Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F365B85A/EEF658FE2E6F11F1B403BDCFDAE4EC9C/2543C8E0333B11F196A6ABF4CE1D38B0.roa
File: 2543C8E0333B11F196A6ABF4CE1D38B0.roa (raw, json)
Hash identifier: G2ssf/8oSQVCrWjALHGdeM1Qoiemsllf9g2rfm2ESfQ=
Subject key identifier: C2:AD:C6:88:59:20:3A:8F:D9:AC:64:14:87:20:A9:98:21:05:41:8D
Certificate issuer: /CN=F365B85AAF/serialNumber=6D5F7C1441AC4ECDF7866E415E56386423BC5CA7
Certificate serial: 0A
Authority key identifier: 6D:5F:7C:14:41:AC:4E:CD:F7:86:6E:41:5E:56:38:64:23:BC:5C:A7
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/bV98FEGsTs33hm5BXlY4ZCO8XKc.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F365B85A/EEF658FE2E6F11F1B403BDCFDAE4EC9C/2543C8E0333B11F196A6ABF4CE1D38B0.roa
Signing time: Wed 08 Apr 2026 11:07:35 +0000
ROA not before: Wed 08 Apr 2026 11:07:30 +0000
ROA not after: Sat 08 Apr 2028 11:07:30 +0000
asID: 37329
IP address blocks: 2c0f:fd48::/32 maxlen: 48
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F365B85A/EEF658FE2E6F11F1B403BDCFDAE4EC9C/bV98FEGsTs33hm5BXlY4ZCO8XKc.crl
rsync://rpki.afrinic.net/repository/member_repository/F365B85A/EEF658FE2E6F11F1B403BDCFDAE4EC9C/bV98FEGsTs33hm5BXlY4ZCO8XKc.mft
rsync://rpki.afrinic.net/repository/afrinic/bV98FEGsTs33hm5BXlY4ZCO8XKc.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 00:07:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10 (0xa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F365B85AAF, serialNumber=6D5F7C1441AC4ECDF7866E415E56386423BC5CA7
Validity
Not Before: Apr 8 11:07:30 2026 GMT
Not After : Apr 8 11:07:30 2028 GMT
Subject: CN=69d636f7-2f1b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:e4:16:70:b3:02:a1:e5:88:32:ac:3f:f7:23:
d2:bc:99:3f:fd:69:62:9f:cd:c1:4b:49:b8:b4:8f:
d2:e7:8e:d3:1d:95:d8:55:f4:1d:04:a0:0c:77:0f:
6c:3d:e3:f4:ca:e4:63:07:2e:2b:75:66:64:d0:8e:
36:8a:d1:11:94:5c:a9:b0:1f:f4:2d:b9:7e:71:e1:
25:33:3e:0f:3e:0a:bf:0c:7b:ab:90:ef:b3:76:82:
de:e2:7b:32:85:ec:37:92:2a:92:39:e2:b3:17:60:
88:c0:28:f1:5c:55:60:93:bb:a7:bf:23:96:7a:7a:
ff:60:ec:4d:c7:e5:2b:d4:9c:31:e2:d3:71:f9:15:
2c:97:f0:24:7d:a5:1e:99:1d:18:87:a5:33:d6:54:
47:21:a0:1b:49:a2:35:6d:af:a4:0f:bd:b3:03:d1:
a5:fe:b7:54:21:c8:5a:54:3b:f8:8b:fb:83:48:b7:
ff:3b:db:6c:41:01:e6:40:f4:5f:d5:e6:16:bb:23:
57:e6:07:a5:d6:8a:d9:3e:27:2d:a8:ac:8d:57:4d:
0f:0e:5d:c7:df:2e:16:ea:91:4c:d7:45:73:45:38:
e8:3f:89:f7:7d:76:54:cf:d8:23:a9:a5:d3:56:d1:
56:0d:a1:34:0f:57:f2:f6:b7:13:45:ff:fc:20:e9:
db:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:AD:C6:88:59:20:3A:8F:D9:AC:64:14:87:20:A9:98:21:05:41:8D
X509v3 Authority Key Identifier:
keyid:6D:5F:7C:14:41:AC:4E:CD:F7:86:6E:41:5E:56:38:64:23:BC:5C:A7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F365B85A/EEF658FE2E6F11F1B403BDCFDAE4EC9C/bV98FEGsTs33hm5BXlY4ZCO8XKc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/bV98FEGsTs33hm5BXlY4ZCO8XKc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F365B85A/EEF658FE2E6F11F1B403BDCFDAE4EC9C/2543C8E0333B11F196A6ABF4CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:fd48::/32
Signature Algorithm: sha256WithRSAEncryption
c0:3c:82:b8:d1:0a:d7:b4:5a:79:e0:12:1d:32:e2:a3:9d:c8:
38:8b:89:52:e1:33:e1:7c:df:b2:52:13:09:90:a3:e3:fd:7b:
5f:34:f4:9d:17:5c:cf:10:d8:06:75:df:e6:bd:9a:7c:b5:01:
ad:6e:3b:78:da:0b:9b:08:f0:8d:33:43:f8:77:04:96:ff:67:
04:53:43:c9:4a:62:bd:52:49:e1:b8:52:70:e2:3c:89:c5:a3:
5f:4d:d7:15:ce:c8:fc:4f:99:6f:f3:39:8f:c7:7d:71:70:71:
26:09:91:2d:95:8d:5a:e9:76:16:78:a5:1d:64:52:d1:c1:5f:
29:32:88:e9:a1:e5:d1:e2:0f:e9:10:0d:02:ad:9b:54:06:28:
73:c8:d5:36:48:26:ed:66:8b:5d:d0:53:1b:27:cb:73:8f:ed:
92:fc:cb:5a:3a:3c:3a:e0:b1:35:3e:5e:14:c6:33:fe:a5:fc:
a9:25:55:df:8f:9a:9d:cc:ed:0a:f5:97:24:19:40:59:70:61:
73:2f:8e:15:17:e8:48:04:8e:21:e0:1a:6b:bf:b7:2e:60:dd:
42:99:e7:40:e1:66:30:d2:4b:cd:4c:17:0c:73:15:50:28:b1:
02:90:82:40:0d:06:7d:d4:3b:62:6d:bc:f2:7e:ce:36:d7:65:
21:8b:71:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 13:28:36 2026 by rpki-client