Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36178B7/15810E4C170F11F1A6B8F3BDDAE4EC9C/C8CD247417BC11F1BE3B9AEDDAE4EC9C.roa
File: C8CD247417BC11F1BE3B9AEDDAE4EC9C.roa (raw, json)
Hash identifier: iqjOXjoK3SelRrgitYQIUB9lYBSmjguVzAy9QzoOASA=
Subject key identifier: 67:53:F7:5D:CB:4F:EE:1B:6C:B2:AC:AE:4A:98:CE:74:24:92:6A:ED
Certificate issuer: /CN=F36178B7AF/serialNumber=2E103E7DEEE0D0D82CE5B3DAAE854178788E417F
Certificate serial: 06
Authority key identifier: 2E:10:3E:7D:EE:E0:D0:D8:2C:E5:B3:DA:AE:85:41:78:78:8E:41:7F
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/LhA-fe7g0Ngs5bParoVBeHiOQX8.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36178B7/15810E4C170F11F1A6B8F3BDDAE4EC9C/C8CD247417BC11F1BE3B9AEDDAE4EC9C.roa
Signing time: Wed 04 Mar 2026 11:25:01 +0000
ROA not before: Wed 04 Mar 2026 11:24:57 +0000
ROA not after: Tue 04 Mar 2031 11:24:57 +0000
asID: 37398
IP address blocks: 41.77.168.0/21 maxlen: 21
41.77.168.0/22 maxlen: 22
41.77.172.0/22 maxlen: 22
41.77.172.0/23 maxlen: 23
41.77.174.0/24 maxlen: 24
41.77.175.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36178B7/15810E4C170F11F1A6B8F3BDDAE4EC9C/LhA-fe7g0Ngs5bParoVBeHiOQX8.crl
rsync://rpki.afrinic.net/repository/member_repository/F36178B7/15810E4C170F11F1A6B8F3BDDAE4EC9C/LhA-fe7g0Ngs5bParoVBeHiOQX8.mft
rsync://rpki.afrinic.net/repository/afrinic/LhA-fe7g0Ngs5bParoVBeHiOQX8.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 25 Mar 2026 00:06:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6 (0x6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36178B7AF, serialNumber=2E103E7DEEE0D0D82CE5B3DAAE854178788E417F
Validity
Not Before: Mar 4 11:24:57 2026 GMT
Not After : Mar 4 11:24:57 2031 GMT
Subject: CN=69a8168d-5059
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:18:cb:fc:6a:55:9d:65:66:ef:a8:90:90:1e:
32:0d:5b:1f:0d:52:6f:5a:e2:dc:89:cb:dd:e9:8d:
f8:21:fe:fd:6b:bf:c6:9d:89:4f:31:8a:74:9c:bb:
8d:96:24:32:b1:f9:46:bb:f2:e8:2e:30:00:c3:22:
49:13:d2:9e:64:6c:23:0d:26:f0:17:21:b5:d0:87:
e9:4d:2f:c2:18:fe:cf:a9:8d:31:d2:a7:47:ba:e8:
dd:9a:10:46:fb:07:ca:d1:b6:7a:1d:b3:82:cf:12:
66:2a:35:04:0f:1a:f4:0e:35:81:2c:73:49:da:cf:
98:f3:57:37:cb:af:5f:98:1f:83:22:a5:6c:a8:ff:
d3:c1:b5:fe:97:f5:67:2e:84:9b:24:4d:5a:e8:2a:
78:87:52:6d:7c:5f:35:2b:48:a1:1b:62:b2:34:a0:
06:dc:c9:ba:37:e6:23:b8:42:48:fa:c9:e3:6a:b2:
e8:b4:d8:ba:30:ac:a9:e0:ba:c4:11:6e:2b:25:f6:
71:86:0e:cd:8c:da:4a:4a:05:66:51:d8:c0:a7:07:
7f:7c:85:ab:7f:4f:96:32:7f:c0:7c:15:88:83:80:
6f:a9:e4:20:6f:e9:48:f7:21:3c:1a:5c:9b:47:2a:
6d:b7:a3:76:e2:66:e3:3f:00:06:41:11:88:e8:fe:
3d:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:53:F7:5D:CB:4F:EE:1B:6C:B2:AC:AE:4A:98:CE:74:24:92:6A:ED
X509v3 Authority Key Identifier:
keyid:2E:10:3E:7D:EE:E0:D0:D8:2C:E5:B3:DA:AE:85:41:78:78:8E:41:7F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36178B7/15810E4C170F11F1A6B8F3BDDAE4EC9C/LhA-fe7g0Ngs5bParoVBeHiOQX8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/LhA-fe7g0Ngs5bParoVBeHiOQX8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36178B7/15810E4C170F11F1A6B8F3BDDAE4EC9C/C8CD247417BC11F1BE3B9AEDDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.77.168.0/21
Signature Algorithm: sha256WithRSAEncryption
79:ee:14:d2:2f:cd:21:00:64:9d:72:32:11:36:c0:84:7f:db:
00:28:a3:e9:e8:e2:4c:6d:64:61:99:e5:01:50:29:a6:1d:f5:
64:63:cb:7a:11:b5:c5:5b:f5:35:a9:ed:d2:10:06:c7:b2:41:
e7:7a:59:66:9e:a8:20:1d:f0:ca:6c:10:6c:34:fd:95:08:84:
dc:01:09:a8:f9:99:ae:c8:6f:41:d7:dc:10:41:03:a4:e7:28:
82:b1:81:ad:93:92:1b:25:af:c7:f0:63:d1:d0:cf:fb:cf:ae:
b1:b8:ff:93:e6:3c:a6:6b:f5:b8:32:bd:c8:cd:c0:55:78:84:
41:3d:b3:72:aa:1d:db:44:d3:43:6f:46:43:cf:3f:7c:31:db:
17:49:c2:c5:29:26:b0:1d:b1:9e:40:9a:a0:46:04:89:73:40:
ce:e3:ae:62:78:41:96:46:c5:cd:00:13:76:23:ad:5f:54:73:
c7:24:8c:0d:3c:61:d4:a3:34:41:ec:ec:91:06:41:cc:2f:00:
31:32:e2:9a:3b:5c:11:28:a4:25:04:35:9e:38:1a:10:ab:b2:
3d:3c:ae:0e:cf:de:13:83:ba:d5:5e:66:25:3e:a1:b7:c6:2f:
5b:76:71:4a:a5:81:87:3e:84:ad:3c:2d:9c:0d:bc:94:f5:ed:
59:c4:25:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 23 11:40:46 2026 by rpki-client