Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/1310CD3A237811F1BCBD5FA0DAE4EC9C.roa
File: 1310CD3A237811F1BCBD5FA0DAE4EC9C.roa (raw, json)
Hash identifier: qF3hG1/6g8gsTprcC6hzsx2uNOQ7cvqSo6+AiuAa4B0=
Subject key identifier: C5:03:3A:45:CF:7F:81:73:B0:AE:DC:72:DB:30:93:07:54:80:BD:32
Certificate issuer: /CN=F367DFA4AF/serialNumber=97C90E25212D887CF9E1DE6FDDF551BA812FA139
Certificate serial: 0912
Authority key identifier: 97:C9:0E:25:21:2D:88:7C:F9:E1:DE:6F:DD:F5:51:BA:81:2F:A1:39
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/1310CD3A237811F1BCBD5FA0DAE4EC9C.roa
Signing time: Thu 19 Mar 2026 09:43:25 +0000
ROA not before: Thu 19 Mar 2026 09:43:20 +0000
ROA not after: Tue 28 Apr 2026 09:43:20 +0000
asID: 141718
IP address blocks: 102.177.180.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.crl
rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.mft
rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 28 Mar 2026 00:07:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2322 (0x912)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367DFA4AF, serialNumber=97C90E25212D887CF9E1DE6FDDF551BA812FA139
Validity
Not Before: Mar 19 09:43:20 2026 GMT
Not After : Apr 28 09:43:20 2026 GMT
Subject: CN=69bbc53d-ad05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:66:84:bd:02:54:44:de:6e:a8:4f:c4:ea:54:
ec:b0:26:a3:6b:2e:95:66:c1:b0:80:87:01:12:9d:
b2:85:0e:1f:e5:3b:01:7b:69:e2:37:61:e0:22:60:
5b:f5:cf:13:26:cf:f7:26:48:61:ea:ab:7e:6e:68:
c3:36:07:f3:62:e0:3b:3b:13:2d:9b:11:9b:61:f4:
62:b8:37:11:b8:c6:6a:97:bc:70:d5:96:e9:cd:7a:
de:57:7e:54:af:8b:a1:64:f2:92:09:83:53:51:b0:
00:90:0f:7f:ef:02:5c:47:3d:5b:74:a0:22:a6:2b:
d0:85:97:2f:2c:18:35:ce:94:de:07:30:6f:7e:71:
2e:a2:d0:5a:2c:84:4c:17:f5:3f:28:e3:5c:2a:a2:
5d:33:3d:34:87:c3:25:42:f9:0c:0d:10:0c:e1:59:
cf:4e:ac:8b:3c:85:61:bd:17:c9:da:82:dc:02:6a:
6e:18:18:e9:48:0a:3f:e7:d3:8b:e3:3d:8b:fe:a2:
fc:31:09:26:0c:70:61:91:35:bf:61:3a:7a:44:84:
e9:cf:4b:75:5f:62:64:0a:ac:d3:4c:00:24:59:36:
b7:fe:ce:2f:0f:f5:f5:ce:d0:2a:27:36:38:76:04:
0c:70:3d:30:4c:cb:e3:bb:0b:86:42:4b:d5:a8:81:
8f:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:03:3A:45:CF:7F:81:73:B0:AE:DC:72:DB:30:93:07:54:80:BD:32
X509v3 Authority Key Identifier:
keyid:97:C9:0E:25:21:2D:88:7C:F9:E1:DE:6F:DD:F5:51:BA:81:2F:A1:39
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/1310CD3A237811F1BCBD5FA0DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.177.180.0/24
Signature Algorithm: sha256WithRSAEncryption
03:a6:40:7a:c7:89:67:f9:c7:44:00:79:7f:57:48:1d:ce:11:
08:4f:ea:c0:55:ef:02:2b:23:31:8f:98:c0:dd:55:7e:36:43:
a1:0a:5a:b5:22:25:85:27:90:27:c5:02:2e:63:4c:4d:c9:10:
ed:73:4c:eb:25:c0:91:a1:43:44:da:67:24:93:d9:73:c7:e5:
f5:c4:2a:68:30:f3:60:cc:8f:53:b4:76:c8:c5:00:aa:92:50:
b0:19:a5:66:68:36:08:1f:7f:d8:42:10:b1:06:be:0d:95:3f:
b1:cf:4a:fc:82:0a:82:61:92:45:cf:aa:17:97:a4:ad:74:ba:
aa:51:19:a0:41:ff:75:0f:c9:af:33:4a:b6:49:e6:25:df:e2:
81:de:5f:de:38:55:85:5f:78:f3:67:e4:36:6b:eb:7c:35:76:
53:0c:4e:a8:9f:e3:a7:3e:8d:7a:cd:40:b2:56:c7:fc:5e:57:
0a:c6:c8:07:ec:9b:ee:66:6b:d4:73:12:7e:35:ce:c7:b8:f1:
bc:de:50:0c:09:15:bf:c6:a5:3c:72:17:eb:e2:35:68:11:ac:
8a:b5:e1:46:80:e0:be:9d:e3:52:56:79:9c:1c:be:10:39:83:
47:ec:32:27:2b:2f:d1:70:21:ad:ad:ab:cf:de:68:f3:d0:e8:
90:c7:49:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 14:00:09 2026 by rpki-client