Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363212D/1E968F6051B711ECBFC54543D8A014CE/EDDA3E501C6211F1AAA4E2C7DAE4EC9C.roa
File: EDDA3E501C6211F1AAA4E2C7DAE4EC9C.roa (raw, json)
Hash identifier: lUvvBVjsEjqfAsAmA0WnRzU1lqUEU7lO27ZrISQKKFs=
Subject key identifier: 34:02:75:A3:68:85:B8:FF:47:66:5A:A3:70:D1:24:17:DA:4F:5D:CC
Certificate issuer: /CN=F363212DAF/serialNumber=EBC4A85197C32B425638A6C7E5860B5964E657FE
Certificate serial: 0659
Authority key identifier: EB:C4:A8:51:97:C3:2B:42:56:38:A6:C7:E5:86:0B:59:64:E6:57:FE
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/68SoUZfDK0JWOKbH5YYLWWTmV_4.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363212D/1E968F6051B711ECBFC54543D8A014CE/EDDA3E501C6211F1AAA4E2C7DAE4EC9C.roa
Signing time: Tue 10 Mar 2026 09:24:25 +0000
ROA not before: Tue 10 Mar 2026 09:24:20 +0000
ROA not after: Wed 01 Dec 2049 09:24:20 +0000
asID: 327979
IP address blocks: 2c0f:f850::/32 maxlen: 48
2c0f:f850:1::/48 maxlen: 48
2c0f:f850:2::/48 maxlen: 48
2c0f:f850:3::/48 maxlen: 48
2c0f:f850:32::/48 maxlen: 48
2c0f:f850:34::/48 maxlen: 48
2c0f:f850:154::/48 maxlen: 48
2c0f:f850:216::/48 maxlen: 48
2c0f:f850:217::/48 maxlen: 48
2c0f:f850:218::/48 maxlen: 48
2c0f:f850:219::/48 maxlen: 48
2c0f:f850:dc01::/48 maxlen: 48
2c0f:f850:dc03::/48 maxlen: 48
2c0f:f850:dc05::/48 maxlen: 48
2c0f:f850:dc21::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F363212D/1E968F6051B711ECBFC54543D8A014CE/68SoUZfDK0JWOKbH5YYLWWTmV_4.crl
rsync://rpki.afrinic.net/repository/member_repository/F363212D/1E968F6051B711ECBFC54543D8A014CE/68SoUZfDK0JWOKbH5YYLWWTmV_4.mft
rsync://rpki.afrinic.net/repository/afrinic/68SoUZfDK0JWOKbH5YYLWWTmV_4.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 22 Mar 2026 00:06:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1625 (0x659)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363212DAF, serialNumber=EBC4A85197C32B425638A6C7E5860B5964E657FE
Validity
Not Before: Mar 10 09:24:20 2026 GMT
Not After : Dec 1 09:24:20 2049 GMT
Subject: CN=69afe349-c43e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:f2:e4:f7:a2:e8:bd:a5:e4:c2:3e:36:a6:b3:
ec:ba:0e:91:81:4a:11:04:b2:2d:af:fb:a4:af:d6:
1a:26:f0:dc:80:18:aa:88:ee:e9:f7:c9:48:60:d6:
ee:04:bd:bf:d6:20:bc:61:0b:5a:a6:16:27:59:61:
35:74:5e:58:36:2f:3d:99:61:66:29:bb:37:fe:14:
e8:f5:f8:89:3c:ea:33:e5:77:fa:38:c3:20:65:eb:
9c:d5:3e:e1:e5:0e:8a:e9:37:7a:48:cf:b9:45:2d:
fa:81:85:1a:49:bd:11:fb:68:1c:df:f5:ca:19:32:
ce:c7:5e:43:9a:15:64:4f:15:1d:b5:43:17:c3:96:
c7:66:19:f6:09:79:20:9b:2e:68:0a:ed:98:23:7e:
64:dd:9b:9a:e0:bb:21:a2:6f:ac:90:63:8d:07:f4:
76:c3:e8:94:2b:b8:58:12:fe:c6:e4:ba:76:24:3d:
d0:45:77:b0:12:3a:dc:aa:d8:d2:45:9b:84:be:8f:
72:9f:3b:98:68:d6:6d:f4:8b:f5:8c:72:ed:b4:ff:
2d:c0:cd:b1:58:2e:9a:64:10:06:bd:eb:88:ab:ec:
84:85:db:25:7a:2f:51:01:44:b3:cd:74:e2:9c:5f:
c1:3b:cb:74:53:0c:ed:c0:77:86:01:82:40:11:0e:
9b:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:02:75:A3:68:85:B8:FF:47:66:5A:A3:70:D1:24:17:DA:4F:5D:CC
X509v3 Authority Key Identifier:
keyid:EB:C4:A8:51:97:C3:2B:42:56:38:A6:C7:E5:86:0B:59:64:E6:57:FE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363212D/1E968F6051B711ECBFC54543D8A014CE/68SoUZfDK0JWOKbH5YYLWWTmV_4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/68SoUZfDK0JWOKbH5YYLWWTmV_4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363212D/1E968F6051B711ECBFC54543D8A014CE/EDDA3E501C6211F1AAA4E2C7DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:f850::/32
Signature Algorithm: sha256WithRSAEncryption
34:66:6f:f9:c9:89:ab:56:57:a9:60:46:43:f1:b7:fa:ca:d5:
13:68:14:d5:13:ba:3d:9e:e4:cc:f0:9b:69:e5:36:0b:18:ef:
be:30:24:6c:b6:41:b1:9d:cd:b1:35:72:6d:8e:f4:f1:2f:59:
48:f5:b5:5d:d4:ce:7e:81:7f:59:33:68:c3:7f:a9:ec:4f:9d:
66:69:05:96:97:a9:57:8c:5b:6c:c5:23:30:36:c0:26:61:b2:
38:40:88:cb:4d:01:e5:34:e3:0e:6f:fc:c3:7f:15:71:fa:46:
a7:e0:3b:fb:26:1c:11:5c:6a:4b:a3:3f:d5:fd:79:e5:ef:aa:
fe:4d:38:4b:f3:30:89:4b:eb:61:d5:61:a5:71:99:3c:e2:4c:
f7:49:7c:8d:8f:e5:d8:cb:3d:e3:8f:26:80:d3:98:2d:d8:10:
a3:09:7e:61:76:f6:b6:e5:e9:90:ec:3d:39:bf:c0:96:d1:fb:
d7:d3:80:d9:e6:b0:38:e8:f4:9e:68:ca:b2:69:fb:36:75:f9:
9a:63:2c:39:72:7c:3a:e6:0f:04:8f:f5:e0:fb:68:5e:f8:0d:
b1:cd:94:3e:2f:f7:f5:1c:d4:fd:35:96:47:51:29:8d:20:4d:
e8:85:51:c3:de:76:d5:f9:1f:ad:ef:03:33:74:0b:1f:65:2d:
1e:08:81:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 20 23:35:24 2026 by rpki-client