Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/2AA43A941C4E11F18682A8D0DAE4EC9C.roa
File: 2AA43A941C4E11F18682A8D0DAE4EC9C.roa (raw, json)
Hash identifier: hQZ7kWeCYoj6TtJrgWyPNqzVujdgsVbsAyVBSjPN4g8=
Subject key identifier: 3F:46:E7:D5:B6:57:A6:3F:AC:CF:FC:08:8D:6D:63:01:70:2F:11:44
Certificate issuer: /CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Certificate serial: 17B6
Authority key identifier: 48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/2AA43A941C4E11F18682A8D0DAE4EC9C.roa
Signing time: Tue 10 Mar 2026 06:55:48 +0000
ROA not before: Tue 10 Mar 2026 06:55:42 +0000
ROA not after: Fri 10 Mar 2028 06:55:42 +0000
asID: 29802
IP address blocks: 102.165.20.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.mft
rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 18 Mar 2026 01:19:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6070 (0x17b6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C58D6AF, serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Validity
Not Before: Mar 10 06:55:42 2026 GMT
Not After : Mar 10 06:55:42 2028 GMT
Subject: CN=69afc074-10ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:64:74:e3:e2:f6:4e:b6:42:df:07:91:ba:53:
66:a4:8d:f8:05:30:36:fd:4a:dd:2b:f1:c6:f3:f9:
db:37:6d:c4:b0:50:85:ee:02:d5:73:8c:b1:7a:9b:
1b:92:65:e3:0c:19:f3:18:0b:6f:3f:09:5f:e1:8b:
2f:75:7c:86:e7:a7:e4:30:3f:11:88:13:b5:48:a3:
5e:a6:5c:66:1a:f0:7b:c2:72:82:8b:6b:65:fb:7f:
c2:21:dc:5c:aa:c0:a1:45:6a:eb:f3:15:f7:71:73:
30:02:bc:45:2a:53:4b:c1:63:53:2c:07:2c:f3:90:
b6:c0:43:83:b0:83:d6:5d:41:f2:fa:cc:31:34:0b:
80:59:1d:b1:9c:c4:83:a5:a5:f0:13:7a:e9:1e:e4:
35:74:5d:42:11:3e:74:82:2c:ef:cc:de:07:8c:39:
f7:36:91:8b:69:6b:9d:39:a4:1e:b3:2e:87:9a:39:
32:81:01:2e:f1:bb:99:c5:93:b2:6a:0d:64:59:d7:
f8:7a:b3:ec:cc:9c:c1:f2:82:ce:88:1b:2c:4c:49:
11:ed:1c:95:51:22:af:3f:f5:d3:fc:42:ce:ba:bb:
b5:98:0b:d9:5b:ef:04:fd:78:ee:96:46:af:fd:91:
8d:32:22:5a:19:c1:74:e5:e4:6b:ae:ef:0a:7b:12:
70:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:46:E7:D5:B6:57:A6:3F:AC:CF:FC:08:8D:6D:63:01:70:2F:11:44
X509v3 Authority Key Identifier:
keyid:48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/2AA43A941C4E11F18682A8D0DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.165.20.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:cf:2b:97:95:52:af:8a:ad:40:ae:c1:0d:2e:05:0f:0a:33:
eb:88:99:64:2b:c5:66:b7:f6:1c:95:4a:24:7a:ed:73:5b:8e:
f9:c7:2b:91:32:53:0d:db:6a:e2:b7:00:b4:26:b6:1a:8d:7f:
5d:a1:94:e0:ad:1c:e2:71:3c:17:b1:55:2c:57:54:37:09:b8:
50:5d:5b:1e:8b:25:a0:8c:41:23:d4:01:9c:6b:06:cd:92:cd:
0b:d4:45:4a:ce:93:94:d3:7d:4f:74:3e:f6:01:52:8d:0a:4b:
d0:12:fc:9c:46:ec:42:87:3f:80:df:bc:3d:e4:bf:9c:92:09:
6d:a6:08:27:aa:44:57:8f:ae:bf:9b:e6:8b:7f:b6:8b:02:0c:
9d:df:ed:41:42:c9:57:ac:0d:95:72:3c:45:ad:da:43:5b:0e:
bd:a2:83:cf:fa:fc:97:e9:ea:a3:c3:55:08:be:62:65:58:19:
eb:f7:9f:08:55:94:ae:a9:66:7c:4d:46:cc:94:0d:68:fd:fd:
8e:e6:aa:15:b5:d7:4a:09:de:5f:6e:d4:7d:a9:5a:ee:c1:12:
bd:49:86:4f:ba:4b:a6:93:70:05:a8:90:15:c7:06:06:f5:db:
19:61:ac:32:17:ed:ed:4f:bd:4c:9b:72:3c:25:9b:a6:a1:5a:
24:d6:77:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 17 02:17:12 2026 by rpki-client