Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F369BAF0/129844362CBB11ECB2D8366ED8A014CE/7C75004428CC11F1ACA6F9ABDAE4EC9C.roa
File: 7C75004428CC11F1ACA6F9ABDAE4EC9C.roa (raw, json)
Hash identifier: ezPDMLZmmawBK1YKbQBWx31MDM/oObn+2yUUMTjG/YI=
Subject key identifier: 53:DC:07:30:A5:2F:E0:B6:AD:F4:F3:BE:E1:11:D1:B5:CB:0F:9B:D3
Certificate issuer: /CN=F369BAF0AF/serialNumber=27319BFD9C6EC5953E5629599AFFE2D26A9404F2
Certificate serial: 0695
Authority key identifier: 27:31:9B:FD:9C:6E:C5:95:3E:56:29:59:9A:FF:E2:D2:6A:94:04:F2
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JzGb_ZxuxZU-VilZmv_i0mqUBPI.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F369BAF0/129844362CBB11ECB2D8366ED8A014CE/7C75004428CC11F1ACA6F9ABDAE4EC9C.roa
Signing time: Thu 26 Mar 2026 04:30:16 +0000
ROA not before: Thu 26 Mar 2026 04:30:11 +0000
ROA not after: Wed 26 Mar 2036 04:30:11 +0000
asID: 328068
IP address blocks: 102.130.104.0/23 maxlen: 23
102.130.105.0/24 maxlen: 24
102.130.106.0/23 maxlen: 23
102.130.106.0/24 maxlen: 24
102.130.107.0/24 maxlen: 24
102.130.108.0/24 maxlen: 24
102.130.109.0/24 maxlen: 24
102.130.110.0/24 maxlen: 24
102.130.111.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F369BAF0/129844362CBB11ECB2D8366ED8A014CE/JzGb_ZxuxZU-VilZmv_i0mqUBPI.crl
rsync://rpki.afrinic.net/repository/member_repository/F369BAF0/129844362CBB11ECB2D8366ED8A014CE/JzGb_ZxuxZU-VilZmv_i0mqUBPI.mft
rsync://rpki.afrinic.net/repository/afrinic/JzGb_ZxuxZU-VilZmv_i0mqUBPI.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 28 Mar 2026 00:07:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1685 (0x695)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F369BAF0AF, serialNumber=27319BFD9C6EC5953E5629599AFFE2D26A9404F2
Validity
Not Before: Mar 26 04:30:11 2026 GMT
Not After : Mar 26 04:30:11 2036 GMT
Subject: CN=69c4b657-f978
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:00:82:dc:53:5d:6c:f7:b4:3e:79:af:a5:c5:
8a:e6:3d:d4:f1:f1:18:c6:90:ba:28:e9:33:c8:b3:
46:b6:ef:24:f7:81:5c:7e:58:69:bc:26:de:2e:58:
d7:75:28:f8:65:9a:2f:35:5b:69:82:de:d4:b2:48:
4a:1f:f3:65:1a:2d:b5:6b:38:14:16:57:ac:9a:5b:
f0:46:15:d5:de:45:89:1a:f8:9a:4c:64:14:bb:8d:
b5:56:4a:93:6d:22:f5:8a:fe:50:1f:61:d3:45:a0:
c8:22:29:bc:58:87:98:e5:b5:69:b8:d9:83:f6:e9:
6e:f1:2e:71:b7:1b:ec:2d:3c:6b:2c:4b:76:a0:4e:
57:7b:b1:ce:3b:76:9b:74:34:e2:4f:29:b7:02:45:
1b:7a:ab:a6:b7:81:b8:02:9d:e9:04:06:38:f3:a9:
05:e8:b0:dc:72:ea:19:d9:5a:4a:21:66:0c:18:17:
01:9f:6a:60:f6:e9:96:de:35:1c:6c:93:25:a4:d2:
ea:ed:d9:fe:05:c8:71:7a:80:3e:c4:02:87:c7:a9:
b4:ec:3e:6e:d1:6e:4c:20:91:f4:1a:35:3b:43:96:
d0:f0:c8:8b:48:20:7f:f8:2a:c3:91:e2:2e:3e:9e:
c8:e6:ef:58:cf:3c:43:e2:31:c0:99:28:67:6c:6a:
e3:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:DC:07:30:A5:2F:E0:B6:AD:F4:F3:BE:E1:11:D1:B5:CB:0F:9B:D3
X509v3 Authority Key Identifier:
keyid:27:31:9B:FD:9C:6E:C5:95:3E:56:29:59:9A:FF:E2:D2:6A:94:04:F2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F369BAF0/129844362CBB11ECB2D8366ED8A014CE/JzGb_ZxuxZU-VilZmv_i0mqUBPI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JzGb_ZxuxZU-VilZmv_i0mqUBPI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F369BAF0/129844362CBB11ECB2D8366ED8A014CE/7C75004428CC11F1ACA6F9ABDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.130.104.0/21
Signature Algorithm: sha256WithRSAEncryption
13:39:e4:dd:b5:57:a8:19:5c:e3:76:b2:7f:6f:6f:9e:00:e9:
60:eb:c1:4c:58:2d:eb:dd:5e:6f:df:6e:13:95:0d:3b:8a:c6:
a1:99:24:75:1a:cd:5b:83:fe:ea:2b:0d:c8:fb:cc:65:cd:a3:
3d:9e:99:7e:3a:c8:a0:9b:0d:68:39:fd:85:a5:70:40:51:42:
01:98:8f:f4:27:88:41:15:9d:b8:38:d8:91:bc:e1:f0:65:43:
db:ac:53:8e:0a:2c:ff:3f:27:9f:a9:ce:55:a9:ba:20:20:9b:
fb:0c:5f:ed:31:fd:b7:91:78:52:dc:88:aa:2d:ee:7a:21:b3:
b9:c5:3f:99:41:da:eb:1d:99:7f:81:e0:14:12:ee:b1:10:29:
d2:16:06:13:9e:2e:cf:34:ad:52:ae:9e:82:fa:d7:c5:cd:cd:
8b:0e:8a:fb:91:1d:b0:be:dc:cb:92:c6:1c:02:2e:70:d2:2a:
3d:39:f0:d8:f3:54:99:25:b5:e5:1d:56:97:8f:e4:97:16:db:
b9:f4:46:b0:c3:ec:2d:ae:ca:b3:86:37:f7:41:d6:13:eb:6d:
8f:79:ed:4e:8b:4d:a5:25:b2:7c:10:6e:99:83:3a:30:cd:17:
0b:86:30:2d:c9:c3:76:f5:3c:5d:24:ca:d0:f7:35:2d:29:19:
f0:f1:64:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 20:06:53 2026 by rpki-client