Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367FECC/449EE63EEA3E11EB941D9B39D8A014CE/2D74E6CE2CDE11F1B13255A8DAE4EC9C.roa
File: 2D74E6CE2CDE11F1B13255A8DAE4EC9C.roa (raw, json)
Hash identifier: +81hzYpM3W36exbMJDzXr2Ri1//pFW7oRixW0r8/AJY=
Subject key identifier: 1F:2C:87:11:CA:DA:79:C4:AB:74:64:6D:CD:34:40:75:10:84:E2:1C
Certificate issuer: /CN=F367FECCAF/serialNumber=D50B711CD77CF359183D3FDEE58A9954B6CF7708
Certificate serial: 06E5
Authority key identifier: D5:0B:71:1C:D7:7C:F3:59:18:3D:3F:DE:E5:8A:99:54:B6:CF:77:08
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/1QtxHNd881kYPT_e5YqZVLbPdwg.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367FECC/449EE63EEA3E11EB941D9B39D8A014CE/2D74E6CE2CDE11F1B13255A8DAE4EC9C.roa
Signing time: Tue 31 Mar 2026 08:46:59 +0000
ROA not before: Tue 31 Mar 2026 08:46:54 +0000
ROA not after: Mon 31 Mar 2036 08:46:54 +0000
asID: 328210
IP address blocks: 102.128.144.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367FECC/449EE63EEA3E11EB941D9B39D8A014CE/1QtxHNd881kYPT_e5YqZVLbPdwg.crl
rsync://rpki.afrinic.net/repository/member_repository/F367FECC/449EE63EEA3E11EB941D9B39D8A014CE/1QtxHNd881kYPT_e5YqZVLbPdwg.mft
rsync://rpki.afrinic.net/repository/afrinic/1QtxHNd881kYPT_e5YqZVLbPdwg.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 00:07:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1765 (0x6e5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367FECCAF, serialNumber=D50B711CD77CF359183D3FDEE58A9954B6CF7708
Validity
Not Before: Mar 31 08:46:54 2026 GMT
Not After : Mar 31 08:46:54 2036 GMT
Subject: CN=69cb8a02-2f81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:1e:6d:1f:2e:26:a5:4b:8a:89:c0:ae:94:e3:
9d:0d:9d:00:58:55:64:ea:06:59:42:75:50:f0:4a:
e8:72:51:59:e7:40:ed:1a:13:47:e4:f8:8c:c6:eb:
b9:f1:70:12:33:e5:d8:dd:1c:29:e6:0e:03:7d:61:
bc:b4:37:4b:c1:b8:86:ca:25:6d:b1:ad:bc:de:98:
f4:9b:a7:47:f3:41:2b:f3:62:3e:a1:c6:e1:35:ec:
e4:c0:9f:e3:08:c0:f8:88:cd:01:59:32:24:b8:cb:
82:dd:56:eb:ff:25:cd:6e:ad:13:9c:8e:c3:a2:3f:
2f:16:6c:12:2d:34:00:41:d6:b1:f8:d2:a4:f4:3a:
9e:13:5c:1c:6f:02:58:e7:63:c1:e1:d5:95:ba:77:
bb:35:b0:8a:91:dd:64:33:62:dc:5e:5c:41:4a:0a:
1b:6d:38:b4:d0:96:b8:71:db:d6:4e:92:69:91:0f:
ed:5f:8d:df:38:ba:ea:4b:10:76:c2:d8:65:48:38:
f2:66:45:6b:97:52:86:67:31:67:bc:d9:15:df:16:
c1:21:ff:87:99:52:c3:4f:35:f2:3b:97:3f:01:fb:
df:a5:d7:b8:bc:54:1e:96:fa:cf:92:3e:ae:e7:d3:
a7:68:a8:c6:81:ab:6f:74:25:2f:c2:ee:43:82:82:
1b:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:2C:87:11:CA:DA:79:C4:AB:74:64:6D:CD:34:40:75:10:84:E2:1C
X509v3 Authority Key Identifier:
keyid:D5:0B:71:1C:D7:7C:F3:59:18:3D:3F:DE:E5:8A:99:54:B6:CF:77:08
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367FECC/449EE63EEA3E11EB941D9B39D8A014CE/1QtxHNd881kYPT_e5YqZVLbPdwg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/1QtxHNd881kYPT_e5YqZVLbPdwg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367FECC/449EE63EEA3E11EB941D9B39D8A014CE/2D74E6CE2CDE11F1B13255A8DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.128.144.0/20
Signature Algorithm: sha256WithRSAEncryption
3e:28:7e:2d:d2:b4:e1:57:c4:28:61:8b:e5:f3:d6:fc:ee:52:
15:95:24:e5:34:e0:a3:9f:f4:93:19:5a:ea:0c:37:76:e9:c7:
79:37:df:b6:e4:33:47:de:dd:9b:31:d1:42:fc:ee:d5:a9:15:
5c:7c:77:6c:25:ee:ca:fa:60:19:cb:10:74:1d:3a:dc:45:0d:
c6:9e:a8:59:be:bb:97:e9:23:37:20:9e:d5:1b:4e:b0:c7:44:
7d:d4:35:1e:b5:2b:39:11:7f:59:3c:43:5e:3a:8e:86:f4:15:
c4:87:c3:8c:b2:45:ea:f0:1d:63:5c:82:84:d1:0a:8d:82:51:
0f:25:d1:82:5e:44:8b:05:08:f3:c1:3e:4d:13:4b:89:2a:be:
26:3a:b8:e6:63:d9:fc:3f:79:43:fe:d5:8e:dd:fa:87:b6:2e:
e8:d3:8f:59:1c:50:5e:73:ac:84:41:f8:ca:a5:e8:e8:de:01:
f8:a9:cb:6b:4b:8d:c6:da:ad:5a:67:5d:27:fd:2a:61:fa:ea:
cf:b4:c0:45:07:a5:48:98:eb:72:9b:08:e8:03:94:9d:f3:79:
4d:7b:13:0c:63:e2:3a:a2:ad:0e:2c:f0:cd:93:43:9c:08:35:
51:4e:14:62:50:af:6f:47:14:63:16:88:d9:1d:cf:e1:92:6c:
fb:51:72:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 09:29:08 2026 by rpki-client