Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/2D63404E633F11F1B561F8E8CE1D38B0.roa
File: 2D63404E633F11F1B561F8E8CE1D38B0.roa (raw, json)
Hash identifier: FKd+zyPqEYyqOqUZMl09cLScPBpETTKcOw8pG3zYUGY=
Subject key identifier: DF:92:29:1A:04:17:91:A8:97:13:0B:6A:45:FB:5F:6D:05:D3:49:46
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 1FB7
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/2D63404E633F11F1B561F8E8CE1D38B0.roa
Signing time: Mon 08 Jun 2026 13:37:22 +0000
ROA not before: Mon 08 Jun 2026 13:37:18 +0000
ROA not after: Thu 08 Jun 2028 13:37:18 +0000
asID: 39690
IP address blocks: 154.16.54.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 10 Jun 2026 10:33:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8119 (0x1fb7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF, serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Jun 8 13:37:18 2026 GMT
Not After : Jun 8 13:37:18 2028 GMT
Subject: CN=6a26c592-fbe1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:74:2f:63:67:c5:0b:1d:fe:ad:4d:1f:29:4c:
18:3f:e6:5b:9f:21:ea:7d:07:8d:8c:31:ab:a7:b7:
02:04:5d:f7:64:4d:f0:c2:68:db:e4:1b:9f:35:99:
50:89:fa:27:06:54:c5:a9:f2:c6:5e:71:0f:eb:4a:
35:e7:42:a1:97:78:ab:27:94:00:3b:00:57:aa:1d:
55:41:01:61:62:80:d5:02:a6:34:de:d2:65:59:ac:
0e:16:ad:16:d0:b1:ce:00:25:a9:ec:a4:48:26:80:
7c:6f:58:e7:97:cc:d4:2f:bd:04:0f:2a:81:13:be:
38:74:58:79:d3:32:1f:1e:31:13:a3:b4:a8:2d:2b:
24:f9:37:f4:d6:73:7f:f4:d3:b4:51:c0:e2:7b:08:
8f:05:84:3c:67:71:26:65:9a:5a:d5:2d:81:35:c7:
e0:07:33:53:b7:4d:59:2b:8b:ee:d4:93:86:48:b2:
ba:08:82:85:ee:84:1f:1f:b2:5f:f5:92:14:28:75:
7e:14:41:76:7d:ce:ba:87:94:c5:78:02:61:f2:15:
ef:af:af:19:00:d8:ee:21:96:0d:e4:ef:0d:68:35:
46:8d:d6:af:b8:3b:b5:be:6b:14:49:f0:66:8b:37:
6f:71:59:cd:f6:b2:a9:f9:2b:6b:9b:78:55:d5:0e:
e1:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:92:29:1A:04:17:91:A8:97:13:0B:6A:45:FB:5F:6D:05:D3:49:46
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/2D63404E633F11F1B561F8E8CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.54.0/24
Signature Algorithm: sha256WithRSAEncryption
61:d2:9d:1e:29:55:71:d8:af:be:6a:b8:82:bc:9d:f5:96:e7:
93:05:dc:d5:b7:49:10:67:d7:46:74:3a:26:a3:b2:e9:e1:63:
a6:e9:2b:52:08:d4:18:8f:bc:c8:49:a9:0b:e9:d4:05:8f:a1:
81:82:d9:9d:b2:ae:cf:8d:0c:bd:f6:12:39:d4:83:71:70:5b:
a7:18:be:53:6d:f9:8a:58:35:98:82:0a:00:7d:33:59:d3:c6:
2c:73:c9:19:2a:d1:65:2d:30:35:89:9e:f6:1a:99:09:d9:2c:
f5:1f:56:58:6e:d2:ed:f1:5e:e1:68:14:a0:75:97:a2:8f:8a:
1a:fc:03:f9:0a:5a:39:54:34:a2:3a:8f:35:a7:ed:bd:50:76:
f9:53:a6:48:a0:ae:86:75:23:98:11:20:b7:37:bd:ed:59:ce:
a3:be:8e:cb:65:c4:f1:9b:1a:f7:ee:7f:53:07:e6:94:08:14:
10:49:95:64:37:b7:8b:e6:be:42:e5:14:2d:f4:09:cf:57:b0:
0b:28:49:df:5c:a5:5c:ba:85:fc:ab:a5:31:e4:8d:db:3b:4e:
22:0c:6e:ef:bf:e3:f6:29:04:fb:01:11:df:9b:2d:04:72:47:
a7:e1:1f:31:b8:14:14:c7:b5:0b:81:42:f9:b4:f9:e8:80:ed:
ec:de:86:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 8 23:26:15 2026 by rpki-client