Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/6689407C712611F1B0B793B4CE1D38B0.roa
File: 6689407C712611F1B0B793B4CE1D38B0.roa (raw, json)
Hash identifier: KfOgi3LN84s6tvd57usonjiqBiIj2PfIm4u+aUWTyZU=
Subject key identifier: DA:B1:90:C1:2F:8B:F6:04:1E:EE:39:B5:20:4D:85:4A:F5:90:E4:EA
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 2003
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/6689407C712611F1B0B793B4CE1D38B0.roa
Signing time: Fri 26 Jun 2026 06:15:17 +0000
ROA not before: Fri 26 Jun 2026 06:15:12 +0000
ROA not after: Mon 26 Jun 2028 06:15:12 +0000
asID: 149540
IP address blocks: 154.16.62.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 28 Jun 2026 00:07:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8195 (0x2003)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF, serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Jun 26 06:15:12 2026 GMT
Not After : Jun 26 06:15:12 2028 GMT
Subject: CN=6a3e18f5-510c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:c6:47:ec:76:3f:32:46:f5:6a:09:0e:dc:35:
f1:ef:bf:3a:3c:a0:e4:66:b3:c9:5f:39:6f:90:9d:
24:22:99:bf:5a:d6:1e:b2:65:1d:6e:b8:dd:1f:d0:
35:63:75:33:29:66:0b:54:34:1f:2e:71:77:d8:c1:
b0:f7:c1:1f:19:9e:48:37:4d:a7:93:0f:15:e9:d0:
ef:e5:1c:a8:2f:af:50:8f:88:03:05:62:37:8e:88:
1b:c0:3f:93:74:7d:b7:6f:b3:32:bc:48:2a:27:69:
4a:5a:8e:f1:5a:00:ab:b7:30:d4:36:fe:7c:10:61:
d2:93:17:66:33:7e:dd:54:5e:62:b7:27:c5:2e:06:
f1:2b:df:70:a1:c1:62:23:83:e0:ae:e2:10:51:f5:
84:a2:e9:13:a0:07:23:82:fe:31:cb:03:c9:3b:01:
ca:b3:6b:02:54:4a:73:62:93:e3:14:12:8e:c1:f5:
31:e7:13:81:92:7e:bb:9b:33:f3:07:b8:e6:ae:95:
e2:85:5a:21:87:99:9c:17:91:5d:62:4f:1d:74:94:
41:d8:6f:f0:d8:f3:f0:df:4a:b9:f7:6a:23:60:34:
d5:eb:2e:31:0c:43:ae:28:f8:59:d0:cc:65:6a:13:
7b:76:b7:b5:08:12:72:66:49:14:86:d4:72:44:be:
cc:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:B1:90:C1:2F:8B:F6:04:1E:EE:39:B5:20:4D:85:4A:F5:90:E4:EA
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/6689407C712611F1B0B793B4CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.62.0/24
Signature Algorithm: sha256WithRSAEncryption
77:3d:f1:be:ec:f2:49:9d:fd:d0:85:fa:36:09:77:01:56:d5:
95:3e:2b:a4:08:92:a1:09:5c:96:3b:8b:24:28:29:34:c8:53:
11:7e:f9:d2:b6:c4:9a:e8:17:a4:de:8f:dc:da:ce:5a:80:16:
e3:ed:3a:26:db:a1:d4:6e:ef:7c:31:35:06:71:95:4e:bf:7f:
12:52:3d:50:5c:a1:0e:e7:8e:d8:88:d8:e3:cc:e7:f5:3f:f2:
33:2e:f4:d8:bf:52:cd:7a:25:ca:45:4b:4d:ce:49:0e:bc:d9:
3c:c9:f2:d9:a5:9d:8e:c4:a6:58:12:3a:c7:87:93:36:dd:73:
e7:56:9b:88:f6:9e:6c:ec:81:09:ec:7d:72:40:e2:5d:79:a1:
05:a7:3a:5e:8f:49:11:25:1b:0c:56:86:08:88:e1:14:ae:eb:
6f:d0:97:cd:48:51:45:dc:d6:55:54:79:28:7a:69:62:32:b6:
c5:fd:16:6c:0c:86:34:cd:f5:43:76:a1:f0:18:df:71:92:e4:
90:07:9c:2f:9d:39:ac:c8:02:be:f1:e5:59:a7:f2:2e:ea:f8:
ed:0a:92:29:e3:d5:6f:45:8c:b5:40:71:fd:8c:81:c7:1e:f6:
09:0c:0c:b9:ba:fe:92:2e:4c:3d:46:47:0c:12:c5:4c:f2:b2:
ea:9a:9a:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 26 13:07:03 2026 by rpki-client