Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/8C7A319A3B1D11F1B7560101CF1D38B0.roa
File: 8C7A319A3B1D11F1B7560101CF1D38B0.roa (raw, json)
Hash identifier: T1rKMMJinFMAjlI/pQ90dAtWMN97b28AyrAC633r9XM=
Subject key identifier: 7A:A1:19:84:A4:89:5D:C8:17:80:20:38:01:DD:1D:07:4B:CF:09:2F
Certificate issuer: /CN=F367DFA4AF/serialNumber=97C90E25212D887CF9E1DE6FDDF551BA812FA139
Certificate serial: 0946
Authority key identifier: 97:C9:0E:25:21:2D:88:7C:F9:E1:DE:6F:DD:F5:51:BA:81:2F:A1:39
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/8C7A319A3B1D11F1B7560101CF1D38B0.roa
Signing time: Sat 18 Apr 2026 11:55:52 +0000
ROA not before: Sat 18 Apr 2026 11:55:48 +0000
ROA not after: Thu 28 May 2026 11:55:48 +0000
asID: 200113
IP address blocks: 102.177.184.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.crl
rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.mft
rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 Apr 2026 00:07:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2374 (0x946)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367DFA4AF, serialNumber=97C90E25212D887CF9E1DE6FDDF551BA812FA139
Validity
Not Before: Apr 18 11:55:48 2026 GMT
Not After : May 28 11:55:48 2026 GMT
Subject: CN=69e37148-c7ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:1b:3d:97:a6:e2:e7:86:98:c6:62:86:91:5e:
3e:b9:0a:d8:6c:44:16:75:8d:55:04:9a:ff:0e:a2:
e0:17:ba:6d:56:41:db:13:e4:e6:59:b7:26:3d:4d:
ef:c6:96:bd:8a:a3:5f:1c:41:f2:dc:39:af:0f:12:
7f:0f:d3:80:54:6c:bd:db:8a:91:e1:09:b5:2c:97:
01:81:a8:31:16:2f:f2:32:81:b1:42:ec:cd:15:e2:
e4:bf:97:ed:79:5c:3c:6c:f4:73:47:07:95:8a:bb:
58:82:8c:ae:4b:52:ad:b5:fe:6e:54:8c:17:21:5d:
f0:e0:98:9e:df:5b:a5:b1:2a:7d:c4:91:43:df:5e:
2b:63:3f:68:14:d9:d3:95:b6:5b:9c:3e:29:46:07:
64:b3:dd:89:9b:52:8d:0d:35:ec:c8:7f:79:36:07:
96:ae:5c:b3:56:f7:b7:c9:a1:8b:af:c5:a5:25:f2:
d0:9e:33:b1:c6:37:79:04:c9:67:c2:c6:76:6f:97:
ef:25:ca:ee:1e:77:40:8d:3c:bb:9a:9f:da:a8:43:
17:2a:74:97:a7:c0:e4:11:c5:5c:50:50:4f:8c:34:
bc:08:da:c8:c0:e7:1b:82:65:a1:06:c0:03:5c:e8:
70:d5:9a:bb:f5:cb:90:7d:e8:de:7a:da:ce:95:18:
1e:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:A1:19:84:A4:89:5D:C8:17:80:20:38:01:DD:1D:07:4B:CF:09:2F
X509v3 Authority Key Identifier:
keyid:97:C9:0E:25:21:2D:88:7C:F9:E1:DE:6F:DD:F5:51:BA:81:2F:A1:39
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/8C7A319A3B1D11F1B7560101CF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.177.184.0/24
Signature Algorithm: sha256WithRSAEncryption
dc:62:22:0a:f8:cd:28:11:2c:92:40:05:14:d0:6a:0b:74:b5:
67:02:b7:11:ce:86:b9:6d:b1:5d:80:a3:54:26:e7:aa:ba:81:
0b:88:de:12:5b:2d:fc:c3:e5:67:bb:c3:9b:e6:63:9a:e7:e2:
16:30:59:97:2d:e8:76:9a:e0:bd:46:2f:87:55:15:ab:2c:a3:
94:bd:c5:e6:26:97:b7:6d:7b:2e:ae:b8:d3:84:b7:fd:cb:d6:
da:e6:76:1c:8e:f4:17:01:34:6b:b9:d4:1e:92:8d:6b:46:45:
31:87:b7:cc:9e:81:44:e3:72:a2:2a:53:19:73:20:06:95:7b:
e0:7e:b5:c8:f1:3f:7d:e3:9c:d4:95:9c:76:d6:24:c8:5b:40:
5b:c4:8c:ca:01:87:f7:4c:a9:72:c3:83:9d:b9:5c:e5:e8:fd:
f4:b6:42:97:f2:92:c8:bc:9a:6a:32:54:19:2d:60:6d:45:dd:
94:34:35:af:30:c9:05:72:f0:25:f4:55:06:c8:39:cf:26:52:
83:6b:b0:3c:7f:cb:4f:c6:4e:23:4d:50:51:1a:c3:ad:64:2c:
55:21:a0:da:fd:0b:45:e4:32:15:57:b6:52:17:f6:ec:69:c7:
72:bd:cd:bb:8b:d2:d5:de:95:0d:1f:8c:ef:fe:73:3e:f9:1e:
a2:fb:1f:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 12:10:18 2026 by rpki-client