Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F364B5D4/FBE0C39A4BA411F184A9EED9CE1D38B0/AD5ABB264BA511F1B3E306DECE1D38B0.roa
File: AD5ABB264BA511F1B3E306DECE1D38B0.roa (raw, json)
Hash identifier: /y+033adLUiAQpUibK32N78UCS8A+yUlenW6S8LVos4=
Subject key identifier: 31:B9:32:5E:B8:EC:76:E3:9A:BA:F6:3F:76:26:28:24:C7:6F:E0:0C
Certificate issuer: /CN=F364B5D4AF/serialNumber=A517CE7D76374AB8C98F4F089C70A773DFDECBA5
Certificate serial: 02
Authority key identifier: A5:17:CE:7D:76:37:4A:B8:C9:8F:4F:08:9C:70:A7:73:DF:DE:CB:A5
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/pRfOfXY3SrjJj08InHCnc9_ey6U.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F364B5D4/FBE0C39A4BA411F184A9EED9CE1D38B0/AD5ABB264BA511F1B3E306DECE1D38B0.roa
Signing time: Sat 09 May 2026 12:50:38 +0000
ROA not before: Sat 09 May 2026 12:50:33 +0000
ROA not after: Sat 31 May 2036 12:50:33 +0000
asID: 329684
IP address blocks: 102.203.176.0/22 maxlen: 24
2c0f:3a0::/32 maxlen: 48
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F364B5D4/FBE0C39A4BA411F184A9EED9CE1D38B0/pRfOfXY3SrjJj08InHCnc9_ey6U.crl
rsync://rpki.afrinic.net/repository/member_repository/F364B5D4/FBE0C39A4BA411F184A9EED9CE1D38B0/pRfOfXY3SrjJj08InHCnc9_ey6U.mft
rsync://rpki.afrinic.net/repository/afrinic/pRfOfXY3SrjJj08InHCnc9_ey6U.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 14 May 2026 05:36:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F364B5D4AF, serialNumber=A517CE7D76374AB8C98F4F089C70A773DFDECBA5
Validity
Not Before: May 9 12:50:33 2026 GMT
Not After : May 31 12:50:33 2036 GMT
Subject: CN=69ff2d9e-01f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:61:38:69:36:69:fc:af:a8:40:ee:41:c5:05:
98:45:84:db:54:2a:e0:c9:1e:2f:3b:f4:20:61:98:
39:53:63:79:70:a3:5a:71:a3:0f:4d:3d:62:9c:d4:
48:84:70:11:2a:0c:90:59:06:5f:f1:d5:b0:4f:81:
89:83:72:ed:68:d2:5f:e6:6a:05:ec:e8:9a:58:51:
ff:5a:51:42:bf:c5:d8:b9:c3:e9:29:c4:0b:cd:7c:
d0:0f:de:11:04:49:47:22:f5:a3:5d:34:ff:8e:c9:
e4:3e:88:28:55:46:ed:fd:5a:9d:d3:21:ef:0e:eb:
46:37:7a:9b:25:96:47:e7:ef:02:c1:56:c7:57:6b:
ff:3f:a5:ca:a1:54:be:57:81:63:fe:2f:89:a5:0b:
a1:b9:5f:68:83:e6:68:af:c5:7d:df:f9:21:ba:c3:
07:da:76:b4:d1:24:33:21:77:d3:7f:16:f1:5d:35:
22:d3:06:8c:0c:b4:8b:26:48:42:e4:22:82:d2:a5:
fe:c4:89:6d:38:ff:c3:d0:65:91:60:95:00:54:a5:
fb:9a:f9:35:c6:ae:bc:4d:73:58:0f:1b:1d:fa:d2:
df:ba:5b:eb:d6:3d:f7:16:bd:04:8d:bc:55:5a:5e:
45:bc:ff:4f:26:45:c7:08:6b:aa:09:58:51:8a:b7:
13:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:B9:32:5E:B8:EC:76:E3:9A:BA:F6:3F:76:26:28:24:C7:6F:E0:0C
X509v3 Authority Key Identifier:
keyid:A5:17:CE:7D:76:37:4A:B8:C9:8F:4F:08:9C:70:A7:73:DF:DE:CB:A5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F364B5D4/FBE0C39A4BA411F184A9EED9CE1D38B0/pRfOfXY3SrjJj08InHCnc9_ey6U.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/pRfOfXY3SrjJj08InHCnc9_ey6U.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F364B5D4/FBE0C39A4BA411F184A9EED9CE1D38B0/AD5ABB264BA511F1B3E306DECE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.203.176.0/22
IPv6:
2c0f:3a0::/32
Signature Algorithm: sha256WithRSAEncryption
94:b2:98:f7:26:0f:a0:e3:f2:a5:b1:0b:c0:c8:44:6c:56:51:
97:da:6a:ad:bd:a7:4b:17:7c:06:f6:96:96:a6:42:f9:89:1c:
52:57:3e:1a:02:7c:e9:b2:36:85:80:40:13:31:34:fe:38:1c:
a5:2b:8f:64:a9:71:4a:41:18:1e:d8:43:fe:47:e2:2a:de:37:
44:0b:7c:7c:34:ee:4c:58:8f:e6:ae:a6:c0:1c:f9:e3:2c:31:
46:59:05:81:31:57:d4:a5:eb:94:0f:46:7a:96:53:d4:0d:36:
49:c9:dd:c7:c1:fc:1c:a0:9b:c4:93:96:bd:68:77:52:20:21:
07:65:77:3e:38:26:7a:ee:13:bd:cf:42:32:b6:d8:eb:98:4f:
b8:89:8d:bd:13:39:6d:90:38:cc:cf:b0:5d:c6:44:4a:df:ac:
f5:73:c3:b9:c9:42:a4:e7:07:2e:fd:22:b6:c2:0e:85:95:16:
da:8b:4a:e2:81:ad:e3:70:26:db:48:00:45:28:6c:47:a1:ee:
a2:8b:de:54:57:08:1a:c6:1b:bf:6c:31:fb:65:00:0a:fb:58:
b6:57:8f:ee:f7:bd:db:8a:33:73:e1:9a:55:08:31:ef:71:d4:
a5:73:18:ee:ec:86:ad:e4:52:71:c8:e2:cf:27:1d:e9:0a:21:
bb:48:24:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 04:20:34 2026 by rpki-client