Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36848BC/C0FEE47C26D011F09019149EDAE4EC9C/37918F14420411F18E38FBD0CE1D38B0.roa
File: 37918F14420411F18E38FBD0CE1D38B0.roa (raw, json)
Hash identifier: huC/6fmrz67aK5tVBCfKdufN8eEHqz7qMufHoZTK9SA=
Subject key identifier: 50:C2:96:DE:22:E8:8D:A5:F3:BE:BD:0C:FA:26:96:66:87:FA:05:DC
Certificate issuer: /CN=F36848BCAF/serialNumber=F72445BFF5EA83351F2E660D4D812D8F3481ECF3
Certificate serial: 0174
Authority key identifier: F7:24:45:BF:F5:EA:83:35:1F:2E:66:0D:4D:81:2D:8F:34:81:EC:F3
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/9yRFv_XqgzUfLmYNTYEtjzSB7PM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36848BC/C0FEE47C26D011F09019149EDAE4EC9C/37918F14420411F18E38FBD0CE1D38B0.roa
Signing time: Mon 27 Apr 2026 06:42:11 +0000
ROA not before: Mon 27 Apr 2026 06:42:06 +0000
ROA not after: Fri 30 Apr 2027 06:42:06 +0000
asID: 328761
IP address blocks: 102.221.112.0/23 maxlen: 25
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36848BC/C0FEE47C26D011F09019149EDAE4EC9C/9yRFv_XqgzUfLmYNTYEtjzSB7PM.crl
rsync://rpki.afrinic.net/repository/member_repository/F36848BC/C0FEE47C26D011F09019149EDAE4EC9C/9yRFv_XqgzUfLmYNTYEtjzSB7PM.mft
rsync://rpki.afrinic.net/repository/afrinic/9yRFv_XqgzUfLmYNTYEtjzSB7PM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 09 May 2026 00:07:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 372 (0x174)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36848BCAF, serialNumber=F72445BFF5EA83351F2E660D4D812D8F3481ECF3
Validity
Not Before: Apr 27 06:42:06 2026 GMT
Not After : Apr 30 06:42:06 2027 GMT
Subject: CN=69ef0543-967c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:79:9f:29:fb:9a:8c:db:d6:14:c4:18:9b:f5:
ab:df:e7:b7:80:0a:44:29:bb:ad:74:1d:d1:d3:e1:
f9:c0:f2:8b:3c:db:9c:71:32:ef:7a:1a:bd:20:1e:
2e:04:78:fb:2b:39:c1:e6:cb:6b:a8:c9:22:68:61:
7a:43:9c:21:49:40:f1:c2:97:c2:1e:20:76:d1:61:
39:f4:ae:d3:6a:e9:36:8b:b0:79:b9:e6:72:ab:73:
90:2d:81:47:ca:3a:f1:86:32:91:88:b3:82:75:92:
0c:94:d7:a9:b2:c9:6d:08:86:34:3a:e7:fa:46:de:
f8:26:7c:0b:87:3b:ef:26:c2:ee:2d:28:7a:fa:6a:
f9:50:54:c7:c4:ef:49:1c:13:7b:4a:d1:61:d6:33:
13:50:fa:98:bb:67:10:63:8f:6f:21:56:e5:18:d0:
ad:dc:73:f5:4a:d9:4b:80:2e:ac:17:3f:9d:5c:85:
63:1c:1c:d6:f3:15:37:00:ed:5f:85:b7:ef:33:13:
78:d2:dc:1f:1a:39:3e:3f:d1:cc:02:a8:36:18:bd:
11:6a:c7:fc:72:cf:28:41:48:76:9d:91:e6:ea:ae:
86:d6:80:ce:5b:1b:22:be:1b:40:db:bf:6f:05:27:
c9:73:0b:43:ac:33:f7:56:4d:a1:8b:a4:37:9c:7d:
db:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:C2:96:DE:22:E8:8D:A5:F3:BE:BD:0C:FA:26:96:66:87:FA:05:DC
X509v3 Authority Key Identifier:
keyid:F7:24:45:BF:F5:EA:83:35:1F:2E:66:0D:4D:81:2D:8F:34:81:EC:F3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36848BC/C0FEE47C26D011F09019149EDAE4EC9C/9yRFv_XqgzUfLmYNTYEtjzSB7PM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/9yRFv_XqgzUfLmYNTYEtjzSB7PM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36848BC/C0FEE47C26D011F09019149EDAE4EC9C/37918F14420411F18E38FBD0CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.221.112.0/23
Signature Algorithm: sha256WithRSAEncryption
6b:7a:8b:13:90:59:9b:87:c0:47:55:95:7c:ea:fe:0c:77:17:
85:fb:2a:d0:b7:09:be:f7:62:ae:79:05:30:4a:fb:80:a3:2a:
99:53:d7:2e:c6:d0:7a:5f:3e:95:02:d0:62:80:6c:ec:9b:06:
1b:22:38:a4:38:01:7e:12:f8:ed:43:71:07:62:a5:b2:57:2c:
01:f5:ba:6e:7d:4f:5c:32:13:c5:34:3b:aa:52:66:0b:dc:93:
1f:9e:73:36:f9:dd:ac:83:ab:30:10:34:bd:21:cd:4d:84:ea:
4f:83:9c:53:01:4f:cc:6e:9f:8f:f4:ff:e1:ed:eb:b3:8b:70:
20:fd:2d:0d:98:3a:bf:7b:a5:1b:71:c8:7c:c8:57:76:a6:84:
86:b3:ae:15:97:63:4a:5c:8a:32:fa:e0:e9:28:38:c3:19:be:
72:93:55:c4:c7:24:f1:7c:ef:ca:9f:43:2a:c5:3c:12:31:df:
56:29:81:d3:47:31:05:11:f5:83:e7:26:15:d1:6f:fb:48:ce:
5e:05:03:8e:cc:d1:00:28:ad:b8:0c:80:07:c9:38:64:17:06:
57:de:ae:53:d5:87:5c:be:3a:6e:46:f5:67:9d:de:b7:fe:f1:
4b:66:4d:60:83:fb:b1:4a:1b:43:6a:61:cc:96:99:a2:bf:0a:
95:de:af:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 7 22:19:29 2026 by rpki-client