Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/484AE29A4F9911F1928D60E1CE1D38B0.roa
File: 484AE29A4F9911F1928D60E1CE1D38B0.roa (raw, json)
Hash identifier: VK2VuWXcCIKrllbC7dxZGTdq1kpClrcDj2BgssdjATI=
Subject key identifier: B1:14:A3:9A:E6:A5:E2:1A:CA:B5:7B:ED:A6:03:1B:6C:1A:50:1A:29
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 1F44
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/484AE29A4F9911F1928D60E1CE1D38B0.roa
Signing time: Thu 14 May 2026 13:31:59 +0000
ROA not before: Thu 14 May 2026 13:31:54 +0000
ROA not after: Sun 14 May 2028 13:31:54 +0000
asID: 13213
IP address blocks: 154.16.158.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 16 May 2026 00:07:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8004 (0x1f44)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF, serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: May 14 13:31:54 2026 GMT
Not After : May 14 13:31:54 2028 GMT
Subject: CN=6a05cecf-6841
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:1e:82:65:70:88:f3:cd:55:65:67:09:93:ab:
ae:f7:ba:a3:38:c8:f3:72:a3:75:f0:d5:d0:6e:c1:
c7:45:be:d5:1c:5d:cb:73:8b:5c:ab:96:ae:28:71:
f4:fc:d2:34:99:77:ab:eb:2e:ee:7f:4c:7e:84:0e:
8f:30:a4:66:5a:9d:29:fe:69:85:ac:83:58:b0:0a:
ef:f8:0f:f5:a2:b4:36:1f:76:84:d2:31:03:39:1f:
e5:f7:d2:d3:61:be:aa:c7:00:3a:85:bb:f3:7a:5b:
4e:90:a5:12:97:30:b6:64:48:32:94:13:1b:61:32:
cd:9f:a6:66:f0:95:fa:ae:c0:5b:b2:a1:f2:e5:91:
94:dd:24:d3:5a:97:c6:50:0b:a9:59:f3:91:66:fb:
c1:cf:95:3c:d4:c8:7a:02:c2:fa:a8:49:ed:16:2e:
bf:8c:8d:87:fa:81:78:af:bd:24:3b:ed:40:23:47:
69:1c:d1:16:f6:18:0f:6f:9a:e8:0f:0b:f8:b5:be:
3b:f7:f7:23:83:2f:03:1c:60:3c:e4:77:2f:78:21:
b0:78:d0:8f:ac:7a:98:fb:45:e1:9d:f6:03:2a:05:
bc:6c:35:ba:9d:f0:ea:5c:88:a4:45:3e:73:9c:ef:
d6:10:49:4c:db:12:44:4e:56:86:44:9e:a1:89:23:
2b:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:14:A3:9A:E6:A5:E2:1A:CA:B5:7B:ED:A6:03:1B:6C:1A:50:1A:29
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/484AE29A4F9911F1928D60E1CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.158.0/24
Signature Algorithm: sha256WithRSAEncryption
d1:9c:4f:4c:9f:4b:fc:95:c7:5c:4d:97:7d:34:6c:3e:4d:52:
25:ee:2d:cc:00:21:c8:6e:78:40:bc:34:a3:50:2b:41:a8:ed:
40:2e:72:81:05:2c:ca:de:94:f5:07:49:90:26:6f:1d:50:9f:
76:a0:50:48:f0:cf:8d:20:c4:3a:bf:05:cc:e6:39:40:d9:9a:
42:a2:b3:9a:05:b5:e5:d8:cb:be:b4:ca:dd:97:45:8a:54:1a:
89:54:de:cf:a2:d4:1a:92:7f:be:02:4b:d7:85:9e:94:3e:a4:
23:c9:5d:ba:70:42:f9:a4:bf:d5:5e:2a:3e:4c:c7:40:38:94:
ce:46:5b:8c:7e:7b:9f:75:53:51:71:22:e5:bf:f3:96:8c:41:
68:8f:21:8a:51:19:b4:af:05:3c:7c:bf:fa:7e:66:71:63:58:
9f:d3:6a:eb:eb:3e:dc:be:72:b5:34:76:35:09:7b:7e:e8:25:
8a:4b:f3:8d:56:fe:cc:41:d8:31:66:fc:58:80:cc:ec:db:e2:
f8:94:5a:2e:8d:8c:29:59:95:d0:b6:8f:57:52:68:56:e4:b6:
be:76:ec:f8:da:8f:a8:84:26:8d:0d:db:26:25:f0:d7:32:a2:
5e:15:d9:07:4b:5a:2f:2d:f6:36:45:0d:eb:73:38:b2:14:18:
94:ed:67:74
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICH0QwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
ODJCNjVBRjExMC8GA1UEBRMoMDk0MEU2MzgyODMzMzZERTVDOEM1QTQwQTRDMjNC
MzRGM0Y5Q0E1MzAeFw0yNjA1MTQxMzMxNTRaFw0yODA1MTQxMzMxNTRaMBgxFjAU
BgNVBAMTDTZhMDVjZWNmLTY4NDEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDEHoJlcIjzzVVlZwmTq673uqM4yPNyo3Xw1dBuwcdFvtUcXctzi1yrlq4o
cfT80jSZd6vrLu5/TH6EDo8wpGZanSn+aYWsg1iwCu/4D/WitDYfdoTSMQM5H+X3
0tNhvqrHADqFu/N6W06QpRKXMLZkSDKUExthMs2fpmbwlfquwFuyofLlkZTdJNNa
l8ZQC6lZ85Fm+8HPlTzUyHoCwvqoSe0WLr+MjYf6gXivvSQ77UAjR2kc0Rb2GA9v
mugPC/i1vjv39yODLwMcYDzkdy94IbB40I+sepj7ReGd9gMqBbxsNbqd8OpciKRF
PnOc79YQSUzbEkROVoZEnqGJIyvLAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUsRSj
mual4hrKtXvtpgMbbBpQGikwHwYDVR0jBBgwFoAUCUDmOCgzNt5cjFpApMI7NPP5
ylMwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjgyQjY1LzRFODUxRTM0REI1NTExRTg4NUIyOTk1MUY4QUVBMjI4L0NVRG1P
Q2d6TnQ1Y2pGcEFwTUk3TlBQNXlsTS5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL0NVRG1PQ2d6TnQ1Y2pGcEFwTUk3TlBQNXlsTS5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjgyQjY1LzRFODUxRTM0REI1NTExRTg4NUIyOTk1MUY4
QUVBMjI4LzQ4NEFFMjlBNEY5OTExRjE5MjhENjBFMUNFMUQzOEIwLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACaEJ4wDQYJKoZIhvcNAQEL
BQADggEBANGcT0yfS/yVx1xNl300bD5NUiXuLcwAIchueEC8NKNQK0Go7UAucoEF
LMrelPUHSZAmbx1Qn3agUEjwz40gxDq/BczmOUDZmkKis5oFteXYy760yt2XRYpU
GolU3s+i1BqSf74CS9eFnpQ+pCPJXbpwQvmkv9VeKj5Mx0A4lM5GW4x+e591U1Fx
IuW/85aMQWiPIYpRGbSvBTx8v/p+ZnFjWJ/TauvrPty+crU0djUJe37oJYpL841W
/sxB2DFm/FiAzOzb4viUWi6NjClZldC2j1dSaFbktr527Pjaj6iEJo0N2yYl8Ncy
ol4V2QdLWi8t9jZFDetzOLIUGJTtZ3Q=
-----END CERTIFICATE-----
Generated at Thu May 14 18:37:18 2026 by rpki-client