Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367E157/E62CA68A0B3611F19D79027CDAE4EC9C/E2AB27880B3711F191969680DAE4EC9C.roa
File: E2AB27880B3711F191969680DAE4EC9C.roa (raw, json)
Hash identifier: TV2HllXtBfZyxNjiNtlEzte8OfMxx+gLKAKoslmR1is=
Subject key identifier: 3B:CA:FE:E3:FF:63:AD:59:37:16:47:06:04:6A:E4:C5:73:F5:7A:FD
Certificate issuer: /CN=F367E157AF/serialNumber=7EC14D7C497690DCB0C933DF33D6A68B1B992A8F
Certificate serial: 02
Authority key identifier: 7E:C1:4D:7C:49:76:90:DC:B0:C9:33:DF:33:D6:A6:8B:1B:99:2A:8F
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/fsFNfEl2kNywyTPfM9amixuZKo8.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367E157/E62CA68A0B3611F19D79027CDAE4EC9C/E2AB27880B3711F191969680DAE4EC9C.roa
Signing time: Mon 16 Feb 2026 13:03:28 +0000
ROA not before: Mon 16 Feb 2026 13:03:24 +0000
ROA not after: Sat 16 Feb 2030 13:03:24 +0000
asID: 329580
IP address blocks: 102.205.88.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367E157/E62CA68A0B3611F19D79027CDAE4EC9C/fsFNfEl2kNywyTPfM9amixuZKo8.crl
rsync://rpki.afrinic.net/repository/member_repository/F367E157/E62CA68A0B3611F19D79027CDAE4EC9C/fsFNfEl2kNywyTPfM9amixuZKo8.mft
rsync://rpki.afrinic.net/repository/afrinic/fsFNfEl2kNywyTPfM9amixuZKo8.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 04 Mar 2026 00:07:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367E157AF, serialNumber=7EC14D7C497690DCB0C933DF33D6A68B1B992A8F
Validity
Not Before: Feb 16 13:03:24 2026 GMT
Not After : Feb 16 13:03:24 2030 GMT
Subject: CN=699315a0-7794
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:55:39:1e:f2:78:0d:a7:66:b7:88:08:8d:b1:
02:78:ab:44:ee:0c:3f:1f:68:3e:c7:b9:11:5a:ca:
12:1a:d5:7a:13:d2:1b:8d:9d:df:86:cd:ee:84:6e:
8f:a9:4a:ed:97:13:fc:94:e9:1e:ef:8c:b4:79:a8:
eb:df:72:18:51:cb:ce:6c:61:63:0f:78:d4:a2:06:
57:cb:60:c4:bb:03:b3:7e:b6:8c:88:c9:e2:25:1d:
c3:00:c8:c9:73:66:49:49:60:f8:ab:84:64:20:a3:
64:88:c8:5d:68:11:75:84:6c:3e:47:61:60:19:aa:
dc:55:4c:1d:bf:37:e0:36:3d:40:d5:39:d8:83:17:
44:cc:fb:f2:d9:43:0c:59:d2:7a:17:09:7c:6c:c4:
27:55:c4:da:3e:e3:d5:ef:82:8c:9a:f8:83:b1:7f:
56:31:95:0a:8d:54:91:8b:4c:5d:d3:0f:ff:b8:a1:
03:64:86:4f:f1:72:8e:ba:91:0f:4e:70:df:ed:34:
03:6f:8c:95:a2:bb:e3:73:53:ba:cd:29:4f:de:ca:
c0:48:62:b8:86:9f:68:96:40:30:17:19:db:fc:30:
a5:69:63:e4:09:a4:58:7f:0a:68:03:5e:01:83:0f:
cd:3d:71:20:6c:ee:dd:c7:aa:56:55:4d:25:49:ae:
58:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:CA:FE:E3:FF:63:AD:59:37:16:47:06:04:6A:E4:C5:73:F5:7A:FD
X509v3 Authority Key Identifier:
keyid:7E:C1:4D:7C:49:76:90:DC:B0:C9:33:DF:33:D6:A6:8B:1B:99:2A:8F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367E157/E62CA68A0B3611F19D79027CDAE4EC9C/fsFNfEl2kNywyTPfM9amixuZKo8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/fsFNfEl2kNywyTPfM9amixuZKo8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367E157/E62CA68A0B3611F19D79027CDAE4EC9C/E2AB27880B3711F191969680DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.205.88.0/22
Signature Algorithm: sha256WithRSAEncryption
78:b3:c2:a3:97:df:32:3b:ff:f2:bc:d0:2a:21:78:ff:a7:53:
36:e2:a2:b9:07:e3:62:5a:a3:76:eb:4b:6b:ac:cd:2f:39:06:
47:2a:5f:35:65:9f:5b:51:be:33:24:2a:5a:de:8b:33:e3:20:
7d:62:ee:63:be:8b:80:cd:28:bd:c5:48:98:df:45:8c:04:6e:
d0:65:7b:1d:ad:dc:db:98:80:2f:05:60:e6:a7:ef:7c:ad:c4:
ae:69:31:db:16:86:f9:35:05:3d:93:8f:79:51:78:30:da:0a:
6f:76:49:4b:3e:33:2d:40:f7:b7:7f:47:da:71:93:50:f3:31:
f5:05:c2:e0:fb:74:7f:66:7c:84:82:88:3f:45:8e:50:12:5a:
63:ee:ab:a8:cc:23:0b:39:c5:df:e0:1f:da:e5:a8:e0:21:03:
10:56:fd:89:48:1f:1d:a4:7b:00:c8:ba:8f:fb:27:aa:54:fc:
92:cb:c3:98:e3:56:25:49:39:9d:ca:3f:59:e4:e3:e3:59:cd:
25:5e:6e:2f:70:db:48:dd:10:b0:12:36:7b:de:17:c1:a6:d9:
bf:b5:7b:7f:4f:14:f2:31:3a:80:7c:f2:fc:de:5b:a5:ce:8b:
d5:27:ae:9c:42:ac:9f:64:20:a6:37:9c:1e:10:35:e3:43:22:
97:cc:75:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 12:54:26 2026 by rpki-client