Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363D469/4468EECA9BF511EDBA51D1A3F1222468/098B09D81BB211F1B0FD3EBADAE4EC9C.roa
File: 098B09D81BB211F1B0FD3EBADAE4EC9C.roa (raw, json)
Hash identifier: xmvTAy0jAFK1TesfOoIo2qcYByBGj2KaBKiqJh7kdj0=
Subject key identifier: D2:83:BA:BA:8B:EC:80:46:7E:BF:C8:9C:8E:9A:B0:7A:39:95:DE:1C
Certificate issuer: /CN=F363D469AF/serialNumber=B81EA23A178F6080E7D80EF306B004E9A1DCE110
Certificate serial: 04A5
Authority key identifier: B8:1E:A2:3A:17:8F:60:80:E7:D8:0E:F3:06:B0:04:E9:A1:DC:E1:10
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/uB6iOhePYIDn2A7zBrAE6aHc4RA.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363D469/4468EECA9BF511EDBA51D1A3F1222468/098B09D81BB211F1B0FD3EBADAE4EC9C.roa
Signing time: Mon 09 Mar 2026 12:18:11 +0000
ROA not before: Mon 09 Mar 2026 12:18:05 +0000
ROA not after: Sun 09 Mar 2036 12:18:05 +0000
asID: 328253
IP address blocks: 102.68.176.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F363D469/4468EECA9BF511EDBA51D1A3F1222468/uB6iOhePYIDn2A7zBrAE6aHc4RA.crl
rsync://rpki.afrinic.net/repository/member_repository/F363D469/4468EECA9BF511EDBA51D1A3F1222468/uB6iOhePYIDn2A7zBrAE6aHc4RA.mft
rsync://rpki.afrinic.net/repository/afrinic/uB6iOhePYIDn2A7zBrAE6aHc4RA.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 28 Mar 2026 00:07:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1189 (0x4a5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363D469AF, serialNumber=B81EA23A178F6080E7D80EF306B004E9A1DCE110
Validity
Not Before: Mar 9 12:18:05 2026 GMT
Not After : Mar 9 12:18:05 2036 GMT
Subject: CN=69aeba83-b9cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:12:c2:b0:ce:00:ba:86:b9:31:f6:bf:e3:0f:
49:4b:43:c2:13:09:72:fa:c5:1c:e1:aa:cd:81:b6:
05:ec:71:dd:72:86:e5:e0:c3:e3:e2:ae:6b:85:6c:
a3:d5:d1:3a:83:f4:23:39:c2:c1:e7:64:74:0c:28:
8b:1c:4c:8e:5a:52:4c:6d:f4:ba:16:30:22:c5:06:
f2:4f:1c:e1:cc:e4:c9:69:7b:7d:9c:2e:38:10:14:
d8:b4:46:90:b0:37:c1:8c:86:5c:35:18:03:f2:cc:
4f:39:23:1b:49:b0:c8:98:cd:24:47:6f:e1:db:0b:
c3:aa:6d:ee:d8:77:96:f4:de:05:b6:62:ab:1f:b0:
41:2a:55:25:ba:33:33:23:59:76:3a:e5:ec:bd:31:
7c:8d:ae:fa:7d:e2:b7:ca:3c:7a:79:b9:25:98:97:
cd:14:fd:d1:df:98:32:7a:5b:ee:1c:14:5a:f4:df:
bf:f4:3a:dd:32:91:6b:01:2c:21:08:3b:eb:90:be:
45:7f:dc:43:0a:2d:27:85:3e:70:ee:ef:5b:8c:9b:
a9:0d:7b:50:88:62:9b:8d:d7:84:97:49:f6:d1:5b:
7a:a8:7e:1d:26:0b:a0:e9:6e:51:7f:73:b9:77:70:
5a:db:70:1d:34:62:f3:c3:30:5d:ec:3c:da:f9:f5:
f7:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:83:BA:BA:8B:EC:80:46:7E:BF:C8:9C:8E:9A:B0:7A:39:95:DE:1C
X509v3 Authority Key Identifier:
keyid:B8:1E:A2:3A:17:8F:60:80:E7:D8:0E:F3:06:B0:04:E9:A1:DC:E1:10
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363D469/4468EECA9BF511EDBA51D1A3F1222468/uB6iOhePYIDn2A7zBrAE6aHc4RA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/uB6iOhePYIDn2A7zBrAE6aHc4RA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363D469/4468EECA9BF511EDBA51D1A3F1222468/098B09D81BB211F1B0FD3EBADAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.68.176.0/23
Signature Algorithm: sha256WithRSAEncryption
aa:80:76:60:e9:62:5d:4e:4c:1a:56:44:b9:8b:4e:bb:2d:d3:
cc:87:e5:d4:ef:66:a8:d8:20:e2:10:53:2b:ed:b1:7b:7f:82:
8a:3f:cb:15:89:62:8f:b2:f4:0b:98:ec:5a:38:9b:86:ab:38:
1c:67:20:bc:cf:70:b7:c4:81:8b:57:30:66:6e:a8:ed:87:43:
d8:41:5b:a6:f3:d0:74:f4:42:e4:0d:bf:d1:14:bd:a6:1f:7c:
72:c8:33:71:00:0b:7d:5d:da:e0:b7:94:09:63:f9:26:6b:76:
99:bf:a9:b6:c0:ee:e6:bf:ca:31:d0:f9:b8:88:f1:76:ae:1b:
66:92:1e:6b:4e:36:e9:5b:9a:77:4d:8c:17:4d:50:f1:50:ab:
1e:27:76:fa:78:01:ff:21:7f:ed:a4:71:9d:ed:33:b8:49:00:
b1:2b:b6:c5:ad:91:8b:24:ff:bc:83:47:6a:50:05:83:77:21:
b3:0f:ee:cf:31:f2:54:86:4e:b8:e1:66:de:d2:b6:7a:50:98:
71:29:c4:cf:bb:28:45:90:93:c2:b4:af:65:44:a2:db:c7:bb:
6e:8b:db:3f:66:f0:49:3c:c2:09:ec:c5:6d:52:ae:d9:5a:bb:
38:96:19:c5:8b:96:f3:e2:fb:54:7c:f4:ff:bd:a2:e1:76:38:
b4:5c:c2:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 16:01:03 2026 by rpki-client