Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/5EDAF1C2646011F1947BD2B8CE1D38B0.roa
File: 5EDAF1C2646011F1947BD2B8CE1D38B0.roa (raw, json)
Hash identifier: XWqDFeNCooEzTEjyd8623ieUiJ9e7GChr05ilpQPAE4=
Subject key identifier: 37:0E:2F:83:F3:C3:99:5F:9E:52:B6:D6:F1:9A:A7:C9:5D:98:14:BD
Certificate issuer: /CN=F3696E5FAF/serialNumber=5375CF4CA1643B08C341BDA79D8BE105BDC3C48B
Certificate serial: 063E
Authority key identifier: 53:75:CF:4C:A1:64:3B:08:C3:41:BD:A7:9D:8B:E1:05:BD:C3:C4:8B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/U3XPTKFkOwjDQb2nnYvhBb3DxIs.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/5EDAF1C2646011F1947BD2B8CE1D38B0.roa
Signing time: Wed 10 Jun 2026 00:07:30 +0000
ROA not before: Wed 10 Jun 2026 00:00:25 +0000
ROA not after: Tue 31 Dec 2030 00:00:25 +0000
asID: 25818
IP address blocks: 102.177.118.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/U3XPTKFkOwjDQb2nnYvhBb3DxIs.crl
rsync://rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/U3XPTKFkOwjDQb2nnYvhBb3DxIs.mft
rsync://rpki.afrinic.net/repository/afrinic/U3XPTKFkOwjDQb2nnYvhBb3DxIs.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 15 Jun 2026 00:07:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1598 (0x63e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3696E5FAF, serialNumber=5375CF4CA1643B08C341BDA79D8BE105BDC3C48B
Validity
Not Before: Jun 10 00:00:25 2026 GMT
Not After : Dec 31 00:00:25 2030 GMT
Subject: CN=6a28aac2-b0c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:d5:a1:ce:74:46:c4:1d:b6:f5:9a:e6:58:51:
6a:1e:6d:ef:e8:a0:a0:08:df:0d:e9:6d:8f:f2:4c:
be:ee:f3:c2:e1:a3:1a:09:c0:b6:dc:14:f0:d2:76:
b8:0c:4a:99:fe:63:99:ce:80:25:32:83:f3:15:6c:
03:6e:c5:1e:cd:07:1d:e1:fc:84:bd:c0:96:f6:a9:
39:78:37:11:09:ff:64:84:73:0b:6d:35:f4:fd:90:
a6:29:22:77:ab:0c:82:23:8c:cf:cb:22:ae:72:0a:
27:a0:0c:b4:eb:1b:6d:2c:2d:21:d5:38:9f:72:48:
3c:39:08:d2:41:05:de:00:93:c3:0e:7d:56:38:85:
11:bc:4c:2d:7b:5c:d4:e1:bc:f1:a4:1b:8a:37:53:
4d:c9:57:d5:14:f8:1c:f2:bf:b4:3d:47:6d:75:86:
62:d5:d5:8c:79:2f:d4:30:a5:dd:5b:6b:e5:67:ff:
d6:d7:61:07:6c:a6:c1:f8:fc:75:be:d7:ff:96:3b:
82:ff:7f:c7:94:77:3e:8b:00:c5:e8:15:52:8b:3c:
a1:b2:d9:5e:0d:ab:7f:23:51:9d:17:5a:dd:cb:cb:
06:93:60:29:a4:a8:67:ce:ac:4b:42:37:e3:b3:08:
83:ad:9f:de:d1:37:7f:02:bf:9c:3a:5f:a8:cf:88:
af:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:0E:2F:83:F3:C3:99:5F:9E:52:B6:D6:F1:9A:A7:C9:5D:98:14:BD
X509v3 Authority Key Identifier:
keyid:53:75:CF:4C:A1:64:3B:08:C3:41:BD:A7:9D:8B:E1:05:BD:C3:C4:8B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/U3XPTKFkOwjDQb2nnYvhBb3DxIs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/U3XPTKFkOwjDQb2nnYvhBb3DxIs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/5EDAF1C2646011F1947BD2B8CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.177.118.0/24
Signature Algorithm: sha256WithRSAEncryption
ca:fb:92:10:f6:6d:2d:9c:d0:e7:71:38:43:9c:f2:11:4c:2d:
b9:5b:77:6b:dd:3a:eb:3f:ef:e7:d2:a9:da:cd:26:6f:9b:d8:
cf:b6:5e:fa:40:a1:37:94:50:13:6b:20:70:39:b4:44:e1:03:
4f:cc:2b:35:ff:20:75:65:ab:c2:96:e9:db:2a:bc:51:90:d2:
b0:76:f5:be:b5:8a:64:50:35:e5:23:a7:76:9c:c7:50:ac:63:
6a:d9:66:c7:4c:5b:9c:22:72:8d:88:7f:1d:c5:e6:5d:97:91:
2b:47:77:25:8a:87:8a:55:0d:74:14:d1:7a:d1:c8:b3:61:40:
a4:d5:21:a7:8d:b7:1a:36:e4:93:24:1f:2f:8e:fa:d4:af:10:
5f:aa:09:fe:06:db:b2:0f:83:16:2e:47:4e:78:77:64:57:c4:
13:64:7b:f8:f6:be:f8:87:b3:0a:8c:ba:47:ae:e0:bc:00:c8:
cc:68:35:61:e8:2a:4a:12:05:a8:33:0b:38:f0:92:03:6a:01:
1b:21:18:42:74:b6:9e:03:20:c5:96:34:57:5f:c6:fa:02:3b:
7a:09:2c:7c:1b:fe:0d:9f:5e:4c:35:e6:6b:66:b9:6c:33:c1:
3d:0c:95:e1:7a:94:21:ba:03:86:98:bc:36:ae:e8:4d:1c:81:
04:aa:a6:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 06:51:53 2026 by rpki-client