:f1:6e:b2:8a:f7:ce:2f:
53:63:4f:62:16:1b:94:db:fc:1c:fb:ac:31:13:44:
93:9d:5e:3d:1f:43:17:46:b6:4e:4e:c0:1f:98:4e:
ef:86:04:3e:89:93:ef:4c:85:19:95:65:96:8e:df:
42:13:94:6a:3c:ae:47:4b:e2:7f:71:71:f5:14:e9:
76:91:be:0f:0e:26:ee:1b:94:61:e8:90:36:e7:83:
09:b1:4e:ad:20:7c:9e:f1:f6:e6:2a:39:8f:1a:2b:
0c:59:1b:79:80:d0:4c:d5:54:3d:c8:33:a9:7c:74:
b3:56:0e:7f:36:54:c2:26:15:6a:ea:dc:47:95:4b:
63:8c:bf:b1:e5:0a:e3:8c:85:ca:fa:d6:18:79:53:
fb:f4:5a:e7:0a:01:db:b5:06:de:08:81:11:58:79:
db:1f:1c:25:d5:51:5c:22:ab:55:92:87:4f:09:11:
9d:0d:29:f0:b0:ed:66:50:07:df:95:78:18:13:df:
6d:38:a5:c8:dc:2b:f7:f7:c4:27:29:5d:f6:d3:34:
8d:1b:95:bb:25:23:9f:5c:18:8c:1e:e5:aa:c7:a9:
1f:74:43:d8:48:d7:9a:cf:89:30:67:1a:b0:bb:5a:
f5:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:A6:11:FD:0C:6D:65:4C:2E:D7:8C:3C:0B:0E:B5:32:42:D1:B0:FD
X509v3 Authority Key Identifier:
keyid:97:C9:0E:25:21:2D:88:7C:F9:E1:DE:6F:DD:F5:51:BA:81:2F:A1:39
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/D4FCE8D0FE7911F0A94F90B7DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.177.171.0/24
Signature Algorithm: sha256WithRSAEncryption
d3:8d:b1:7d:38:eb:47:00:8b:d7:be:4a:9b:ab:0f:bc:80:b6:
84:a4:48:62:e6:b3:6c:93:88:44:2d:8d:51:7e:d2:31:d5:2e:
84:b5:9f:78:fa:af:55:94:85:50:f2:d7:f9:2b:67:3d:cc:47:
76:a3:3e:3b:1a:1f:e8:2e:39:dc:6a:dc:74:f8:8d:ac:a4:de:
3a:fe:f8:18:c0:18:18:49:dd:c1:d8:62:e0:5e:89:8a:d0:06:
95:68:dc:2a:5a:4a:84:a1:49:3a:2a:eb:1c:85:92:a4:54:50:
28:ce:12:d3:f1:b5:aa:1a:ed:6c:e4:e5:73:f9:9e:6a:72:e5:
e6:ce:49:dc:a1:8f:8b:28:8a:32:82:b4:1a:93:d7:66:cc:5b:
58:4a:c7:16:69:ea:1d:3b:1e:4c:c8:2b:cf:51:a6:7a:de:49:
b4:9a:67:cb:28:a1:fe:ff:a8:9d:d1:60:79:79:68:5d:0d:94:
fd:cf:83:52:b7:f3:94:c2:44:06:c0:d0:99:b7:43:46:41:9f:
8c:22:be:e4:a2:51:f8:ee:27:09:36:43:27:e0:b1:7e:76:fe:
d5:fa:f1:ca:ac:78:10:bf:6b:e2:6d:97:c9:1b:2d:bf:90:6b:
a0:8b:09:6d:53:3a:1c:ab:ec:fd:08:7a:f5:9f:2c:98:89:4b:
67:9e:f1:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 13:13:07 2026 by rpki-client