Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F361E497/708176AAF93211EC88DB648CF1222468/557664C6194311F1B11A7BD2DAE4EC9C.roa
File: 557664C6194311F1B11A7BD2DAE4EC9C.roa (raw, json)
Hash identifier: yplmAdthFwqQebNAnAE5zqAIX5/+jQBgiU7HKJRSzR0=
Subject key identifier: 55:BA:6C:94:9B:61:B3:EB:89:16:DD:06:0E:B4:09:FC:1F:B5:B7:9A
Certificate issuer: /CN=F361E497AF/serialNumber=24F4E354DDDEC8913823B0F92407A534ABF3F982
Certificate serial: 0576
Authority key identifier: 24:F4:E3:54:DD:DE:C8:91:38:23:B0:F9:24:07:A5:34:AB:F3:F9:82
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JPTjVN3eyJE4I7D5JAelNKvz-YI.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F361E497/708176AAF93211EC88DB648CF1222468/557664C6194311F1B11A7BD2DAE4EC9C.roa
Signing time: Fri 06 Mar 2026 10:00:41 +0000
ROA not before: Fri 06 Mar 2026 10:00:37 +0000
ROA not after: Thu 06 Mar 2036 10:00:37 +0000
asID: 329084
IP address blocks: 102.215.155.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F361E497/708176AAF93211EC88DB648CF1222468/JPTjVN3eyJE4I7D5JAelNKvz-YI.crl
rsync://rpki.afrinic.net/repository/member_repository/F361E497/708176AAF93211EC88DB648CF1222468/JPTjVN3eyJE4I7D5JAelNKvz-YI.mft
rsync://rpki.afrinic.net/repository/afrinic/JPTjVN3eyJE4I7D5JAelNKvz-YI.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 28 Mar 2026 00:07:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1398 (0x576)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F361E497AF, serialNumber=24F4E354DDDEC8913823B0F92407A534ABF3F982
Validity
Not Before: Mar 6 10:00:37 2026 GMT
Not After : Mar 6 10:00:37 2036 GMT
Subject: CN=69aaa5c9-7e71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:fe:24:ec:bb:6f:6e:51:59:c4:ca:0c:02:0d:
c6:f9:5f:58:ff:86:8d:71:66:be:82:59:f1:68:10:
33:5d:94:77:f2:c7:9f:39:77:bb:46:bb:81:f0:b9:
84:95:7a:d0:b7:dd:16:09:eb:62:d7:c3:29:92:f6:
a5:31:88:2f:95:e2:1b:d4:d5:df:24:16:4c:ee:39:
c2:5f:bf:9a:55:db:d1:44:2f:cb:4b:75:39:11:92:
d6:d7:bd:f5:84:3c:f1:f5:9f:02:fc:c6:e1:8e:5c:
74:35:bc:01:73:45:49:ef:3e:f2:ef:60:c2:69:95:
a5:4b:92:5c:d2:e7:d5:96:57:fb:54:04:a2:70:64:
39:a4:33:98:2d:25:9c:f7:55:10:85:07:0d:83:e6:
9c:e1:42:db:28:fd:e2:9f:0a:5d:0c:f9:7d:75:8c:
db:7e:0d:2a:60:28:b9:f1:d4:fc:38:e7:e0:45:dd:
86:ae:06:a8:dd:e3:a7:a8:49:13:d6:04:e3:90:14:
73:42:41:77:57:b7:46:00:ca:73:a5:e9:0a:43:fa:
13:ce:fd:a8:70:da:97:16:3c:1e:0c:3c:90:87:44:
35:97:c6:55:dc:a5:83:b4:64:bd:c3:d9:fe:6b:b3:
d7:b8:da:08:66:0c:ee:88:ca:99:5c:9a:26:59:1d:
ec:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:BA:6C:94:9B:61:B3:EB:89:16:DD:06:0E:B4:09:FC:1F:B5:B7:9A
X509v3 Authority Key Identifier:
keyid:24:F4:E3:54:DD:DE:C8:91:38:23:B0:F9:24:07:A5:34:AB:F3:F9:82
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F361E497/708176AAF93211EC88DB648CF1222468/JPTjVN3eyJE4I7D5JAelNKvz-YI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JPTjVN3eyJE4I7D5JAelNKvz-YI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F361E497/708176AAF93211EC88DB648CF1222468/557664C6194311F1B11A7BD2DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.215.155.0/24
Signature Algorithm: sha256WithRSAEncryption
ce:8c:6d:4c:0c:de:03:74:e3:20:17:13:3e:f5:8a:0d:21:d9:
93:c3:cd:9f:14:69:b5:d5:cf:85:ad:6c:fa:35:11:23:ea:76:
e4:fe:42:c8:24:69:21:09:5e:94:e4:bc:9c:42:60:3d:e0:88:
28:43:e5:22:e3:b4:97:42:3d:93:e7:be:28:7d:6c:be:2b:b5:
5b:d2:7c:65:8a:dd:66:30:b6:f9:df:75:6d:0f:2e:8b:de:c0:
59:2b:ab:e5:57:c2:df:ac:37:61:12:6d:ef:2f:61:45:be:d0:
a7:0e:c9:c5:82:46:f0:b4:65:a8:98:02:24:40:98:81:79:9c:
06:be:9f:ea:65:e7:50:a2:fe:2c:4c:42:53:05:ed:e2:da:3c:
3a:be:61:65:0c:9a:c7:1f:9c:01:d5:7d:92:be:73:97:3b:50:
8e:52:59:cd:8a:0e:aa:e2:c9:b0:88:35:54:d2:a3:f8:f2:be:
35:36:75:eb:3a:ac:ab:17:80:48:41:a8:23:6c:0b:f4:48:2d:
3b:0d:c7:1a:13:6d:96:7c:fa:91:75:5f:73:ac:2e:cd:38:53:
ab:f5:e5:f7:2e:44:d3:49:f0:b5:3a:4f:13:6a:75:65:d7:12:
02:93:8a:24:cc:d2:1f:ce:28:bf:94:f5:05:6c:5e:90:73:39:
c9:49:c5:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 27 00:07:48 2026 by rpki-client