Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/36992B961A4311F19B9112F2DAE4EC9C.roa
File: 36992B961A4311F19B9112F2DAE4EC9C.roa (raw, json)
Hash identifier: VqP7unPQbB+oqLEMkE4BH7nP8oBXlliLRkSaCRIgWOI=
Subject key identifier: D8:84:02:2F:76:D2:78:59:A3:57:1A:CA:D7:B5:DD:23:BF:73:C6:94
Certificate issuer: /CN=F367DFA4AF/serialNumber=97C90E25212D887CF9E1DE6FDDF551BA812FA139
Certificate serial: 08F6
Authority key identifier: 97:C9:0E:25:21:2D:88:7C:F9:E1:DE:6F:DD:F5:51:BA:81:2F:A1:39
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/36992B961A4311F19B9112F2DAE4EC9C.roa
Signing time: Sat 07 Mar 2026 16:32:21 +0000
ROA not before: Sat 07 Mar 2026 16:32:16 +0000
ROA not after: Sat 14 Mar 2026 16:32:16 +0000
asID: 22724
IP address blocks: 102.177.166.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.crl
rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.mft
rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 14 Mar 2026 16:32:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2294 (0x8f6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367DFA4AF, serialNumber=97C90E25212D887CF9E1DE6FDDF551BA812FA139
Validity
Not Before: Mar 7 16:32:16 2026 GMT
Not After : Mar 14 16:32:16 2026 GMT
Subject: CN=69ac5315-48dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:ab:c2:f5:1f:0b:06:87:b0:ff:9a:55:7b:1e:
86:16:44:64:4b:ef:2b:e7:10:40:e6:38:92:94:8a:
66:e3:e6:80:f7:59:6b:99:f5:41:cc:d0:27:30:71:
99:f3:95:92:6c:13:b4:e7:03:6b:5e:39:9c:54:3a:
5d:4f:dd:15:23:22:1b:78:d0:a5:46:ee:0b:b7:4f:
d0:19:76:39:30:c3:97:70:83:3c:71:d9:85:ba:49:
2a:85:51:cb:40:8f:d0:94:27:3c:67:48:ae:dd:ac:
f2:cd:73:b7:89:0a:ce:e8:ae:3a:8c:48:0c:97:16:
87:93:46:53:be:c9:06:9a:b5:99:5c:81:21:32:a5:
11:8a:9f:54:e8:2d:60:f5:02:dc:64:a1:3e:fa:c2:
b4:fe:b9:a1:7d:3d:13:84:87:e5:74:91:cb:b7:0d:
79:08:ae:ac:5e:0f:5b:46:8a:d4:e1:c5:bb:f2:88:
d2:bb:b7:d8:e5:e4:1e:fd:97:da:72:c5:a8:06:a3:
0c:09:32:68:a1:2a:79:1a:89:07:f7:67:dd:cc:f9:
1d:e2:82:df:28:50:64:f6:f5:39:4f:8a:76:87:07:
3a:e5:40:f7:7c:ba:36:58:94:70:e8:e5:5a:ef:fa:
7a:b7:70:10:ad:2f:b9:1f:1b:d4:12:6b:cc:bc:00:
50:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:84:02:2F:76:D2:78:59:A3:57:1A:CA:D7:B5:DD:23:BF:73:C6:94
X509v3 Authority Key Identifier:
keyid:97:C9:0E:25:21:2D:88:7C:F9:E1:DE:6F:DD:F5:51:BA:81:2F:A1:39
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/36992B961A4311F19B9112F2DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.177.166.0/24
Signature Algorithm: sha256WithRSAEncryption
70:02:67:35:bc:6a:2e:a9:16:a8:a0:93:d0:16:3d:06:17:3a:
20:98:ce:49:c6:90:3f:c2:74:b0:72:7d:df:43:95:6d:2c:4a:
30:46:65:ee:74:1d:79:48:2a:0e:a2:79:68:b4:bb:8c:9d:20:
a8:18:f4:e9:fb:55:eb:5b:2b:67:ce:c0:8b:0e:cb:0e:3e:cb:
57:ab:6f:2e:08:2c:db:60:c8:13:58:1f:00:dc:ad:01:be:f4:
5f:90:39:8e:12:6b:45:ab:c9:e4:37:71:a0:13:d4:99:a9:63:
eb:16:bf:21:af:ad:6e:7d:5e:b6:38:89:09:e6:57:b6:e5:ec:
90:83:40:5f:75:47:79:b8:52:c3:4c:1f:13:c5:10:35:94:3f:
d9:df:a1:b7:77:e2:6e:98:ad:b1:a9:be:6f:2d:86:00:9c:ae:
e1:8e:68:30:29:3a:e1:f3:3b:81:1b:91:a6:8b:36:2e:59:30:
07:89:f5:fa:e8:95:1d:32:45:98:56:8b:81:2f:62:10:2b:75:
79:a3:b0:b1:42:3d:24:7e:59:c4:3e:fe:4f:84:8c:68:fb:2a:
33:02:e2:1a:9a:a7:04:e4:6a:02:3a:0a:af:07:a3:27:ac:84:
7a:ff:1b:bb:41:b8:e9:12:67:0c:0e:34:95:08:8f:d8:a0:74:
a1:0a:0c:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 14 03:22:45 2026 by rpki-client