Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/05CD7C6E5B4411F18E16EEE7CE1D38B0.roa
File: 05CD7C6E5B4411F18E16EEE7CE1D38B0.roa (raw, json)
Hash identifier: 4nL0l3SpS8k5GitzfMlqRebwM4tEQjjwyNKbUK7Tj5o=
Subject key identifier: 10:9E:04:BB:5D:76:95:2C:07:4C:A1:5D:E8:7F:68:19:2A:96:15:CE
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 1F8A
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/05CD7C6E5B4411F18E16EEE7CE1D38B0.roa
Signing time: Fri 29 May 2026 09:51:54 +0000
ROA not before: Fri 29 May 2026 09:51:49 +0000
ROA not after: Mon 29 May 2028 09:51:49 +0000
asID: 25369
IP address blocks: 154.16.44.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 31 May 2026 06:35:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8074 (0x1f8a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF, serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: May 29 09:51:49 2026 GMT
Not After : May 29 09:51:49 2028 GMT
Subject: CN=6a1961ba-c963
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:31:95:88:d5:28:4b:ad:aa:5a:82:2b:30:c8:
a5:19:8f:1e:f2:b5:98:53:49:c0:5c:19:68:5a:4f:
c3:de:bb:e5:76:06:a6:d4:5a:8e:3b:47:8b:76:ff:
4f:e4:e1:b3:88:2b:eb:12:f7:47:23:30:34:05:7c:
0f:f0:1e:92:68:9b:3a:4d:80:76:22:8b:3c:4a:fb:
ca:67:3e:de:ce:68:c0:0b:81:f4:ea:4d:42:5e:9c:
3d:d1:80:3b:88:44:6e:db:1b:0d:81:2a:b1:4f:bf:
af:ac:b1:a0:9c:ec:e6:f4:70:b0:05:bd:f8:a7:0f:
55:29:4f:4b:f8:41:ac:e0:69:ef:92:45:45:7d:e4:
50:47:41:c4:fe:ce:bf:63:dc:12:92:e9:54:59:bd:
d3:38:a7:6c:b1:ec:88:32:b6:7c:a2:d1:1a:1e:03:
84:9b:25:ca:2c:92:ab:18:73:69:69:8f:3b:44:ca:
6a:93:23:64:0a:20:aa:39:dd:e9:9a:0b:af:12:74:
9d:e0:13:d0:1d:55:03:e5:c1:bd:9e:31:46:29:56:
a2:15:90:dd:45:f8:53:64:9a:fc:e5:32:37:b6:98:
b1:67:27:fc:a8:ae:04:90:b4:7f:8d:be:1e:09:a7:
21:c2:52:e6:d9:65:93:81:76:86:3a:84:10:c4:d0:
23:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:9E:04:BB:5D:76:95:2C:07:4C:A1:5D:E8:7F:68:19:2A:96:15:CE
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/05CD7C6E5B4411F18E16EEE7CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.44.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:48:ae:58:58:0e:fc:08:31:99:50:54:ef:0c:86:25:19:b2:
a2:f6:b0:00:3a:62:ce:df:08:b7:ac:e7:56:06:72:b0:0c:b6:
f7:dd:1d:da:82:77:ec:07:e8:2d:ba:3a:d1:12:07:5d:5c:8c:
8e:23:19:bc:16:17:92:28:5c:43:46:c9:45:83:91:26:af:80:
3a:f9:2e:2a:86:e7:ad:36:55:8f:d4:c2:13:fb:3a:c5:da:dc:
e4:23:55:b7:0a:f4:14:31:2d:7a:e6:67:c6:2c:23:0a:c5:80:
be:b6:44:3e:00:4e:a8:5f:97:b6:49:02:44:9a:91:4f:34:c7:
fd:34:1b:7a:1b:c1:d1:bd:46:5b:cc:30:e9:82:1d:ab:ea:b2:
66:50:a5:67:26:40:77:50:98:72:f3:95:31:24:df:b9:9b:65:
65:4d:5b:65:e7:85:31:91:72:4f:50:7a:9f:0b:90:d9:d2:1d:
75:5c:d8:00:40:91:8b:dd:18:5a:7a:2d:ac:c2:0f:45:61:d4:
42:01:4e:ec:fc:9d:6e:25:63:8a:d5:69:e0:a9:07:2e:7b:4c:
3e:72:24:84:23:da:b7:86:8e:59:a1:2a:57:30:5a:7b:38:8d:
0e:5f:89:52:5b:8b:62:e8:3d:74:9c:cc:66:75:e3:74:75:40:
d9:5b:ce:d7
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICH4owDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
ODJCNjVBRjExMC8GA1UEBRMoMDk0MEU2MzgyODMzMzZERTVDOEM1QTQwQTRDMjNC
MzRGM0Y5Q0E1MzAeFw0yNjA1MjkwOTUxNDlaFw0yODA1MjkwOTUxNDlaMBgxFjAU
BgNVBAMTDTZhMTk2MWJhLWM5NjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQC+MZWI1ShLrapagiswyKUZjx7ytZhTScBcGWhaT8Peu+V2BqbUWo47R4t2
/0/k4bOIK+sS90cjMDQFfA/wHpJomzpNgHYiizxK+8pnPt7OaMALgfTqTUJenD3R
gDuIRG7bGw2BKrFPv6+ssaCc7Ob0cLAFvfinD1UpT0v4Qazgae+SRUV95FBHQcT+
zr9j3BKS6VRZvdM4p2yx7Igytnyi0RoeA4SbJcoskqsYc2lpjztEymqTI2QKIKo5
3emaC68SdJ3gE9AdVQPlwb2eMUYpVqIVkN1F+FNkmvzlMje2mLFnJ/yorgSQtH+N
vh4JpyHCUubZZZOBdoY6hBDE0COLAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUEJ4E
u112lSwHTKFd6H9oGSqWFc4wHwYDVR0jBBgwFoAUCUDmOCgzNt5cjFpApMI7NPP5
ylMwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjgyQjY1LzRFODUxRTM0REI1NTExRTg4NUIyOTk1MUY4QUVBMjI4L0NVRG1P
Q2d6TnQ1Y2pGcEFwTUk3TlBQNXlsTS5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL0NVRG1PQ2d6TnQ1Y2pGcEFwTUk3TlBQNXlsTS5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjgyQjY1LzRFODUxRTM0REI1NTExRTg4NUIyOTk1MUY4
QUVBMjI4LzA1Q0Q3QzZFNUI0NDExRjE4RTE2RUVFN0NFMUQzOEIwLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACaECwwDQYJKoZIhvcNAQEL
BQADggEBAH5IrlhYDvwIMZlQVO8MhiUZsqL2sAA6Ys7fCLes51YGcrAMtvfdHdqC
d+wH6C26OtESB11cjI4jGbwWF5IoXENGyUWDkSavgDr5LiqG5602VY/UwhP7OsXa
3OQjVbcK9BQxLXrmZ8YsIwrFgL62RD4ATqhfl7ZJAkSakU80x/00G3obwdG9RlvM
MOmCHavqsmZQpWcmQHdQmHLzlTEk37mbZWVNW2XnhTGRck9Qep8LkNnSHXVc2ABA
kYvdGFp6LazCD0Vh1EIBTuz8nW4lY4rVaeCpBy57TD5yJIQj2reGjlmhKlcwWns4
jQ5fiVJbi2LoPXSczGZ143R1QNlbztc=
-----END CERTIFICATE-----
Generated at Sat May 30 01:57:19 2026 by rpki-client