Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F361E497/708176AAF93211EC88DB648CF1222468/19A88EA6194311F185CD9ACEDAE4EC9C.roa
File: 19A88EA6194311F185CD9ACEDAE4EC9C.roa (raw, json)
Hash identifier: iT/wmFfprlQBX8zJwKiHwKKBJB8V5gDATvMI5LFFEYU=
Subject key identifier: 0B:BA:77:EA:52:15:4A:5A:48:DB:26:3A:BF:F3:E2:CC:E1:57:32:59
Certificate issuer: /CN=F361E497AF/serialNumber=24F4E354DDDEC8913823B0F92407A534ABF3F982
Certificate serial: 0572
Authority key identifier: 24:F4:E3:54:DD:DE:C8:91:38:23:B0:F9:24:07:A5:34:AB:F3:F9:82
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JPTjVN3eyJE4I7D5JAelNKvz-YI.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F361E497/708176AAF93211EC88DB648CF1222468/19A88EA6194311F185CD9ACEDAE4EC9C.roa
Signing time: Fri 06 Mar 2026 09:59:01 +0000
ROA not before: Fri 06 Mar 2026 09:58:57 +0000
ROA not after: Thu 06 Mar 2036 09:58:57 +0000
asID: 329084
IP address blocks: 102.215.153.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F361E497/708176AAF93211EC88DB648CF1222468/JPTjVN3eyJE4I7D5JAelNKvz-YI.crl
rsync://rpki.afrinic.net/repository/member_repository/F361E497/708176AAF93211EC88DB648CF1222468/JPTjVN3eyJE4I7D5JAelNKvz-YI.mft
rsync://rpki.afrinic.net/repository/afrinic/JPTjVN3eyJE4I7D5JAelNKvz-YI.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 28 Mar 2026 00:07:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1394 (0x572)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F361E497AF, serialNumber=24F4E354DDDEC8913823B0F92407A534ABF3F982
Validity
Not Before: Mar 6 09:58:57 2026 GMT
Not After : Mar 6 09:58:57 2036 GMT
Subject: CN=69aaa565-2ac7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:ec:16:8c:1d:85:34:aa:39:ea:5a:9a:d1:b8:
07:f7:b3:91:0a:55:0e:9a:cf:f9:d7:c3:27:72:41:
02:d9:72:fc:41:51:d8:73:30:40:b6:c1:3d:9b:10:
1b:6d:cc:c3:31:34:50:88:3e:e1:bb:b3:42:2d:f3:
09:bf:ea:f7:ea:5e:bf:6a:de:88:46:1f:5a:ad:ee:
6f:af:a1:56:12:94:1a:70:1d:fe:c8:0e:58:56:20:
19:0d:17:70:c5:7f:62:df:7f:87:e6:9c:66:aa:6d:
d7:16:90:d8:03:f7:67:a6:05:b1:4a:92:bb:a7:8e:
cc:b1:0c:0b:b8:ec:3f:20:fd:46:d5:55:32:5f:30:
26:ff:5d:d8:de:44:a1:ec:3a:e9:14:91:a8:5e:a7:
88:dc:6f:57:83:50:ff:b1:80:bc:98:ef:80:a2:dd:
3f:a8:bb:6e:95:fc:0d:0f:1e:ea:9b:1b:36:c7:9e:
31:f6:8d:b0:be:80:93:51:18:c1:d7:eb:7f:9d:9c:
5b:cd:28:aa:cd:10:6f:55:11:b8:a0:18:63:33:53:
69:81:60:fd:19:dc:3f:89:04:81:dc:a5:67:62:13:
1c:e1:1b:0d:52:2f:af:43:64:cf:c2:14:c8:44:15:
df:9e:a5:49:39:36:6f:9c:3a:21:0c:7e:fb:23:d0:
b5:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:BA:77:EA:52:15:4A:5A:48:DB:26:3A:BF:F3:E2:CC:E1:57:32:59
X509v3 Authority Key Identifier:
keyid:24:F4:E3:54:DD:DE:C8:91:38:23:B0:F9:24:07:A5:34:AB:F3:F9:82
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F361E497/708176AAF93211EC88DB648CF1222468/JPTjVN3eyJE4I7D5JAelNKvz-YI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JPTjVN3eyJE4I7D5JAelNKvz-YI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F361E497/708176AAF93211EC88DB648CF1222468/19A88EA6194311F185CD9ACEDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.215.153.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:63:64:09:93:dc:b6:22:38:36:a1:20:d5:b9:c4:04:00:da:
0c:63:32:a4:61:d7:32:26:b8:f7:45:2b:b5:c7:43:af:20:64:
79:e9:6e:f0:a3:90:b1:6e:8f:67:3f:58:c7:06:c1:44:fa:ff:
55:34:4e:7b:25:49:06:1b:cd:7c:e2:7a:f6:6f:d7:a5:ae:be:
8c:14:f8:a1:54:79:3b:3f:9b:79:28:60:26:6c:f7:10:25:18:
7a:dd:bc:59:e3:6a:3a:f1:c8:29:cb:bd:c2:05:43:58:13:d6:
fb:30:ad:9a:ea:da:c1:21:f1:b9:b6:44:44:2f:90:e9:f9:6d:
32:48:dd:01:26:18:06:8a:d2:93:d4:f6:fb:58:43:d3:8d:5e:
88:f6:9d:c8:93:a9:b5:53:36:53:fe:5e:12:53:9e:f7:75:fb:
af:ab:c5:9a:11:d6:90:93:e5:7d:3a:26:64:06:7d:df:4a:6d:
e6:0b:42:0d:e4:2c:56:8c:ee:48:e4:7c:67:dd:1a:c8:32:42:
b7:9a:90:d2:35:01:87:65:03:2b:80:bb:a9:39:66:af:a4:ee:
40:8b:bc:2b:aa:75:ee:6c:6e:37:32:68:80:ec:da:ca:43:00:
bf:f5:cf:c8:b0:88:e6:a5:b2:48:a2:0e:71:6e:74:15:3e:f8:
23:eb:ce:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 20:55:39 2026 by rpki-client