Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/5874A05242C911F18946E8FECE1D38B0.roa
File: 5874A05242C911F18946E8FECE1D38B0.roa (raw, json)
Hash identifier: vApV/NVB7P+Y6y+lkWzuL/SkcQ8l+ots9CnzQZciEX8=
Subject key identifier: 7F:4A:2B:4E:A2:93:69:E8:B7:1A:89:E8:75:CC:F8:D8:DE:B1:97:53
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 1EF6
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/5874A05242C911F18946E8FECE1D38B0.roa
Signing time: Tue 28 Apr 2026 06:13:17 +0000
ROA not before: Tue 28 Apr 2026 06:13:12 +0000
ROA not after: Fri 28 Apr 2028 06:13:12 +0000
asID: 212238
IP address blocks: 154.16.73.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 30 Apr 2026 06:16:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7926 (0x1ef6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF, serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Apr 28 06:13:12 2026 GMT
Not After : Apr 28 06:13:12 2028 GMT
Subject: CN=69f04ffd-d058
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:d2:93:79:cb:4a:c6:0f:5d:a6:fd:36:a4:3a:
76:b2:c6:64:99:71:12:37:d0:f6:9d:03:0c:5a:74:
e6:8c:07:20:b4:17:8b:dd:85:a4:1f:13:5e:c5:13:
f1:54:c9:b9:18:14:f4:de:9b:40:a4:3c:d4:c3:59:
83:e5:91:a3:cd:03:13:e6:8b:90:02:17:4a:11:62:
3b:0f:2f:67:22:f6:fc:4b:1a:c7:1e:2b:07:60:f9:
98:bd:3d:ba:60:5f:e5:92:4c:99:4d:c3:00:65:e8:
59:8e:6e:49:45:5a:ce:a1:92:1e:9b:6c:0b:33:16:
92:e5:7b:75:f0:21:bc:eb:f6:b2:4a:2a:2f:86:4e:
6b:a4:a5:a9:6f:2e:7f:82:96:bf:dd:a6:1c:76:b6:
76:6b:86:2d:50:b8:e6:d1:cf:a2:92:34:6c:09:1d:
fa:fb:5a:48:0a:23:da:36:2d:07:24:4a:15:26:88:
27:bb:a6:7e:9b:85:0c:d6:39:f2:79:30:8b:33:0b:
ac:d4:41:47:34:7a:57:50:51:1c:dd:22:63:f7:67:
40:ed:62:21:17:4c:75:27:19:e4:d5:ac:d3:08:cb:
3d:69:b8:b1:53:46:c1:9f:1d:c7:87:48:0c:22:9a:
32:cc:aa:56:3b:b7:53:41:39:07:4c:8d:da:7c:0b:
5b:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:4A:2B:4E:A2:93:69:E8:B7:1A:89:E8:75:CC:F8:D8:DE:B1:97:53
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/5874A05242C911F18946E8FECE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.73.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:34:d4:3a:62:64:de:cb:83:c4:04:fb:9d:2d:fe:2a:ee:32:
03:74:82:d7:49:14:40:e5:82:0d:05:64:ea:af:25:73:0a:11:
4c:97:c8:e2:f4:ba:2f:15:5a:1f:2f:b0:f8:03:30:9b:5e:37:
bd:27:44:a0:e9:5c:c9:b1:28:74:1d:56:7f:14:87:ae:7c:96:
14:2b:fe:39:72:f3:37:89:9f:94:50:9f:6d:3b:30:5a:8b:bf:
69:2d:d4:66:d2:70:b0:ad:fe:73:ad:5d:4f:ed:32:d4:c7:33:
f4:28:00:f1:fc:d3:f2:dc:b7:1a:be:06:7a:be:d2:81:47:2e:
16:88:43:b5:39:1d:05:d1:02:77:15:cf:40:e7:eb:c7:f5:b1:
a3:45:d7:5c:40:d3:d8:73:2e:ae:ee:9b:5e:db:b8:8f:ba:7b:
db:93:c6:a4:c3:b8:1e:ce:a1:f8:cc:71:42:48:78:bd:20:4d:
ba:78:b3:96:bf:3f:be:d8:98:5d:50:f0:b5:7a:71:cd:86:ef:
e1:0b:be:fb:d9:10:a6:b5:f6:24:d4:d9:f2:7e:f9:bd:d7:02:
87:2d:05:02:75:89:67:15:15:df:e6:b1:0a:4c:d6:6a:6c:0d:
f1:14:34:f9:49:eb:fd:71:10:d9:43:fc:96:99:e3:cf:d6:e1:
b4:ba:46:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 28 12:40:26 2026 by rpki-client