Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/382E72F0543F11F1884496A8CE1D38B0.roa
File: 382E72F0543F11F1884496A8CE1D38B0.roa (raw, json)
Hash identifier: B+LHy9Lu1dRs0xYHDclI0xI7X9VXp5UsoOSLWmEt10E=
Subject key identifier: 88:4E:FC:89:56:5F:74:76:19:F9:0B:C6:0C:C4:68:E2:59:30:5B:CA
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 1F60
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/382E72F0543F11F1884496A8CE1D38B0.roa
Signing time: Wed 20 May 2026 11:29:53 +0000
ROA not before: Wed 20 May 2026 11:29:48 +0000
ROA not after: Sat 20 May 2028 11:29:48 +0000
asID: 29802
IP address blocks: 154.16.80.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 22 May 2026 08:26:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8032 (0x1f60)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF, serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: May 20 11:29:48 2026 GMT
Not After : May 20 11:29:48 2028 GMT
Subject: CN=6a0d9b31-8db9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:ba:6d:42:6b:12:90:71:20:22:bd:e6:cb:e9:
bb:88:91:82:e9:a7:f8:e1:53:ed:d4:79:20:0a:ed:
b2:cb:db:58:83:33:db:1f:af:cd:58:cf:02:40:18:
0f:50:e7:37:22:14:7b:ed:c2:34:8a:77:b6:49:29:
9f:6d:3a:71:ff:c9:25:3c:00:60:37:96:16:e5:4e:
e0:55:d0:d0:f0:51:c2:3e:7c:b6:9b:89:e4:ca:e0:
e4:ff:25:9d:09:d7:41:ce:16:c5:a5:ae:ff:dc:b0:
e1:c6:86:4e:55:19:24:2e:b8:8e:b6:5c:90:54:54:
2a:9c:ac:6e:3a:0c:e0:b6:bf:49:fc:b6:01:01:d2:
16:1b:17:59:d7:2f:91:e6:57:7c:a8:fe:0d:e0:51:
0b:b6:92:fa:0b:25:4d:94:74:34:e3:ad:e0:32:6e:
3a:5a:e0:e0:75:8b:11:a8:da:7c:56:8f:41:30:df:
a8:b5:ee:03:e9:9d:85:fc:02:7e:78:37:d9:15:78:
13:86:77:30:9e:c5:a1:1f:73:dd:5c:3b:92:98:57:
34:85:cb:ac:6b:73:e7:a6:9b:9e:bc:bc:2b:4a:2e:
17:7a:36:9a:19:ec:7a:1c:a4:ff:ee:86:50:ab:86:
79:d9:68:74:7e:76:56:f0:b0:88:39:0f:33:3f:a3:
f6:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:4E:FC:89:56:5F:74:76:19:F9:0B:C6:0C:C4:68:E2:59:30:5B:CA
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/382E72F0543F11F1884496A8CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.80.0/24
Signature Algorithm: sha256WithRSAEncryption
33:10:a7:a3:ce:db:f0:e4:b5:e6:6e:77:e8:54:fd:5a:cd:8f:
00:62:4b:25:d5:61:3a:20:18:08:78:ed:f3:f5:e6:24:3f:6d:
ab:01:b0:37:d6:dc:96:54:98:3b:ad:8a:89:d5:eb:f7:61:2f:
fc:fd:dc:92:40:ca:c0:b3:c1:b6:aa:c3:31:48:e0:8c:fc:b8:
22:e6:2e:9f:9a:27:c2:ec:15:c7:1a:bd:70:ef:76:5a:fb:a8:
9d:4a:93:41:63:66:30:c8:5b:11:c6:07:ae:ce:45:6e:a5:7b:
6c:e4:69:57:74:81:2e:82:9f:c1:83:72:db:bd:ca:f7:8b:bd:
08:fa:17:d8:d9:31:ff:33:88:02:be:04:18:28:c8:a2:a7:60:
18:4c:2c:5e:ae:4a:1f:22:33:12:82:bb:f1:b7:35:fe:31:f9:
08:f2:d3:e5:d7:f2:88:44:03:9d:e0:d0:cd:e6:20:49:9d:79:
77:10:cf:07:4e:47:da:25:8b:53:37:c6:a7:3d:9b:4f:0a:8e:
ce:0e:2d:c1:1c:ec:90:0c:06:df:ca:bb:80:df:01:de:3f:20:
cb:3f:cf:2f:c2:0b:80:94:65:4c:a4:ff:4a:56:9c:49:1a:00:
7b:ef:00:3c:52:bf:6d:b9:6b:64:36:6c:61:c8:5c:c5:a9:be:
6f:ec:f3:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 20 23:45:57 2026 by rpki-client