Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/33CE471A67B511F1B489DB07CF1D38B0.roa
File: 33CE471A67B511F1B489DB07CF1D38B0.roa (raw, json)
Hash identifier: a7VbYvOfO9ELAxBYZk1rDkKavpw8E7d10RL+zpDQzsc=
Subject key identifier: E4:CD:49:C3:A6:58:C9:BA:5B:0C:B4:23:09:6F:45:9C:4F:A1:F2:D6
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 1FDC
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/33CE471A67B511F1B489DB07CF1D38B0.roa
Signing time: Sun 14 Jun 2026 05:52:18 +0000
ROA not before: Sun 14 Jun 2026 05:52:14 +0000
ROA not after: Wed 14 Jun 2028 05:52:14 +0000
asID: 9009
IP address blocks: 154.70.154.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 16 Jun 2026 00:07:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8156 (0x1fdc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF, serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Jun 14 05:52:14 2026 GMT
Not After : Jun 14 05:52:14 2028 GMT
Subject: CN=6a2e4192-4d36
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:3d:05:7e:39:37:44:a8:36:78:d2:cf:88:1a:
33:15:3f:3d:94:16:6c:6c:26:ad:a7:e0:83:82:b9:
0c:c0:5f:c9:d9:6c:ec:6e:b8:a6:e8:bf:84:48:3c:
ad:c5:fe:1e:c0:85:c4:90:d9:1f:0e:10:71:62:20:
10:5c:9e:09:bd:7e:97:44:4f:5c:b4:b3:34:31:49:
9e:c2:8c:28:66:d4:ba:57:79:bc:1d:a8:8c:61:81:
20:b7:b8:e4:11:83:35:f1:a9:e0:49:87:07:33:ae:
70:5e:21:60:e5:da:7f:e5:12:c7:d2:d8:b6:24:bf:
9e:a0:92:c9:e8:55:16:03:7d:65:4e:21:40:eb:7d:
79:c8:11:0c:22:c0:a7:24:70:1f:61:77:a6:16:06:
d6:fc:6f:d4:07:df:71:74:0f:b0:8f:fc:69:83:4b:
30:58:dc:78:39:b5:40:99:2b:6a:9a:6f:6e:fe:87:
c9:f0:39:ff:44:6e:db:85:f2:12:8b:e9:ad:cb:0b:
48:74:cb:29:ac:ec:65:af:fd:85:c1:13:48:13:77:
ed:4f:ea:86:b6:9e:16:4b:f0:ee:b9:6b:24:73:31:
90:db:70:94:07:d0:03:5f:1c:44:d5:99:a0:83:06:
1c:6d:e0:90:5b:d7:24:7f:1f:55:c6:bf:13:4e:ac:
3a:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:CD:49:C3:A6:58:C9:BA:5B:0C:B4:23:09:6F:45:9C:4F:A1:F2:D6
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/33CE471A67B511F1B489DB07CF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.70.154.0/24
Signature Algorithm: sha256WithRSAEncryption
85:51:53:fc:60:c7:27:5b:20:58:31:9d:db:65:e4:02:e6:c2:
40:47:8b:97:e9:1d:6f:0b:3e:38:69:94:37:4d:4b:ba:9e:58:
a7:f9:b1:fe:e3:12:e6:09:64:c9:8c:d8:67:dd:a1:18:fa:26:
30:90:93:79:56:86:6b:b1:d8:17:37:e7:28:4b:08:46:d6:11:
b0:60:8b:d7:0e:95:49:48:22:d2:55:ec:6a:34:43:9b:b6:d7:
77:45:0d:7c:66:3b:13:1b:d5:3a:62:e6:74:0f:14:c8:e2:e5:
6e:65:d5:66:85:df:22:58:02:eb:e9:df:c2:d4:c0:15:10:c0:
ad:df:74:e8:cc:43:aa:06:64:55:84:96:8a:f9:61:cd:52:7c:
cb:97:0a:7e:35:e2:b8:cd:20:ec:2a:43:16:06:fd:09:c5:25:
29:8c:8a:da:27:2e:33:b4:89:d4:fd:2d:b9:8b:1a:79:a4:fa:
f5:9d:c1:4e:07:f9:74:a8:49:dc:68:d1:44:fe:5b:87:2e:ea:
d1:10:66:9e:5c:97:64:a7:28:43:84:2a:01:d5:8f:09:41:0f:
54:0c:10:7a:d5:5a:e1:c6:2a:9f:cb:15:6e:b3:72:a8:b2:69:
d0:fc:78:13:32:63:51:4d:09:b3:7a:ea:da:27:35:87:c3:c6:
a3:9c:8d:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 19:12:43 2026 by rpki-client