Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/7F1FE00E336A11F18F012B07CF1D38B0.roa
File: 7F1FE00E336A11F18F012B07CF1D38B0.roa (raw, json)
Hash identifier: p2rjK7x2+nj3cw5ovg8Nf6ZNwZpMtYEbRA5CpuFQGeY=
Subject key identifier: 29:DC:C6:B7:45:5A:0D:A9:A4:5A:66:E7:3E:C7:09:B8:E0:19:A3:00
Certificate issuer: /CN=F367DFA4AF/serialNumber=97C90E25212D887CF9E1DE6FDDF551BA812FA139
Certificate serial: 0932
Authority key identifier: 97:C9:0E:25:21:2D:88:7C:F9:E1:DE:6F:DD:F5:51:BA:81:2F:A1:39
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/7F1FE00E336A11F18F012B07CF1D38B0.roa
Signing time: Wed 08 Apr 2026 16:46:32 +0000
ROA not before: Wed 08 Apr 2026 16:46:28 +0000
ROA not after: Thu 30 Apr 2026 16:46:28 +0000
asID: 22724
IP address blocks: 102.177.168.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.crl
rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.mft
rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 02:03:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2354 (0x932)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367DFA4AF, serialNumber=97C90E25212D887CF9E1DE6FDDF551BA812FA139
Validity
Not Before: Apr 8 16:46:28 2026 GMT
Not After : Apr 30 16:46:28 2026 GMT
Subject: CN=69d68668-ff51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:63:9c:f2:f0:6e:de:ae:5b:5b:55:28:c1:fa:
d1:89:50:90:f4:d9:78:dd:26:16:15:25:8d:ed:fa:
97:94:39:ce:cc:08:d5:7c:82:0c:fc:5c:fe:64:4c:
db:d4:58:aa:22:9b:7d:eb:a3:6f:62:f6:37:30:66:
a3:13:24:ff:0b:b0:a0:16:46:be:ec:2c:84:23:ab:
1e:5b:3b:14:13:6f:27:cf:46:c7:34:9c:a4:4f:b0:
f5:d8:dc:38:db:32:1f:6f:86:88:11:48:07:8c:73:
ae:ad:c8:2e:a1:77:80:9f:41:ab:01:9a:25:c9:d5:
19:32:c1:4a:1e:30:9d:8f:32:8f:29:9d:bc:e1:ff:
08:a9:f6:82:a3:43:1c:9b:30:4e:a0:fa:b5:7f:cb:
37:50:e8:0d:e2:15:46:79:45:e2:83:41:63:be:71:
07:b5:db:ec:36:f0:3e:63:6e:07:d5:07:e7:3b:9b:
8e:22:0f:55:de:a5:1c:a1:00:38:72:98:47:09:97:
a3:ec:b8:9a:15:c2:e7:e7:f6:b4:23:26:e2:06:a1:
5c:17:3a:94:31:8c:ff:ff:dd:1f:49:2e:4e:0a:a2:
93:82:84:7d:c0:ce:14:3c:72:f6:ab:7b:cc:24:c9:
6e:54:2f:e1:24:f3:78:23:65:c2:92:eb:16:5f:72:
45:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:DC:C6:B7:45:5A:0D:A9:A4:5A:66:E7:3E:C7:09:B8:E0:19:A3:00
X509v3 Authority Key Identifier:
keyid:97:C9:0E:25:21:2D:88:7C:F9:E1:DE:6F:DD:F5:51:BA:81:2F:A1:39
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/7F1FE00E336A11F18F012B07CF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.177.168.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:88:4c:1e:a2:e6:37:aa:17:e8:19:ea:9d:7f:97:4b:c2:7f:
b4:33:af:92:01:50:62:10:e4:1d:92:a8:cf:cd:da:3b:6d:61:
39:95:f9:6b:b5:46:cb:b9:c9:26:b4:81:9f:09:6c:15:3f:ff:
56:e3:08:52:b0:f8:8d:4d:2c:fc:bf:ce:47:9d:e7:76:d3:15:
ef:4e:e7:aa:74:45:03:96:72:26:49:b6:2d:06:59:24:3e:2a:
1a:89:e3:af:d8:88:b5:0e:45:18:4e:f2:ab:10:f4:1f:46:8f:
ac:ce:a3:66:9a:86:82:ad:8c:7a:36:ac:66:fb:20:8e:d7:7b:
44:73:b4:ed:a5:13:de:34:3d:b1:7a:20:4f:12:58:3e:2a:a1:
e9:8c:50:c9:e5:9b:a3:8d:6c:7b:37:ff:4e:68:2a:38:19:ee:
d6:07:ef:5e:75:43:af:5a:d4:99:11:13:0a:2a:61:14:f7:98:
c4:e0:f4:56:0d:cf:96:85:ed:b5:1c:64:2b:bc:96:fa:8e:6a:
ca:78:a4:c6:93:ea:01:d9:f7:ea:2e:d3:1d:d6:81:1d:1d:26:
42:94:f4:84:96:36:c2:e1:75:e3:a5:76:d7:de:8e:bc:c2:f2:
d1:7a:e2:c0:da:65:91:87:fd:47:2a:9e:ea:83:b6:ed:47:7c:
7f:23:2b:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 23:29:31 2026 by rpki-client