Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/BF7D76184ADD11F1B13D7F1ECF1D38B0.roa
File: BF7D76184ADD11F1B13D7F1ECF1D38B0.roa (raw, json)
Hash identifier: TK1aAsZwwxeYL6Rm7aOnZCzcC6bv4cnXSt66RAzsY5o=
Subject key identifier: 87:C8:41:E1:71:F8:36:D0:FC:73:A3:3E:59:91:B3:E4:57:5D:2B:08
Certificate issuer: /CN=F367DFA4AF/serialNumber=97C90E25212D887CF9E1DE6FDDF551BA812FA139
Certificate serial: 0961
Authority key identifier: 97:C9:0E:25:21:2D:88:7C:F9:E1:DE:6F:DD:F5:51:BA:81:2F:A1:39
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/BF7D76184ADD11F1B13D7F1ECF1D38B0.roa
Signing time: Fri 08 May 2026 12:59:29 +0000
ROA not before: Fri 08 May 2026 12:59:24 +0000
ROA not after: Sat 30 May 2026 12:59:24 +0000
asID: 22724
IP address blocks: 102.177.160.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.crl
rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.mft
rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 15 May 2026 02:03:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2401 (0x961)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367DFA4AF, serialNumber=97C90E25212D887CF9E1DE6FDDF551BA812FA139
Validity
Not Before: May 8 12:59:24 2026 GMT
Not After : May 30 12:59:24 2026 GMT
Subject: CN=69fdde31-68c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:6b:fb:8c:4e:07:0c:a6:98:71:f1:87:04:28:
b8:4e:d7:0c:49:fa:2a:17:e9:fd:26:f4:26:4b:54:
dc:af:73:2b:40:79:ad:ca:fa:32:9d:3b:c1:6d:21:
ae:5f:61:1a:ec:72:3c:bb:5b:7c:fe:9a:18:ca:5e:
1d:36:f5:57:48:92:bc:e1:5c:02:fb:f8:da:92:ff:
d4:7f:af:f3:33:12:c5:14:28:31:ac:65:3e:53:c6:
98:25:4a:33:89:ab:d0:5c:7a:00:b1:0a:7c:7b:f0:
76:81:4d:7e:14:2e:33:2b:a9:21:e2:a6:9b:21:e5:
86:59:61:10:bb:d4:70:f3:d4:8b:4f:ea:c2:af:db:
09:59:a1:e5:15:24:3c:bf:58:34:5c:eb:b4:a5:d2:
59:7d:02:c1:48:c2:0b:65:20:6b:10:06:01:d9:14:
14:f8:a3:0b:41:44:81:14:89:6b:f1:7b:2a:64:35:
f9:7b:46:e3:e4:18:35:cf:c9:55:58:d4:1d:1a:e0:
8a:8f:f0:d7:a9:97:58:13:9a:77:c6:bb:8b:a0:10:
56:83:ac:a3:19:15:59:52:e0:89:88:62:dc:79:30:
26:d2:19:f2:3b:46:05:28:93:1d:5c:b2:f6:8d:d3:
92:0d:09:7f:cb:45:46:f2:52:74:36:e1:f9:17:09:
4d:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:C8:41:E1:71:F8:36:D0:FC:73:A3:3E:59:91:B3:E4:57:5D:2B:08
X509v3 Authority Key Identifier:
keyid:97:C9:0E:25:21:2D:88:7C:F9:E1:DE:6F:DD:F5:51:BA:81:2F:A1:39
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/BF7D76184ADD11F1B13D7F1ECF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.177.160.0/20
Signature Algorithm: sha256WithRSAEncryption
0d:06:69:59:3b:5f:92:47:b8:18:70:dc:5f:f1:5f:73:89:35:
b8:b4:3a:5e:16:4a:b1:38:1d:e8:c7:b2:50:ea:95:93:c5:16:
d9:7c:58:3b:38:d6:9a:b2:ac:c5:d1:12:26:70:2b:34:0d:db:
79:45:cd:7f:61:f4:95:0f:af:70:5c:eb:77:5f:d9:94:c0:a9:
15:bb:d2:37:88:a4:1a:d6:21:3b:26:b7:b2:05:e1:91:ee:b2:
46:31:47:4d:cf:22:f7:54:bc:93:14:3c:50:4c:18:a6:f3:c9:
06:c0:30:a5:17:45:60:b9:e2:61:87:c3:e6:73:67:2e:c1:c5:
4a:c4:55:c7:4e:05:ee:6a:74:59:cb:37:93:76:f3:db:02:c8:
89:cd:4a:05:ad:c9:e7:60:dc:bd:e6:7f:34:ca:80:a4:0f:5f:
83:b0:36:06:17:e5:e0:e5:b8:8e:2f:c4:71:70:43:22:81:06:
d7:f5:9b:71:21:36:74:74:f3:47:4d:d8:03:4c:aa:49:72:35:
e6:8a:f0:a4:68:ae:fb:b6:d0:ef:04:89:11:4e:5c:3b:de:35:
55:28:2b:14:19:e4:57:29:b0:10:f6:9d:5f:52:59:02:7b:2a:
53:4c:2b:ad:dc:64:b3:17:d0:2c:68:3c:24:dd:95:83:cf:fe:
91:98:7e:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 12:40:23 2026 by rpki-client