Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/8C4DBB74336B11F1AC054A0DCF1D38B0.roa
File: 8C4DBB74336B11F1AC054A0DCF1D38B0.roa (raw, json)
Hash identifier: ugMRQkYvi/0bT9sFT3i3iSYCY9UTu5TVQziA09sXpwQ=
Subject key identifier: B5:9A:B5:07:C3:B2:F3:20:2E:5F:D5:4B:B4:68:66:6D:A3:75:8C:0C
Certificate issuer: /CN=F367DFA4AF/serialNumber=97C90E25212D887CF9E1DE6FDDF551BA812FA139
Certificate serial: 0938
Authority key identifier: 97:C9:0E:25:21:2D:88:7C:F9:E1:DE:6F:DD:F5:51:BA:81:2F:A1:39
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/8C4DBB74336B11F1AC054A0DCF1D38B0.roa
Signing time: Wed 08 Apr 2026 16:54:04 +0000
ROA not before: Wed 08 Apr 2026 16:53:59 +0000
ROA not after: Thu 14 May 2026 16:53:59 +0000
asID: 209242
IP address blocks: 102.177.176.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.crl
rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.mft
rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 00:07:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2360 (0x938)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367DFA4AF, serialNumber=97C90E25212D887CF9E1DE6FDDF551BA812FA139
Validity
Not Before: Apr 8 16:53:59 2026 GMT
Not After : May 14 16:53:59 2026 GMT
Subject: CN=69d6882b-30ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:d1:e8:5e:b0:31:ea:47:25:88:f6:4f:b3:c2:
64:d3:b4:00:4b:d8:e9:75:c7:ba:f6:81:95:3a:05:
73:58:ad:31:8d:6b:23:fc:eb:68:4e:31:04:68:55:
cf:1e:f5:4c:fa:8b:69:4d:c8:e1:68:21:bf:d1:75:
ea:b5:53:92:54:82:7c:ab:4c:7d:4a:ab:52:ea:07:
29:6b:a8:3b:5c:32:b3:67:08:d4:16:fc:90:c2:87:
3b:1b:72:1d:a8:f8:35:1c:42:ea:b2:b3:04:a2:13:
fc:d5:05:dd:6f:b3:1c:c5:0f:78:8f:74:0a:aa:4f:
63:9e:e4:da:32:08:db:77:bb:99:91:5a:2d:cb:0d:
ac:04:86:b2:98:1b:af:a1:e9:d6:ba:3f:13:07:0e:
18:3e:46:e3:9c:c5:1e:a1:82:84:16:0b:b9:54:ea:
26:0f:58:69:fc:50:4d:55:7f:39:4f:e8:ba:10:69:
c5:c1:f6:0f:da:ad:78:c8:6e:f9:ea:ae:a7:d3:ba:
f5:ab:9b:7c:bb:7a:a5:00:df:34:ef:35:36:da:99:
3e:77:41:0c:3e:24:9a:9d:f8:ca:ef:be:d3:2d:4f:
1d:79:d0:e8:7f:7d:21:b8:a7:11:08:63:66:91:d1:
05:8f:61:33:5d:4e:3d:1a:34:ac:92:53:e3:1d:6f:
54:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:9A:B5:07:C3:B2:F3:20:2E:5F:D5:4B:B4:68:66:6D:A3:75:8C:0C
X509v3 Authority Key Identifier:
keyid:97:C9:0E:25:21:2D:88:7C:F9:E1:DE:6F:DD:F5:51:BA:81:2F:A1:39
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/8C4DBB74336B11F1AC054A0DCF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.177.176.0/24
Signature Algorithm: sha256WithRSAEncryption
b9:05:5a:18:e0:82:d6:c7:0e:05:a9:73:d8:67:e5:f4:94:6d:
32:cb:e3:cc:75:9c:fa:01:65:58:d6:92:07:b3:64:71:0c:1b:
00:36:bf:38:5b:a7:43:f4:79:30:ee:da:0a:85:24:0a:e4:1b:
b9:e1:ac:52:19:1d:9c:b0:89:b5:88:b9:0e:f8:c1:97:4b:31:
3f:0a:0a:ec:88:d0:14:fc:67:a4:0f:d6:25:37:b3:ee:89:a7:
02:2f:0f:66:5e:97:45:46:8a:a6:41:fe:f5:fd:01:07:0b:cb:
f6:6e:ed:44:f6:87:a8:51:b1:a0:da:4b:99:c2:56:4b:e4:a3:
7d:98:99:5f:10:b7:b7:66:e0:44:ef:ab:47:c0:35:4d:97:26:
56:b0:92:18:51:41:94:1e:d3:86:e6:d3:2d:84:d8:16:66:ca:
a0:f5:ad:36:ce:15:79:17:dd:6f:db:29:05:1a:b2:77:35:a2:
bd:fd:c8:7f:da:2e:de:7a:74:c2:1d:3a:36:1f:15:15:f3:8b:
68:60:5c:64:89:f0:08:ba:a1:0f:15:44:91:cf:24:fe:d7:c4:
8d:19:e9:10:06:0c:7c:89:c9:de:99:31:2e:15:fb:33:80:0e:
ca:6e:cd:cd:50:d3:d6:89:1e:a9:56:c0:03:35:62:db:12:82:
1a:5a:3d:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 06:52:05 2026 by rpki-client