Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/F37CDD6663EF11F19D9D91A1CE1D38B0.roa
File: F37CDD6663EF11F19D9D91A1CE1D38B0.roa (raw, json)
Hash identifier: B67fPbeNoppqk9hSAfJscFe0hcg9inACXlUcJcipURA=
Subject key identifier: 39:A9:EF:14:01:A2:3E:DE:9B:2D:AE:EB:66:6D:15:40:81:4A:54:0B
Certificate issuer: /CN=F3696E5FAF/serialNumber=5375CF4CA1643B08C341BDA79D8BE105BDC3C48B
Certificate serial: 061D
Authority key identifier: 53:75:CF:4C:A1:64:3B:08:C3:41:BD:A7:9D:8B:E1:05:BD:C3:C4:8B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/U3XPTKFkOwjDQb2nnYvhBb3DxIs.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/F37CDD6663EF11F19D9D91A1CE1D38B0.roa
Signing time: Tue 09 Jun 2026 10:42:46 +0000
ROA not before: Tue 09 Jun 2026 10:42:42 +0000
ROA not after: Tue 31 Dec 2030 10:42:42 +0000
asID: 25818
IP address blocks: 102.177.122.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/U3XPTKFkOwjDQb2nnYvhBb3DxIs.crl
rsync://rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/U3XPTKFkOwjDQb2nnYvhBb3DxIs.mft
rsync://rpki.afrinic.net/repository/afrinic/U3XPTKFkOwjDQb2nnYvhBb3DxIs.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 15 Jun 2026 00:07:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1565 (0x61d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3696E5FAF, serialNumber=5375CF4CA1643B08C341BDA79D8BE105BDC3C48B
Validity
Not Before: Jun 9 10:42:42 2026 GMT
Not After : Dec 31 10:42:42 2030 GMT
Subject: CN=6a27ee26-d9b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:38:2e:95:84:71:5f:2e:8c:a7:38:1f:96:01:
53:d0:b9:4c:7f:dd:a1:b7:b3:f0:6e:2d:18:8a:b1:
43:7b:4e:4d:99:d9:0f:d7:de:55:ff:4d:df:cd:d1:
4f:8f:51:d3:c7:e8:35:7f:b2:c5:7c:b0:a7:74:fa:
a8:de:5b:6e:27:91:d3:c3:5e:19:a7:48:ce:cd:ec:
ad:f3:78:f9:62:7c:be:25:00:17:20:12:a3:98:3a:
27:a8:63:3c:cb:67:96:e6:a0:c5:ba:a9:80:15:52:
d8:3a:92:6c:f1:9e:ba:ab:00:2d:40:b6:b1:21:c9:
ea:8a:cc:23:25:64:3f:6d:17:6a:07:9e:05:4c:18:
99:84:6b:b3:a1:73:5b:b2:e1:ef:35:c1:b8:d0:62:
8c:6f:cb:31:b8:dd:3d:c8:63:96:9c:e6:7d:5b:80:
e0:49:e9:48:ca:5b:88:1c:3f:61:19:4c:4e:c0:7e:
d9:94:eb:79:07:b0:e4:21:e1:cd:d8:37:00:f6:61:
0e:df:77:da:cc:a0:7c:5b:22:3a:f2:c9:1f:bc:80:
a0:7a:1c:05:32:d6:9b:85:fb:4b:06:e0:c4:de:5d:
96:da:4c:26:2b:99:1e:38:0f:d9:56:2c:12:bb:63:
27:25:97:fc:42:fa:14:5a:50:dc:2e:44:8d:24:fe:
87:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:A9:EF:14:01:A2:3E:DE:9B:2D:AE:EB:66:6D:15:40:81:4A:54:0B
X509v3 Authority Key Identifier:
keyid:53:75:CF:4C:A1:64:3B:08:C3:41:BD:A7:9D:8B:E1:05:BD:C3:C4:8B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/U3XPTKFkOwjDQb2nnYvhBb3DxIs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/U3XPTKFkOwjDQb2nnYvhBb3DxIs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/F37CDD6663EF11F19D9D91A1CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.177.122.0/24
Signature Algorithm: sha256WithRSAEncryption
42:ed:a8:7f:53:16:a2:15:d1:e2:64:b1:85:a0:4f:2f:70:eb:
0b:ce:b6:a5:a3:c6:b9:d9:a7:8f:9f:d2:e2:bb:f7:a6:6b:13:
82:99:0b:a6:bd:df:8e:01:89:d6:7c:f9:2c:a2:00:24:bd:b6:
06:44:d8:a8:a8:84:0f:d4:14:fe:9e:01:fd:d5:ca:84:21:f6:
b7:2b:56:93:4a:a6:2e:4c:9f:34:a1:5c:ae:9d:4c:61:42:31:
d1:0b:f0:53:d0:e5:de:6e:fb:2c:b4:2c:bd:52:8a:c9:e2:8d:
0e:b7:93:74:6b:bd:db:1a:74:8b:04:ac:db:a6:57:25:40:45:
00:1c:e9:44:45:93:8c:6b:48:45:6a:9d:bd:7b:8c:2f:ba:40:
62:8d:1a:be:43:2a:09:ec:94:e4:3e:1d:10:6b:86:7e:05:bd:
e6:84:7a:4c:06:2a:63:58:03:58:6b:40:65:74:ba:5f:81:ce:
fb:c7:4a:04:fd:fe:77:5d:c0:d4:7a:2d:77:6c:fb:89:34:bf:
fb:c4:5c:1b:e3:41:1a:b4:29:56:81:d6:0d:f3:ed:61:79:b1:
36:0a:94:15:36:84:02:21:77:58:bb:fb:aa:bc:3a:a5:0c:95:
b8:24:65:06:95:32:be:a6:c2:5e:a0:4c:1c:a6:2f:8f:bd:96:
7c:8a:65:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 05:35:57 2026 by rpki-client