Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/11D6F1486EDB11F1BC81E0BECE1D38B0.roa
File: 11D6F1486EDB11F1BC81E0BECE1D38B0.roa (raw, json)
Hash identifier: yn6wXjQwVo6aKzq7D58unOYjp6DhV6ECd4IWwmfsGXw=
Subject key identifier: 39:4C:F1:74:3E:04:63:BA:02:5F:34:56:E9:E9:2A:96:BA:A1:4B:D5
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 1FF4
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/11D6F1486EDB11F1BC81E0BECE1D38B0.roa
Signing time: Tue 23 Jun 2026 08:11:00 +0000
ROA not before: Tue 23 Jun 2026 08:10:56 +0000
ROA not after: Fri 23 Jun 2028 08:10:56 +0000
asID: 834
IP address blocks: 154.16.244.0/23 maxlen: 23
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 25 Jun 2026 11:18:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8180 (0x1ff4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF, serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Jun 23 08:10:56 2026 GMT
Not After : Jun 23 08:10:56 2028 GMT
Subject: CN=6a3a3f94-0362
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:16:5c:9a:42:52:09:99:89:73:74:d6:99:ce:
e7:f8:e6:33:db:8b:cb:c4:12:fb:c2:fc:06:90:ed:
d1:34:fc:7d:e1:7e:9e:7d:98:79:26:38:20:35:c0:
7e:71:2f:64:73:46:0f:d9:9b:52:e3:d2:ba:13:c6:
8d:00:42:ba:5a:0c:7a:d7:2a:29:09:e1:2a:21:4f:
85:5b:81:c6:c9:cb:f5:20:7e:fc:d1:62:7e:5a:c6:
a7:3e:66:5d:53:9f:69:3e:f3:a9:5d:bc:a4:51:5d:
43:75:d9:c5:7c:a0:37:0e:e5:9a:4b:7c:17:60:58:
8d:e7:c2:2a:59:b2:a0:ae:37:b3:0a:0f:42:94:8f:
95:e9:0f:7c:76:fb:fb:c1:a4:f2:8a:24:20:fa:16:
e7:b8:cb:fd:15:2e:3d:75:a7:ac:d8:67:8d:ac:0e:
0c:e7:f4:7d:67:a3:3c:39:e6:26:c1:7e:d1:0f:2c:
79:19:7a:d0:13:b2:e4:e3:d0:5d:79:3d:a4:92:76:
17:31:18:48:d5:a5:83:a1:fd:09:60:e7:6e:7f:ae:
5a:7e:aa:09:ba:5a:7a:df:fa:9d:40:aa:0f:17:4b:
2d:db:ed:eb:ca:f1:32:1e:e7:74:52:fd:c1:f4:ef:
91:83:25:b5:fa:e9:fb:f0:bb:57:00:ce:90:99:9c:
36:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:4C:F1:74:3E:04:63:BA:02:5F:34:56:E9:E9:2A:96:BA:A1:4B:D5
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/11D6F1486EDB11F1BC81E0BECE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.244.0/23
Signature Algorithm: sha256WithRSAEncryption
1c:60:2a:b8:36:ab:5a:74:f6:34:df:8e:55:f8:96:c4:5f:88:
03:02:62:56:c6:e2:07:43:09:75:e7:5c:5f:25:03:45:4a:a6:
c1:2f:e3:41:49:a1:fa:89:ec:c1:c4:46:58:7a:bd:fd:1b:42:
b2:c4:8c:1f:55:31:73:07:b5:aa:37:2c:0b:0b:85:81:47:86:
a2:50:59:96:25:97:40:a3:4e:08:fa:b8:b1:3c:14:61:ad:7b:
39:43:38:ea:16:43:e9:0b:66:e4:e9:7d:f4:43:75:49:0e:67:
57:a4:e9:17:e6:7e:8e:7d:bf:6c:f7:73:0e:ec:10:ba:e7:11:
ac:e1:8a:05:81:6c:a3:e2:68:ec:e4:9c:cc:a3:c2:5c:00:40:
95:e8:9d:23:63:46:e8:c8:7e:49:4e:d8:af:b0:b1:68:94:30:
44:fe:58:6b:0a:ad:1a:d6:22:c3:c5:d5:e6:9a:ce:6f:a7:aa:
ff:14:2b:cc:43:6b:15:bb:f9:64:36:82:bf:9c:6f:81:97:02:
54:0a:78:bf:78:45:df:38:af:6b:a7:fa:9f:af:09:97:c7:c1:
81:f4:0a:1b:d9:38:25:bd:fd:8e:e0:b9:c2:fb:82:8a:2c:11:
41:42:1d:4b:d4:02:78:fd:84:d4:c2:bd:78:1f:46:33:dc:b4:
c6:11:ef:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 23 19:46:32 2026 by rpki-client