Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/72FDB61667B311F1B06AB0FDCE1D38B0.roa
File: 72FDB61667B311F1B06AB0FDCE1D38B0.roa (raw, json)
Hash identifier: amUrTIrL2uGv1uBnJ0V9kKJJE1XVxK/xCAThqdGxA9c=
Subject key identifier: 2D:7B:0B:69:91:31:6A:50:10:2A:2A:DE:FD:A3:61:8E:DC:83:11:6C
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 1FD2
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/72FDB61667B311F1B06AB0FDCE1D38B0.roa
Signing time: Sun 14 Jun 2026 05:39:45 +0000
ROA not before: Sun 14 Jun 2026 05:39:40 +0000
ROA not after: Wed 14 Jun 2028 05:39:40 +0000
asID: 9009
IP address blocks: 154.127.58.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 16 Jun 2026 00:07:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8146 (0x1fd2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF, serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Jun 14 05:39:40 2026 GMT
Not After : Jun 14 05:39:40 2028 GMT
Subject: CN=6a2e3ea1-63a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:3c:25:ba:2c:08:61:d2:e5:0a:7c:e3:1e:73:
a9:25:11:a7:86:6d:9b:88:45:0b:e5:47:8a:08:bf:
7c:99:c7:4a:5c:c7:d9:1e:37:1d:fc:db:10:bf:72:
5a:48:e4:37:8a:fa:c0:3d:72:88:c4:83:4a:25:be:
d4:9b:06:c0:0e:70:d5:be:f1:da:8c:88:8d:4e:66:
97:df:02:00:94:c9:98:71:1f:6d:24:77:9a:1e:99:
78:53:f1:ac:2c:b2:2c:c8:9e:35:ea:46:13:10:df:
ac:ed:f0:92:1c:b5:d6:3e:00:d8:b8:0f:20:5b:29:
d8:fa:af:14:10:24:44:ac:5f:1e:07:22:b9:12:23:
a1:10:d2:ab:7f:31:d8:c3:49:03:8d:0a:b3:6e:4c:
f1:dd:72:41:ae:02:bd:72:9f:d4:e2:c5:3f:1d:a0:
2f:7b:15:7f:8e:2d:e6:c0:7f:48:83:df:ef:52:ef:
de:a2:27:9d:db:18:1a:e3:a2:6e:da:e6:ba:21:0e:
71:5b:7f:0c:9e:7d:a5:be:35:96:8e:5e:e7:fb:41:
51:6a:51:c1:ea:6a:94:9b:a7:18:b8:c7:00:f7:4d:
1f:f5:4b:f5:5f:eb:78:19:84:c9:de:79:cd:5a:5e:
43:56:70:92:9a:74:ef:a5:d9:7f:8c:e0:ee:26:0e:
ae:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:7B:0B:69:91:31:6A:50:10:2A:2A:DE:FD:A3:61:8E:DC:83:11:6C
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/72FDB61667B311F1B06AB0FDCE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.127.58.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:c6:99:23:20:05:be:db:ae:e0:fc:e5:a3:b3:f4:7b:0e:81:
cb:89:d2:68:db:46:2a:6d:f9:94:30:90:33:44:4f:83:d7:31:
87:9c:93:87:fe:ca:b7:ef:a3:3a:c8:69:ec:52:98:75:b5:6c:
48:a2:e7:ac:59:3e:e9:03:0d:3c:23:d7:48:3f:c7:5d:0a:db:
43:8d:5e:7c:1a:34:9e:37:4e:61:79:d6:7e:92:61:27:5e:ea:
0f:9f:e6:bb:07:d2:26:dc:87:2f:12:40:45:cc:20:b0:b2:a4:
4a:32:8c:cd:96:36:90:f9:93:1e:e0:4a:94:71:5f:34:61:24:
f2:fc:76:5e:98:d0:c3:35:68:00:5b:7f:14:01:bf:3a:18:ef:
b1:17:bf:ac:42:7b:d5:d8:94:d8:10:48:bb:0b:32:53:1d:c2:
cd:cb:74:91:3e:b2:17:fd:aa:0f:b4:3d:de:27:da:bb:2c:a0:
c3:e8:a2:5d:d7:4a:c2:ba:a8:88:05:e2:42:7c:af:57:c5:87:
47:10:9e:52:aa:39:fe:3c:89:f4:1d:75:0b:d7:b7:0b:d9:a2:
c3:20:45:75:aa:0a:9c:f9:17:4e:2d:20:fc:62:8e:a4:72:e8:
42:a1:5f:66:02:80:e8:74:1d:81:d1:43:14:63:19:9c:b8:b5:
18:03:a3:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 19:12:44 2026 by rpki-client