Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368CC63/0F97EDE8B24D11EFBDE38866762E951A/07378F8C22A911F1A9CE04E7DAE4EC9C.roa
File: 07378F8C22A911F1A9CE04E7DAE4EC9C.roa (raw, json)
Hash identifier: MwtDui3KOTCCH/WJVUEi4Tdd2fiyqG9nvfQXGB5WOzM=
Subject key identifier: D0:FF:98:A9:E4:E4:AF:04:2D:A7:36:20:11:99:2F:F4:7E:66:6C:C4
Certificate issuer: /CN=F368CC63AF/serialNumber=3F2D44F5035BD76916935671263D1F1FE22D3FD1
Certificate serial: 01E5
Authority key identifier: 3F:2D:44:F5:03:5B:D7:69:16:93:56:71:26:3D:1F:1F:E2:2D:3F:D1
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/Py1E9QNb12kWk1ZxJj0fH-ItP9E.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368CC63/0F97EDE8B24D11EFBDE38866762E951A/07378F8C22A911F1A9CE04E7DAE4EC9C.roa
Signing time: Wed 18 Mar 2026 09:01:20 +0000
ROA not before: Wed 18 Mar 2026 09:01:14 +0000
ROA not after: Tue 18 Mar 2036 09:01:14 +0000
asID: 36924
IP address blocks: 102.203.12.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368CC63/0F97EDE8B24D11EFBDE38866762E951A/Py1E9QNb12kWk1ZxJj0fH-ItP9E.crl
rsync://rpki.afrinic.net/repository/member_repository/F368CC63/0F97EDE8B24D11EFBDE38866762E951A/Py1E9QNb12kWk1ZxJj0fH-ItP9E.mft
rsync://rpki.afrinic.net/repository/afrinic/Py1E9QNb12kWk1ZxJj0fH-ItP9E.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 28 Mar 2026 00:07:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 485 (0x1e5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368CC63AF, serialNumber=3F2D44F5035BD76916935671263D1F1FE22D3FD1
Validity
Not Before: Mar 18 09:01:14 2026 GMT
Not After : Mar 18 09:01:14 2036 GMT
Subject: CN=69ba69df-e76b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:45:57:c5:69:d9:85:8a:7c:f2:b4:35:2b:c2:
36:8f:1a:30:16:06:54:ff:0c:e3:9d:a8:b2:ec:c9:
45:2c:1a:ac:1f:c0:5c:43:e4:96:17:06:ab:8e:55:
7d:b9:d2:bf:3d:4b:67:db:de:e5:bc:d2:63:4c:f2:
5b:8b:6e:bf:04:f6:22:f4:42:54:89:10:ab:99:44:
c7:e7:44:28:c1:ce:60:d3:6f:bc:0c:77:09:d6:6b:
dd:e9:4d:49:84:37:31:5d:c4:71:ab:14:76:4d:fc:
11:1f:ea:b0:20:a7:6f:b8:7e:63:32:cc:2e:8c:dd:
a8:bb:bd:f9:1f:b6:2b:df:4f:a6:52:4f:b0:e6:69:
ab:81:a1:6f:3e:b8:d0:a3:7e:bd:ad:9a:0b:75:05:
20:bc:0d:ce:97:5c:e2:da:32:55:c7:b7:42:17:c6:
e8:f7:6a:9e:03:30:a2:d2:2f:7a:49:40:44:60:c1:
43:21:ea:35:ec:ce:81:e6:72:62:e1:c3:f9:5e:08:
c1:bb:6b:71:f5:b3:69:37:43:80:c7:2f:c7:04:94:
75:6f:3b:2f:a9:b3:b1:2a:42:c4:19:f5:42:87:13:
2f:da:98:9b:9c:e2:09:ad:ee:35:4c:ef:2f:42:97:
95:56:76:ad:3d:60:1e:2d:dc:1e:36:7a:06:fb:8c:
55:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:FF:98:A9:E4:E4:AF:04:2D:A7:36:20:11:99:2F:F4:7E:66:6C:C4
X509v3 Authority Key Identifier:
keyid:3F:2D:44:F5:03:5B:D7:69:16:93:56:71:26:3D:1F:1F:E2:2D:3F:D1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368CC63/0F97EDE8B24D11EFBDE38866762E951A/Py1E9QNb12kWk1ZxJj0fH-ItP9E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/Py1E9QNb12kWk1ZxJj0fH-ItP9E.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368CC63/0F97EDE8B24D11EFBDE38866762E951A/07378F8C22A911F1A9CE04E7DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.203.12.0/22
Signature Algorithm: sha256WithRSAEncryption
2b:5e:bf:6a:e5:6f:bd:c6:93:59:f8:6d:68:c6:6c:52:3b:69:
49:18:db:fd:fc:33:e1:37:0b:db:af:9f:de:6a:7f:02:ae:4f:
69:cc:74:5f:09:46:4a:78:cf:11:52:41:4e:63:11:8d:83:b2:
f1:ec:92:06:fc:18:e1:ef:c6:0f:29:52:84:0c:ef:4c:8c:33:
0f:5a:86:63:c4:df:a6:a4:a6:f6:ba:fc:21:a8:de:9d:c3:9a:
dd:de:15:2d:74:d3:0c:85:10:41:37:3a:17:22:0d:c4:63:86:
9d:4d:0f:d9:6c:34:e8:92:b5:ae:4e:42:1e:98:c8:7d:06:c1:
79:7e:da:3d:f4:36:68:6a:f0:44:63:18:30:ee:f1:b0:cf:ac:
b8:85:58:25:a9:b5:16:3c:ad:1f:a0:fc:7e:e2:bb:4d:ab:b2:
67:0d:bd:67:38:b9:4f:bb:95:0a:8b:14:3e:69:72:d9:60:98:
31:1b:89:02:81:53:1b:6d:e1:34:8f:36:10:b3:58:e5:89:7b:
2c:d1:5a:da:e9:db:71:49:65:ac:b4:cf:cd:d5:0d:63:3c:4b:
26:1d:b6:e1:04:02:b2:a2:08:e9:0a:ce:00:e9:b3:d0:a3:a8:
9e:dc:51:21:17:03:06:4b:0c:8c:bf:eb:e5:0f:e9:5b:fe:d9:
64:5d:7b:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 15:48:25 2026 by rpki-client