Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/02D8605617CD11F191ADCCCEDAE4EC9C.roa
File: 02D8605617CD11F191ADCCCEDAE4EC9C.roa (raw, json)
Hash identifier: MRw93l2uAjvhW1404iDcuEmxPiMNFYpv3lzIBzfJP+8=
Subject key identifier: 7E:B8:58:4F:D8:31:A7:33:75:4C:28:5B:32:1C:5A:55:D1:B6:5C:30
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 1E4C
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/02D8605617CD11F191ADCCCEDAE4EC9C.roa
Signing time: Wed 04 Mar 2026 13:21:11 +0000
ROA not before: Wed 04 Mar 2026 13:21:07 +0000
ROA not after: Thu 04 Mar 2027 13:21:07 +0000
asID: 214025
IP address blocks: 154.127.48.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 06 Mar 2026 13:21:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7756 (0x1e4c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF, serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Mar 4 13:21:07 2026 GMT
Not After : Mar 4 13:21:07 2027 GMT
Subject: CN=69a831c7-b33d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:6c:ea:70:72:b9:5a:a5:3c:52:7c:a3:9a:c9:
49:4e:cc:7e:a1:da:a9:4b:aa:c5:61:e1:d6:7e:d5:
38:41:27:7d:7e:07:5c:55:81:e3:c9:39:b1:02:61:
e1:43:cd:60:eb:e4:fc:90:69:dc:b0:b2:4c:86:ac:
4b:2e:f6:59:dc:ee:ba:bb:c4:73:e5:ee:e5:38:01:
f3:e7:69:61:9e:ee:42:36:32:d5:2a:6d:52:81:83:
f5:8c:d4:df:60:54:d7:66:4a:b5:bc:6d:35:7a:0f:
b3:4f:7c:ac:79:ba:c4:54:1a:0e:ef:d1:9e:cd:09:
6a:c4:21:36:d4:86:a3:2d:84:d2:9e:95:8a:8d:f5:
f1:d4:aa:a0:67:e7:bf:97:96:94:36:3e:1d:ee:84:
ca:f4:06:cb:33:d9:62:e3:27:65:44:fd:0f:c7:3f:
09:79:c3:52:66:03:ab:28:f4:b4:90:fe:3f:25:90:
ce:1f:65:a3:6a:6c:86:f1:b7:7c:86:92:61:0f:2d:
b9:20:4f:cb:a3:ea:d4:59:b6:27:11:ee:ad:47:7d:
64:93:3b:20:a5:15:b7:63:e2:71:e7:a0:e2:19:7e:
97:0a:ea:97:74:cb:26:9a:9d:cb:b8:a3:01:b9:bc:
9d:aa:a6:5b:09:d1:6a:4b:ab:5d:d7:b2:b2:6c:b7:
cb:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:B8:58:4F:D8:31:A7:33:75:4C:28:5B:32:1C:5A:55:D1:B6:5C:30
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/02D8605617CD11F191ADCCCEDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.127.48.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:2e:ba:ba:24:b8:da:41:9f:cd:90:65:f8:4c:a3:66:43:a4:
92:47:7e:27:86:1b:fd:1e:e2:f8:ad:39:1f:2a:61:24:73:93:
96:c3:7b:6a:84:13:e0:95:cc:1e:9f:3a:b2:06:b8:58:bb:15:
49:cd:2e:28:17:57:a9:19:16:8f:20:08:b9:c2:d1:b6:d1:d4:
48:bd:83:88:d3:8b:1d:8d:80:9a:ad:7b:a2:e2:16:14:85:b3:
a1:e5:72:79:8a:b2:6f:8e:b4:7a:64:59:0b:41:14:4e:aa:b7:
a6:f4:12:2c:d0:f5:67:f6:21:5d:e4:e0:e0:29:47:9b:d3:d0:
a4:9f:b4:f5:c8:3f:b7:53:50:8f:76:ad:62:44:49:02:23:e0:
8f:a0:d5:9a:15:5a:7e:db:9f:e2:ef:99:21:60:32:93:05:e8:
6e:27:f1:db:a8:c3:2f:b1:e0:1e:76:39:6a:e3:22:ed:7a:18:
18:66:96:0d:aa:8a:e8:c5:06:05:15:c1:3b:bd:9d:95:72:e5:
aa:ea:b9:0a:94:e7:1c:90:cc:b6:c6:41:c3:bb:ca:a3:e7:bb:
0d:a2:90:d4:16:7e:cd:1c:87:9f:15:06:2b:54:a6:6f:07:38:
d5:96:0c:94:04:74:55:12:c7:43:7c:43:b0:02:17:8a:82:83:
b8:d8:6b:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 5 01:55:20 2026 by rpki-client