Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/38C38ECA336B11F1B251460BCF1D38B0.roa
File: 38C38ECA336B11F1B251460BCF1D38B0.roa (raw, json)
Hash identifier: QR5cqLad2UQRwqF4H2kT1Rbb4KoMbERq0mDkLOVLQsI=
Subject key identifier: 72:DB:E7:77:37:12:4F:B1:82:0D:E8:93:19:9B:10:50:5E:99:41:9E
Certificate issuer: /CN=F367DFA4AF/serialNumber=97C90E25212D887CF9E1DE6FDDF551BA812FA139
Certificate serial: 0936
Authority key identifier: 97:C9:0E:25:21:2D:88:7C:F9:E1:DE:6F:DD:F5:51:BA:81:2F:A1:39
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/38C38ECA336B11F1B251460BCF1D38B0.roa
Signing time: Wed 08 Apr 2026 16:51:43 +0000
ROA not before: Wed 08 Apr 2026 16:51:39 +0000
ROA not after: Thu 30 Apr 2026 16:51:39 +0000
asID: 22724
IP address blocks: 102.177.177.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.crl
rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.mft
rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 02:03:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2358 (0x936)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367DFA4AF, serialNumber=97C90E25212D887CF9E1DE6FDDF551BA812FA139
Validity
Not Before: Apr 8 16:51:39 2026 GMT
Not After : Apr 30 16:51:39 2026 GMT
Subject: CN=69d6879f-a9dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:dc:14:d0:e0:51:91:67:d0:41:4d:13:88:13:
21:02:11:e1:39:28:a0:37:de:9e:f6:31:a3:d5:13:
33:b6:7c:33:39:9d:12:82:f2:df:b3:f6:73:44:0a:
86:e8:10:b3:48:47:30:c2:73:38:53:93:3f:79:93:
f3:32:c1:81:17:3b:cc:2d:a5:84:b4:b2:96:09:4f:
36:08:fb:27:36:07:d3:d1:d3:f8:93:8b:03:c1:50:
4c:1e:d5:6a:79:96:a2:21:9a:7d:40:a5:b6:2b:13:
2d:5d:74:3e:e1:bf:29:3a:23:97:18:f3:f8:d1:a4:
6e:7b:42:e0:5c:b7:0f:9d:57:76:05:0b:85:59:84:
84:8b:1a:31:dd:82:47:fb:ed:de:b9:16:33:8c:dc:
28:58:f7:96:8f:1e:9c:46:af:39:82:98:53:3f:f6:
a3:52:5b:39:7a:e8:80:96:3c:cb:7e:8f:cb:bb:ce:
e3:72:d6:8e:4d:c5:fc:f6:89:9e:28:32:96:79:02:
0e:70:ec:f9:dd:4f:90:a6:1d:aa:3f:af:b1:0b:1b:
4f:e7:b4:43:10:e6:a1:38:8f:05:f6:88:30:76:38:
e6:c0:ff:48:4f:76:e8:78:53:0f:d2:61:c6:da:70:
cd:81:1f:59:5e:f8:5f:c2:84:7d:43:75:5a:46:be:
8f:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:DB:E7:77:37:12:4F:B1:82:0D:E8:93:19:9B:10:50:5E:99:41:9E
X509v3 Authority Key Identifier:
keyid:97:C9:0E:25:21:2D:88:7C:F9:E1:DE:6F:DD:F5:51:BA:81:2F:A1:39
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/38C38ECA336B11F1B251460BCF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.177.177.0/24
Signature Algorithm: sha256WithRSAEncryption
d1:1a:9a:1d:a7:e0:2b:6a:6a:b6:49:20:69:1b:34:4e:43:30:
82:8e:b0:74:81:d4:f7:5e:e9:0f:da:c7:3f:4a:50:d8:46:3b:
ee:97:90:12:b0:b3:d8:f6:d0:82:c3:c9:e3:ee:7c:15:47:98:
ea:9f:5b:e6:0e:e3:e2:34:1a:e9:8b:33:2a:88:dc:16:b6:c0:
fa:dd:90:76:7c:21:7c:d9:80:14:72:9a:d0:f2:2a:e3:1f:b9:
b9:12:6b:ad:94:77:d2:c7:f2:67:68:e8:92:27:48:87:2b:41:
a4:88:78:e2:f8:44:c6:4e:eb:47:3d:1f:da:5b:8b:74:b7:a3:
bb:47:b8:22:c7:86:d5:56:b6:b0:65:e0:8e:4c:0d:6b:49:db:
01:b7:33:f3:1a:9a:b4:bc:a9:39:36:6a:88:a8:da:db:17:a7:
63:64:63:8a:fc:92:83:c8:c8:0f:fa:75:4b:a4:13:65:54:77:
06:d4:7e:5c:36:a8:b0:b3:83:d6:45:83:a0:bc:1f:6e:a3:76:
e3:28:cc:2f:ba:69:ee:8c:2b:0f:76:5a:cc:b4:61:79:6a:40:
53:08:03:dc:df:33:89:ee:4a:d6:24:ee:b7:b4:3e:c8:3b:89:
78:cf:8d:2a:6b:01:fb:d8:69:d5:26:ec:0a:33:92:1d:55:1a:
1a:66:28:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 23:29:01 2026 by rpki-client