Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/7C4633F25A6A11F1B487D2C2CE1D38B0.roa
File: 7C4633F25A6A11F1B487D2C2CE1D38B0.roa (raw, json)
Hash identifier: bH2cCtW/YqvivfTianVYxVOosKG50HWKLNhLlvAK2t4=
Subject key identifier: A0:6F:92:AA:FE:65:03:0A:03:87:DA:D8:A4:32:A8:79:D1:0F:AA:55
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 1F7C
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/7C4633F25A6A11F1B487D2C2CE1D38B0.roa
Signing time: Thu 28 May 2026 07:54:43 +0000
ROA not before: Thu 28 May 2026 07:54:38 +0000
ROA not after: Sun 28 May 2028 07:54:38 +0000
asID: 214266
IP address blocks: 154.16.255.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 30 May 2026 00:07:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8060 (0x1f7c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF, serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: May 28 07:54:38 2026 GMT
Not After : May 28 07:54:38 2028 GMT
Subject: CN=6a17f4c2-33e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:29:56:07:ab:29:e2:dd:20:07:37:10:ca:f2:
f2:d0:c4:2c:85:5b:bb:08:01:a0:b6:12:f3:0d:06:
26:cc:f6:7e:cb:e5:1a:22:c1:76:a5:29:08:03:ad:
e2:f0:01:59:bc:e0:85:36:d5:19:d9:64:df:07:0f:
28:1f:5b:a5:c3:f7:c5:d0:df:f6:e8:fd:1b:78:6d:
f0:2a:9a:e3:e2:f3:17:56:bb:8f:76:c6:40:60:83:
e1:73:75:81:ed:0f:17:cc:05:9e:0a:72:db:45:6c:
3b:4b:3e:47:c7:a3:c7:a1:61:29:2a:76:7c:cb:d0:
3f:92:37:31:d0:51:13:ea:d6:ef:fa:d2:fc:fe:6f:
6b:8a:1a:fe:09:69:e4:23:a7:d6:17:4f:19:9a:eb:
a3:25:c2:96:75:96:df:72:c0:46:f0:68:15:bf:5e:
46:56:3b:1b:c8:32:52:0a:89:7f:7f:03:4b:1f:b5:
fd:dc:87:90:22:b4:e0:f8:c5:e3:87:06:0e:35:2c:
67:79:46:ab:49:d0:89:25:59:ae:60:ec:4a:68:f5:
9d:03:11:38:53:4d:dd:b6:7e:92:fd:f3:f0:4b:1a:
45:2b:ee:23:2b:36:1f:c9:1b:de:b5:6c:a2:2a:76:
27:e8:e0:1a:a4:c0:5d:af:63:66:8b:cb:09:fa:b1:
f7:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:6F:92:AA:FE:65:03:0A:03:87:DA:D8:A4:32:A8:79:D1:0F:AA:55
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/7C4633F25A6A11F1B487D2C2CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.255.0/24
Signature Algorithm: sha256WithRSAEncryption
49:5b:20:47:c1:f8:81:9a:15:0d:f0:68:9b:af:c2:df:de:e6:
4a:8a:ee:0e:7e:00:d9:42:45:74:ac:60:e5:19:70:69:53:39:
e7:ae:ff:a0:7a:23:bf:8a:c0:cf:2d:71:99:a5:fc:b6:ae:7a:
c5:95:b7:6d:67:a3:76:6d:88:a5:41:31:20:f5:0d:13:bc:3c:
ac:01:b6:25:5b:56:5f:a9:ca:aa:77:f6:91:02:6e:fd:9e:7d:
eb:db:b3:0c:9f:ca:79:e4:52:7d:6d:42:44:ce:d3:34:43:02:
f6:3d:f8:36:c6:a6:3f:d3:1c:79:43:95:9a:f3:db:93:9a:e1:
56:65:42:81:fe:a6:a5:1f:06:35:3c:8b:a6:27:b9:9e:bf:04:
dd:36:36:87:80:bd:ef:a0:e3:b5:4b:2a:41:24:05:6f:20:09:
4b:bb:a0:f1:83:fb:9d:cc:a0:7c:1e:15:80:d0:35:fd:44:05:
ed:3f:5a:79:71:c1:28:5a:75:2e:04:f3:79:07:59:66:03:19:
25:cf:70:02:a9:25:0c:e0:f3:37:a9:b8:90:d1:84:bb:72:a0:
87:e0:69:80:4b:56:91:07:f1:04:74:cb:f2:6b:95:d2:31:63:
47:7b:55:4c:bb:27:0e:16:76:9e:25:01:45:92:5f:c0:66:ef:
1c:47:c6:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 28 22:40:37 2026 by rpki-client