Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/2D94982A4AE311F1B94D79BFCE1D38B0.roa
File: 2D94982A4AE311F1B94D79BFCE1D38B0.roa (raw, json)
Hash identifier: eJ3/0qWnK1JQlCkR57iWh+/KMJZNFS+NVNQLNz11NoU=
Subject key identifier: 9B:0D:FC:DE:59:5F:A8:C9:F8:3A:B5:2A:54:FA:D4:34:BA:92:28:DB
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 1F28
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/2D94982A4AE311F1B94D79BFCE1D38B0.roa
Signing time: Fri 08 May 2026 13:38:21 +0000
ROA not before: Fri 08 May 2026 13:38:16 +0000
ROA not after: Fri 12 May 2028 13:38:16 +0000
asID: 402369
IP address blocks: 154.16.14.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 11 May 2026 00:07:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7976 (0x1f28)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF, serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: May 8 13:38:16 2026 GMT
Not After : May 12 13:38:16 2028 GMT
Subject: CN=69fde74d-e639
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:8a:c3:f0:25:13:f7:11:2a:df:8c:09:be:59:
87:72:d5:f2:1d:3f:9b:9b:ae:56:35:63:e6:58:8a:
a1:6b:86:14:4b:0c:3d:cc:20:f5:ee:16:c1:59:c3:
32:46:17:8e:f0:00:86:a1:55:6f:61:1c:63:9c:04:
ae:36:75:1d:0a:93:d9:fa:5d:58:54:c2:1b:c6:10:
7f:43:08:c5:44:80:ba:a9:5d:d1:4d:e4:71:48:f0:
9f:97:81:00:0c:96:41:d1:d5:b4:af:10:f7:27:fc:
63:08:62:68:08:88:5e:55:7a:73:30:7e:5e:c7:84:
f3:65:01:a7:53:8c:fd:e9:d0:22:99:32:39:82:c6:
61:d3:26:ea:85:02:5a:4a:9c:d4:b5:0c:38:3c:26:
6e:11:61:64:d2:51:aa:8c:c6:79:0d:fd:fa:e5:00:
51:ce:3b:01:d6:86:23:23:32:af:21:b9:d3:b1:fc:
ca:41:22:45:93:57:9a:71:91:94:5d:1c:f7:1d:cb:
a2:e0:d1:e1:f0:6a:2c:a2:f3:df:78:c4:c4:7e:6d:
04:05:6e:57:77:38:c2:1d:e2:a3:68:c3:eb:bc:f4:
7b:eb:90:2e:cc:4c:a1:9a:42:30:a0:f4:a1:1f:29:
30:d7:2f:d0:63:c4:7e:96:27:a3:d5:dd:b3:ac:12:
86:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:0D:FC:DE:59:5F:A8:C9:F8:3A:B5:2A:54:FA:D4:34:BA:92:28:DB
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/2D94982A4AE311F1B94D79BFCE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.14.0/24
Signature Algorithm: sha256WithRSAEncryption
64:11:dd:33:62:15:29:9c:bd:e5:35:96:7f:8d:d7:46:01:d6:
a0:02:69:47:17:f0:7b:2d:69:be:16:82:8c:63:7f:54:03:66:
66:ef:9f:03:0d:80:48:89:ae:d2:78:d9:6b:8e:d4:32:f0:b7:
c1:c9:d8:27:59:11:3e:33:9b:7f:03:03:bd:dd:93:65:b8:a5:
4b:f5:9a:1d:f9:16:6d:21:dc:a8:0e:d2:72:da:fd:77:d3:22:
bd:b3:e8:3e:61:3f:31:01:89:bf:1d:b9:f2:a9:03:73:b5:dc:
60:2a:e6:8d:d0:b7:60:aa:04:ed:66:b7:70:2c:02:c9:d7:ad:
e2:22:9d:3b:ff:42:53:c2:77:3f:1f:c6:f8:1b:1c:78:94:a5:
db:26:44:9b:68:b1:8c:b7:e6:65:dd:25:a1:be:2c:41:b6:a7:
32:97:c5:04:26:65:b6:65:19:ff:26:6d:a0:0e:4b:2e:5e:c8:
3f:94:ad:58:41:c5:a3:9a:b1:93:55:7f:4e:9b:4c:78:08:64:
a0:27:71:81:c8:68:23:a0:40:cc:0c:bf:73:fa:c5:70:35:e6:
f9:1a:15:a7:1d:7b:1b:e4:bb:c0:53:dd:9b:75:7e:de:bf:34:
11:f5:e4:39:ed:e7:47:7d:37:4c:06:1b:62:20:5e:bb:d7:35:
cf:9b:b4:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 9 04:55:12 2026 by rpki-client