Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/58E627201C5111F1905279E2DAE4EC9C.roa
File: 58E627201C5111F1905279E2DAE4EC9C.roa (raw, json)
Hash identifier: VibsUr+vTsKULHYqi3tpgn0ZSA58mWt2G5qa3ZS+k7w=
Subject key identifier: CF:DD:43:99:0A:83:0A:D3:97:88:79:4A:19:99:75:00:E7:E2:46:46
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 1E6B
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/58E627201C5111F1905279E2DAE4EC9C.roa
Signing time: Tue 10 Mar 2026 07:18:34 +0000
ROA not before: Tue 10 Mar 2026 07:18:29 +0000
ROA not after: Fri 10 Mar 2028 07:18:29 +0000
asID: 29802
IP address blocks: 154.16.215.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 12 Mar 2026 16:23:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7787 (0x1e6b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF, serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Mar 10 07:18:29 2026 GMT
Not After : Mar 10 07:18:29 2028 GMT
Subject: CN=69afc5ca-f10a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:70:e9:08:11:e7:56:4c:14:8d:6a:31:60:be:
f6:b9:b2:7f:1c:d8:47:dd:81:a4:1c:30:ea:76:96:
d1:f9:d0:0c:e2:4e:68:21:e0:8e:18:ce:4d:09:9a:
c8:ed:45:10:b2:94:64:52:33:25:dd:f0:55:66:83:
8c:da:7d:52:e2:d5:7a:fe:84:ff:27:0e:f2:7e:00:
e0:9c:17:69:2b:6f:42:6b:b0:ef:41:5d:ba:fa:0b:
1d:bd:bf:f6:f7:ed:fe:fd:b2:6b:08:2c:05:34:25:
08:3e:f9:a1:f1:62:c4:de:6e:72:9e:72:2c:eb:68:
cb:e7:db:08:c9:68:a9:6f:e9:71:95:2d:43:6a:14:
94:04:10:5d:ca:4e:51:29:3c:d8:ce:e8:bd:36:4b:
b8:ad:8c:5f:31:8a:42:53:4b:1e:5e:58:c8:7d:9f:
79:b2:52:1d:de:d5:c7:d6:73:54:45:7e:af:44:dc:
db:f4:0a:5f:7d:56:5e:7c:66:f3:0d:65:b8:57:0d:
cc:74:28:dc:ba:eb:30:8c:df:ff:19:e5:39:90:f9:
11:f4:10:76:ba:e2:96:a4:b4:1b:06:ab:3e:e1:40:
5d:99:e5:d4:69:df:a6:23:78:db:87:5b:31:52:01:
0d:72:ea:7b:20:b5:7e:46:f9:4d:b4:43:0d:f1:d9:
30:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:DD:43:99:0A:83:0A:D3:97:88:79:4A:19:99:75:00:E7:E2:46:46
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/58E627201C5111F1905279E2DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.215.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:e4:de:f5:b2:a7:7f:1d:ed:c8:79:68:d5:6c:27:f5:e0:e3:
a0:51:09:09:7c:a8:4c:78:3c:cc:61:61:65:52:0e:ab:79:dc:
43:4d:3f:f2:68:d7:29:db:f0:0a:ee:9e:8c:53:46:b3:e9:f0:
33:af:f4:da:7e:9b:c1:93:e9:53:3d:a9:be:d6:56:61:40:ad:
e7:53:c1:3c:d8:b1:66:73:3e:f9:25:d2:70:9b:39:f5:63:f4:
8a:e8:5f:67:09:88:9b:0b:de:e8:dd:b0:a5:e4:57:e5:5b:67:
47:63:d6:a3:fa:96:ab:d1:67:cb:84:41:6d:02:62:26:42:10:
ef:fb:b7:fa:a8:6f:35:b5:56:ca:03:c2:0c:f2:79:15:d6:b3:
af:43:49:3d:1f:51:c7:cc:fb:4d:7f:a1:95:d8:2e:80:85:52:
0a:7c:65:76:0d:ab:6f:58:06:2c:c9:40:26:3e:96:f1:fe:cd:
35:5b:e9:0a:bc:f6:7b:a8:81:f0:82:d9:ae:10:e6:63:af:b1:
8f:e7:2d:e0:79:d4:64:2d:85:a0:0f:f6:98:52:1e:39:cc:cc:
04:07:2e:14:c1:d7:38:b7:7b:34:c2:2f:b0:e7:4f:25:6a:bb:
b1:1a:a2:9f:1e:a5:4e:d6:98:62:48:65:f3:21:2b:56:28:17:
27:d2:79:d4
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICHmswDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
ODJCNjVBRjExMC8GA1UEBRMoMDk0MEU2MzgyODMzMzZERTVDOEM1QTQwQTRDMjNC
MzRGM0Y5Q0E1MzAeFw0yNjAzMTAwNzE4MjlaFw0yODAzMTAwNzE4MjlaMBgxFjAU
BgNVBAMTDTY5YWZjNWNhLWYxMGEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDdcOkIEedWTBSNajFgvva5sn8c2EfdgaQcMOp2ltH50AziTmgh4I4Yzk0J
msjtRRCylGRSMyXd8FVmg4zafVLi1Xr+hP8nDvJ+AOCcF2krb0JrsO9BXbr6Cx29
v/b37f79smsILAU0JQg++aHxYsTebnKecizraMvn2wjJaKlv6XGVLUNqFJQEEF3K
TlEpPNjO6L02S7itjF8xikJTSx5eWMh9n3myUh3e1cfWc1RFfq9E3Nv0Cl99Vl58
ZvMNZbhXDcx0KNy66zCM3/8Z5TmQ+RH0EHa64paktBsGqz7hQF2Z5dRp36YjeNuH
WzFSAQ1y6nsgtX5G+U20Qw3x2TB3AgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUz91D
mQqDCtOXiHlKGZl1AOfiRkYwHwYDVR0jBBgwFoAUCUDmOCgzNt5cjFpApMI7NPP5
ylMwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjgyQjY1LzRFODUxRTM0REI1NTExRTg4NUIyOTk1MUY4QUVBMjI4L0NVRG1P
Q2d6TnQ1Y2pGcEFwTUk3TlBQNXlsTS5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL0NVRG1PQ2d6TnQ1Y2pGcEFwTUk3TlBQNXlsTS5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjgyQjY1LzRFODUxRTM0REI1NTExRTg4NUIyOTk1MUY4
QUVBMjI4LzU4RTYyNzIwMUM1MTExRjE5MDUyNzlFMkRBRTRFQzlDLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACaENcwDQYJKoZIhvcNAQEL
BQADggEBADzk3vWyp38d7ch5aNVsJ/Xg46BRCQl8qEx4PMxhYWVSDqt53ENNP/Jo
1ynb8ArunoxTRrPp8DOv9Np+m8GT6VM9qb7WVmFAredTwTzYsWZzPvkl0nCbOfVj
9IroX2cJiJsL3ujdsKXkV+VbZ0dj1qP6lqvRZ8uEQW0CYiZCEO/7t/qobzW1VsoD
wgzyeRXWs69DST0fUcfM+01/oZXYLoCFUgp8ZXYNq29YBizJQCY+lvH+zTVb6Qq8
9nuogfCC2a4Q5mOvsY/nLeB51GQthaAP9phSHjnMzAQHLhTB1zi3ezTCL7DnTyVq
u7Eaop8epU7WmGJIZfMhK1YoFyfSedQ=
-----END CERTIFICATE-----
Generated at Tue Mar 10 23:50:06 2026 by rpki-client