Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/4AD829E65A6B11F19E6041C7CE1D38B0.roa
File: 4AD829E65A6B11F19E6041C7CE1D38B0.roa (raw, json)
Hash identifier: cOQDVTPeWNbJizSiPvvzQ+yfR6Vhcb/WuYHVxQIP/CE=
Subject key identifier: DB:75:01:74:90:3B:C2:CF:A2:1C:6B:8D:C2:7B:B8:D9:AA:92:3F:E8
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 1F82
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/4AD829E65A6B11F19E6041C7CE1D38B0.roa
Signing time: Thu 28 May 2026 08:00:29 +0000
ROA not before: Thu 28 May 2026 08:00:25 +0000
ROA not after: Sun 28 May 2028 08:00:25 +0000
asID: 214266
IP address blocks: 154.16.86.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 30 May 2026 00:07:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8066 (0x1f82)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF, serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: May 28 08:00:25 2026 GMT
Not After : May 28 08:00:25 2028 GMT
Subject: CN=6a17f61d-5670
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:35:32:2a:9e:16:67:91:d0:c1:64:5c:9c:d7:
41:dc:3b:d5:d6:d4:a6:e8:5e:08:8d:d0:18:0c:e3:
b7:3b:f9:99:a0:cf:52:51:0f:d2:5d:37:3f:82:b2:
c7:55:75:71:89:69:d6:d0:d1:db:07:c2:8b:3b:47:
2d:2d:6a:39:f2:ef:12:8e:58:ea:17:b4:2e:13:e1:
2e:f3:35:75:de:eb:47:d7:45:ed:a5:d3:89:49:53:
6b:9f:ee:04:d9:04:dd:61:dc:51:de:cb:36:4d:e1:
5a:dc:c9:6a:c2:36:d0:88:dc:7b:47:d6:89:03:72:
c3:0a:90:20:77:ed:37:0c:df:2a:40:be:3a:48:89:
55:36:bb:ab:ff:41:58:27:0b:c2:f4:ac:f2:22:16:
e3:6b:22:27:1d:2a:55:ad:fd:fe:3f:46:ea:d1:68:
fc:d5:94:56:85:fb:ee:28:b0:3c:16:08:60:57:92:
52:9e:94:e2:5b:ff:f2:68:a4:bb:f5:e7:38:40:6b:
a4:b6:09:ea:ae:84:1a:5d:99:2d:06:b9:2c:5a:3c:
6c:be:2b:71:8e:33:11:df:ac:3b:c2:ce:e3:74:36:
bb:6e:26:d1:92:1b:21:7c:27:0a:d6:73:c8:c2:82:
9e:9c:77:f4:d2:54:8c:19:0e:48:12:29:e4:c7:ae:
40:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:75:01:74:90:3B:C2:CF:A2:1C:6B:8D:C2:7B:B8:D9:AA:92:3F:E8
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/4AD829E65A6B11F19E6041C7CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.86.0/24
Signature Algorithm: sha256WithRSAEncryption
bf:19:31:d7:6f:3e:12:d0:46:6e:b6:e4:81:99:73:d9:18:00:
41:7d:0f:ab:06:2d:01:e2:e8:71:37:1d:6a:49:48:6f:c2:08:
36:85:ed:c6:67:be:8a:64:78:f4:f3:f9:38:5a:87:1d:26:9e:
60:51:90:10:c3:66:cd:77:8d:24:ef:fa:ca:c1:b9:25:89:ee:
b2:9b:ed:9b:0e:f9:70:a3:4b:ac:f8:4a:7b:fb:39:a4:d8:6b:
d3:ed:01:d2:fc:b2:41:33:75:ff:c6:d2:6e:39:02:78:23:e0:
de:d8:2a:8c:de:50:fc:fb:b2:a8:66:af:6d:52:26:d7:ba:0d:
2a:b1:17:94:4d:77:d8:2e:75:ce:87:f1:68:2e:95:f6:77:4f:
92:f0:58:93:f0:a3:07:d2:30:19:9f:b3:02:e2:1e:0a:16:c1:
b1:4f:05:3d:33:5a:74:0c:b5:be:99:4d:df:ff:05:37:93:b6:
a7:cb:52:32:03:b5:87:6a:e2:76:4f:7e:d6:44:a1:ce:b4:41:
cf:0d:fc:d7:16:bf:20:75:dc:1b:b2:55:9b:ca:e4:fe:89:20:
c3:39:e0:88:87:11:51:f2:56:ea:82:2a:6a:19:6f:69:1f:ac:
3b:cb:36:81:f6:83:c0:19:b0:08:ec:43:60:df:4f:f0:86:e9:
5a:43:e5:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 28 22:40:46 2026 by rpki-client