Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/384170D0515111F19D5690CFCE1D38B0.roa
File: 384170D0515111F19D5690CFCE1D38B0.roa (raw, json)
Hash identifier: OIYojS/sncSkkCvzjpYsrqJwhJqhCMpeHiuaxfQ/yas=
Subject key identifier: 3D:A6:79:44:14:C3:FB:59:1B:C8:CF:40:D6:0D:D6:89:85:B0:5B:9D
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 1F4D
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/384170D0515111F19D5690CFCE1D38B0.roa
Signing time: Sat 16 May 2026 18:01:11 +0000
ROA not before: Sat 16 May 2026 18:01:05 +0000
ROA not after: Tue 16 May 2028 18:01:05 +0000
asID: 834
IP address blocks: 154.16.92.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 19 May 2026 00:07:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8013 (0x1f4d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF, serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: May 16 18:01:05 2026 GMT
Not After : May 16 18:01:05 2028 GMT
Subject: CN=6a08b0e6-f1a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:6b:9e:ef:d3:1f:8b:3e:45:c5:49:10:ce:37:
a8:79:ab:04:e3:0e:fc:92:75:aa:28:97:73:55:a0:
58:e6:f5:60:80:60:4b:a0:9c:42:01:1c:37:ae:8c:
6c:03:14:70:76:16:08:e8:8d:51:fc:79:ef:ae:ae:
b8:90:f4:2e:55:d2:2a:b1:ab:3e:32:6a:3e:d5:a0:
53:d8:53:3c:4f:b1:52:b9:23:4c:30:9b:fd:25:ce:
ce:4a:25:80:cc:02:c1:b8:87:25:9b:33:13:67:bb:
82:fe:b4:c0:33:4f:df:a9:c6:fe:3c:07:b7:51:6f:
1f:84:f3:0b:90:aa:55:48:7a:79:cd:f4:03:7a:34:
4b:0c:50:11:ec:a0:e5:55:12:1e:6b:ce:80:52:1d:
bc:47:e5:0e:58:b0:6b:8e:03:c1:04:51:a2:f5:53:
74:ad:bc:5f:e0:00:a3:f1:a6:ca:e9:90:84:65:2a:
40:94:46:50:0e:d7:91:38:a7:86:2d:cd:9d:f0:7a:
04:52:18:b8:70:2a:0f:6f:69:85:88:24:6e:5d:22:
47:2a:bf:dc:30:38:aa:26:40:a2:83:bd:24:1d:5e:
94:0e:4f:ec:aa:01:f4:ba:63:34:89:7d:57:ea:80:
d7:23:46:7c:6b:4c:84:7f:ef:bb:e2:84:43:39:8b:
92:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:A6:79:44:14:C3:FB:59:1B:C8:CF:40:D6:0D:D6:89:85:B0:5B:9D
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/384170D0515111F19D5690CFCE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.92.0/24
Signature Algorithm: sha256WithRSAEncryption
b0:58:bc:b8:20:68:f4:a3:ec:f2:8b:f6:b6:1f:d4:5e:f2:89:
d6:51:54:f2:c1:98:f8:cc:3b:59:dd:af:97:f8:5a:81:64:7f:
be:95:de:c8:96:98:5e:0b:62:75:8c:b0:27:17:4d:8e:f1:3b:
bc:8c:a2:f2:6f:d4:d0:83:aa:3d:59:91:75:90:78:2f:ba:ee:
e8:44:34:cc:56:2b:8d:45:36:56:1d:9a:f2:8c:93:20:9a:0a:
90:d2:0f:1f:e9:b8:93:4d:bb:26:43:33:79:1c:87:21:54:b6:
8e:9c:3b:88:82:71:32:28:57:e2:57:30:5b:f5:79:8c:f4:f2:
5c:6f:0c:03:86:0f:df:14:75:4c:66:44:31:fc:29:5c:96:8f:
85:80:f9:09:0e:c5:8d:34:e5:b9:d7:8c:69:b4:bc:74:83:a4:
3f:04:ca:39:6a:5d:9f:b7:a3:af:5b:c0:ec:53:e3:61:44:02:
a1:76:1a:1e:2a:a7:c6:24:a8:09:6d:3d:f2:21:64:41:80:05:
bc:b5:41:a2:5e:84:fb:0c:1a:6a:70:e3:83:69:a8:b8:f2:22:
1f:e6:0b:3c:19:44:76:8e:38:e3:59:8e:5f:31:a8:67:1d:32:
39:11:d2:cc:d6:c8:77:df:1e:c7:01:49:74:5c:27:7e:4f:54:
d5:ee:39:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 17 19:19:04 2026 by rpki-client