Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/3FA1023C1B9111F18CA5237EDAE4EC9C.roa
File: 3FA1023C1B9111F18CA5237EDAE4EC9C.roa (raw, json)
Hash identifier: 7wMNOmE0M8xB79nZOnfL6miRqzABC/5U1f5ccrxZs5U=
Subject key identifier: 62:56:C3:C9:FA:0E:C8:13:C1:B7:22:D1:13:A4:91:F2:0F:1D:64:12
Certificate issuer: /CN=F367DFA4AF/serialNumber=97C90E25212D887CF9E1DE6FDDF551BA812FA139
Certificate serial: 0900
Authority key identifier: 97:C9:0E:25:21:2D:88:7C:F9:E1:DE:6F:DD:F5:51:BA:81:2F:A1:39
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/3FA1023C1B9111F18CA5237EDAE4EC9C.roa
Signing time: Mon 09 Mar 2026 08:23:28 +0000
ROA not before: Mon 09 Mar 2026 08:23:23 +0000
ROA not after: Sat 14 Mar 2026 08:23:23 +0000
asID: 22724
IP address blocks: 102.177.160.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.crl
rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.mft
rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 14 Mar 2026 08:23:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2304 (0x900)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367DFA4AF, serialNumber=97C90E25212D887CF9E1DE6FDDF551BA812FA139
Validity
Not Before: Mar 9 08:23:23 2026 GMT
Not After : Mar 14 08:23:23 2026 GMT
Subject: CN=69ae8380-5ec1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:55:f2:d0:4c:51:35:fc:dc:70:64:57:9b:26:
7a:45:88:ea:c0:f6:fd:93:2a:5e:e1:78:0e:9a:2a:
c0:0d:bf:de:81:99:09:f2:c4:27:f7:d2:b3:88:e9:
d5:4e:c9:67:22:77:45:53:d0:c7:78:bc:1f:82:75:
eb:73:2c:ce:47:45:d8:c7:a0:b8:85:f6:1a:a1:14:
61:20:9d:ca:6c:62:88:c6:fc:45:77:7b:59:7d:79:
d7:3c:d2:6d:47:5c:78:df:10:94:56:62:89:68:c8:
6a:c6:aa:b5:e4:49:39:48:d2:f5:d0:92:4f:24:7c:
c5:4d:57:04:a4:b8:5e:b7:be:dc:df:33:4c:e7:ad:
fa:a5:99:de:e9:78:9a:b1:3e:b7:7e:ae:4e:44:3c:
0f:5b:c2:e1:7c:49:1a:b0:4b:6a:6a:f1:29:06:e3:
85:c1:82:88:91:c5:28:bb:50:7f:d0:a4:fe:fd:55:
ed:f8:ee:5b:f1:11:03:9d:64:84:f5:bb:13:b1:cf:
23:0e:97:3e:ab:44:46:e1:d5:88:ed:76:34:3e:b1:
b0:c3:1b:b1:7a:ef:ef:d3:8e:64:62:98:c7:0a:9b:
15:59:87:21:dd:bb:d1:e3:fd:6b:0f:42:f6:5c:cb:
1b:f8:51:27:a8:8a:f2:1c:3e:27:6f:cd:a7:f7:e3:
b1:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:56:C3:C9:FA:0E:C8:13:C1:B7:22:D1:13:A4:91:F2:0F:1D:64:12
X509v3 Authority Key Identifier:
keyid:97:C9:0E:25:21:2D:88:7C:F9:E1:DE:6F:DD:F5:51:BA:81:2F:A1:39
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/3FA1023C1B9111F18CA5237EDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.177.160.0/20
Signature Algorithm: sha256WithRSAEncryption
c8:90:0f:3d:c8:da:d5:ff:9d:39:52:e7:09:41:45:12:a6:bc:
2c:ca:00:f7:60:db:13:28:fa:f1:3d:df:8c:81:93:5a:32:34:
39:d1:0d:6f:09:3b:3c:63:e4:bb:93:fc:8e:6d:69:14:82:24:
43:5a:be:5d:9c:b7:ea:93:73:f7:0b:23:56:bf:dc:8a:29:a6:
42:75:94:f5:3c:a3:df:ae:9e:ae:f0:8a:26:63:4f:1a:93:e6:
9a:6f:45:e5:cc:6c:be:4b:4e:b9:c6:ab:f1:46:9f:b2:14:b3:
a7:8a:58:d1:16:8f:f3:5d:e9:fb:0f:a5:c0:89:26:a0:f6:c5:
af:8c:ba:68:c2:e1:02:b9:3d:1f:d8:a9:95:6f:a0:10:b1:7a:
7c:a7:50:5f:96:c3:aa:c6:a9:64:15:c4:ae:0a:0e:f3:69:0e:
03:2b:06:38:e6:c5:3f:5c:75:64:5e:d2:29:af:c0:82:f5:73:
3a:79:ea:c9:4d:12:2d:07:3d:cd:6e:8b:23:16:ba:80:b9:9e:
c6:31:76:c4:a3:86:ab:69:83:e8:4c:72:5e:f2:11:57:a1:4e:
c9:31:9d:a3:3f:b3:72:d1:21:d1:0f:9e:c6:f7:f1:28:b2:f5:
76:66:73:02:58:8a:b4:39:9f:4d:0d:43:a3:1e:5e:03:aa:bf:
b2:ab:7d:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 14 03:22:46 2026 by rpki-client