Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/407210DA4AE311F18C244CC1CE1D38B0.roa
File: 407210DA4AE311F18C244CC1CE1D38B0.roa (raw, json)
Hash identifier: xpdI4S9OpmxBRbuZZiUIOcZJbDqI8req48Qza+fLzNU=
Subject key identifier: 81:8B:E6:A7:E3:EF:6B:68:9F:5B:9B:05:BF:0E:88:8F:91:F5:5B:04
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 1F2A
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/407210DA4AE311F18C244CC1CE1D38B0.roa
Signing time: Fri 08 May 2026 13:38:53 +0000
ROA not before: Fri 08 May 2026 13:38:48 +0000
ROA not after: Fri 12 May 2028 13:38:48 +0000
asID: 396356
IP address blocks: 154.16.158.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 11 May 2026 00:07:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7978 (0x1f2a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF, serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: May 8 13:38:48 2026 GMT
Not After : May 12 13:38:48 2028 GMT
Subject: CN=69fde76d-61f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:6d:46:f2:45:c9:15:83:c3:b0:f0:cc:24:9a:
ad:31:4c:1e:a1:7c:8f:2c:8f:9a:4d:a6:28:64:fd:
dd:99:47:9f:f3:a9:b2:a5:10:34:ea:ff:7b:12:29:
7b:64:bf:31:34:81:73:e0:05:cb:fa:05:de:88:6a:
4e:4c:90:a3:8e:c5:63:e9:71:34:1c:24:07:96:52:
49:4b:ec:e8:97:aa:6f:65:17:d6:02:96:46:83:dc:
57:d9:0e:83:9f:f5:9a:67:63:b3:23:e2:97:2d:f2:
2c:24:8e:6a:6d:6f:bb:c4:86:1f:e3:0c:57:66:76:
5a:d5:ad:36:1d:b8:fa:3b:7d:e3:ea:b9:6c:59:dd:
ce:60:2d:e7:50:73:70:0a:5f:83:fc:0b:a6:1f:1f:
95:1b:7a:9a:d1:44:3d:26:d9:79:da:36:c2:ca:cb:
8a:36:1c:d9:9d:89:ed:94:67:f7:c8:2c:be:0f:c7:
b9:39:e9:35:fa:19:03:8a:c8:9a:6a:90:84:e7:f9:
4c:b2:8c:58:7e:5b:a5:44:9b:cb:f8:08:d5:05:a5:
f9:77:d6:25:1c:46:79:a6:59:2e:d1:f8:ff:d7:c5:
68:55:7f:9e:17:5c:d3:68:0c:35:44:75:d5:93:8c:
0f:9f:ed:11:fe:c4:bf:73:7a:88:d8:52:7c:12:4a:
80:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:8B:E6:A7:E3:EF:6B:68:9F:5B:9B:05:BF:0E:88:8F:91:F5:5B:04
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/407210DA4AE311F18C244CC1CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.158.0/24
Signature Algorithm: sha256WithRSAEncryption
56:9a:1d:49:f5:db:e5:02:c8:20:12:4d:df:b5:12:bc:d1:00:
96:14:44:8d:86:64:28:11:be:c8:87:85:ca:54:6b:22:ba:59:
09:89:fd:4e:0e:06:9d:45:10:16:10:75:09:0a:a6:52:be:7c:
40:36:c9:3d:2f:4a:90:3c:83:f9:f7:b4:4a:39:e2:bc:d5:49:
2a:b9:fc:c1:ed:d0:cf:cf:db:72:df:f8:dc:78:ca:5a:67:5e:
dc:9d:35:db:c2:bd:c6:bd:8f:36:4d:be:97:60:1d:31:e3:a6:
48:c8:45:60:ee:a8:b6:b1:c4:c8:ea:fe:37:78:19:4a:f4:14:
50:22:af:5a:dc:39:13:fd:3c:8a:74:15:8d:98:52:f5:5e:68:
de:c7:57:1f:fa:83:39:6d:97:b2:24:05:56:a4:7f:bf:63:ab:
48:13:7a:dd:09:99:84:f3:8a:82:0b:27:ed:78:22:d2:71:1b:
b0:ae:59:29:ab:b7:3e:fc:09:39:a3:7a:5a:02:7e:1c:d1:95:
89:95:14:f5:5b:84:7a:18:71:8e:18:b1:79:cb:3e:38:d3:cd:
7a:b6:fb:4e:7b:23:49:bb:28:12:7c:41:35:97:dd:d2:88:f3:
f3:22:29:42:af:51:c3:59:5c:99:71:24:7f:a9:c9:74:f4:d6:
d4:be:bb:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 9 04:54:33 2026 by rpki-client