Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F365B85A/EEF658FE2E6F11F1B403BDCFDAE4EC9C/85755346333B11F1B30738F5CE1D38B0.roa
File: 85755346333B11F1B30738F5CE1D38B0.roa (raw, json)
Hash identifier: rGTNXKGuGqxaQ4Lg48KRihf3gXX5Ewp6jqlHKylpdaA=
Subject key identifier: 93:59:FD:3A:9F:C8:A6:CC:4C:3A:A0:B3:02:98:84:34:36:6E:44:44
Certificate issuer: /CN=F365B85AAF/serialNumber=6D5F7C1441AC4ECDF7866E415E56386423BC5CA7
Certificate serial: 0E
Authority key identifier: 6D:5F:7C:14:41:AC:4E:CD:F7:86:6E:41:5E:56:38:64:23:BC:5C:A7
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/bV98FEGsTs33hm5BXlY4ZCO8XKc.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F365B85A/EEF658FE2E6F11F1B403BDCFDAE4EC9C/85755346333B11F1B30738F5CE1D38B0.roa
Signing time: Wed 08 Apr 2026 11:10:16 +0000
ROA not before: Wed 08 Apr 2026 11:10:12 +0000
ROA not after: Sat 08 Apr 2028 11:10:12 +0000
asID: 37329
IP address blocks: 102.207.50.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F365B85A/EEF658FE2E6F11F1B403BDCFDAE4EC9C/bV98FEGsTs33hm5BXlY4ZCO8XKc.crl
rsync://rpki.afrinic.net/repository/member_repository/F365B85A/EEF658FE2E6F11F1B403BDCFDAE4EC9C/bV98FEGsTs33hm5BXlY4ZCO8XKc.mft
rsync://rpki.afrinic.net/repository/afrinic/bV98FEGsTs33hm5BXlY4ZCO8XKc.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 00:07:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14 (0xe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F365B85AAF, serialNumber=6D5F7C1441AC4ECDF7866E415E56386423BC5CA7
Validity
Not Before: Apr 8 11:10:12 2026 GMT
Not After : Apr 8 11:10:12 2028 GMT
Subject: CN=69d63798-749e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:85:f0:96:d1:a8:37:c4:40:0c:bf:f4:c1:4c:
16:09:1c:0f:56:1b:a2:79:b1:fb:93:c9:d9:b2:45:
a2:6a:c0:96:61:04:bd:88:28:57:a3:c6:39:26:c2:
d3:07:ff:05:47:ef:14:51:a6:38:5d:eb:f7:3f:52:
76:70:e4:69:ee:2a:19:70:ba:2b:a6:5f:58:6e:3f:
62:20:f2:ac:e9:6e:4a:33:1c:c4:e9:7d:f5:98:21:
43:b8:2d:02:34:77:c5:50:ec:fb:1d:d9:23:f8:a7:
cc:76:80:27:1f:d9:88:3a:3a:e2:fe:25:6e:a4:52:
ad:32:b5:af:ad:fc:77:dc:83:f2:0c:49:20:ed:58:
59:c9:0b:6f:06:c5:ea:3a:02:ab:d3:80:52:34:1e:
f7:53:d7:71:1b:89:f2:66:b2:67:60:41:b9:bc:24:
eb:0e:78:38:71:a2:27:7d:1d:4a:4a:3b:42:89:ef:
43:95:dd:c1:ee:cc:95:dc:df:29:99:af:db:f5:66:
47:38:8c:41:fe:51:10:e9:e6:42:19:f1:25:37:a7:
34:c0:af:ae:42:6b:fb:8c:de:97:f9:03:fd:5a:a2:
6f:a1:ba:e8:b3:f8:60:18:0a:1b:c8:c1:04:bf:45:
f6:94:58:20:da:c7:08:d8:f8:5c:ed:0d:e4:1d:6d:
20:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:59:FD:3A:9F:C8:A6:CC:4C:3A:A0:B3:02:98:84:34:36:6E:44:44
X509v3 Authority Key Identifier:
keyid:6D:5F:7C:14:41:AC:4E:CD:F7:86:6E:41:5E:56:38:64:23:BC:5C:A7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F365B85A/EEF658FE2E6F11F1B403BDCFDAE4EC9C/bV98FEGsTs33hm5BXlY4ZCO8XKc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/bV98FEGsTs33hm5BXlY4ZCO8XKc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F365B85A/EEF658FE2E6F11F1B403BDCFDAE4EC9C/85755346333B11F1B30738F5CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.207.50.0/23
Signature Algorithm: sha256WithRSAEncryption
1e:b3:78:bd:9f:01:f0:31:ba:01:9f:4a:d0:fa:02:ce:1b:2d:
30:b9:8c:2a:69:36:cb:27:9e:d1:75:23:c8:de:c2:8b:f1:1c:
31:cb:e8:e1:78:ac:3f:3c:98:20:a2:3d:d8:9f:03:b6:88:0f:
e4:b9:a1:0e:8d:de:f6:47:a3:0c:61:04:5c:3d:66:0f:d4:e4:
cf:c6:15:d0:1b:86:8d:46:8e:e7:83:eb:a1:21:f9:92:2e:21:
d0:23:bd:72:af:23:1a:30:6a:b1:42:c6:98:25:78:7b:2a:41:
92:5e:aa:6b:ff:61:e9:62:26:81:d2:77:a6:f7:3f:d6:60:33:
35:e1:e9:01:c7:e1:9c:0b:7c:ca:31:8a:93:92:e3:b9:80:3e:
48:28:17:c0:41:58:bd:23:fe:af:69:2f:35:14:ed:71:a9:19:
4b:b9:58:b4:a3:37:bd:4e:0e:17:b6:12:3d:d9:9f:65:b9:69:
b9:13:fc:2a:c5:c5:ef:54:56:7f:8c:50:e4:0b:4e:17:52:d0:
fa:44:f0:ad:4b:c3:e5:00:18:b1:ab:cc:ae:2a:48:f7:87:79:
23:f3:86:3c:85:5d:3f:96:fc:2d:fd:2a:b1:8e:ec:96:72:f4:
c3:4d:9a:dc:ff:1e:05:49:f0:9a:7d:4b:76:ee:a6:6d:3e:a3:
ae:a5:32:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 13:28:30 2026 by rpki-client