Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/7DCB112233DA11F19E1116C2CE1D38B0.roa
File: 7DCB112233DA11F19E1116C2CE1D38B0.roa (raw, json)
Hash identifier: PNXvvWehRLdxfnXOH0SK4Rt4s7hHUw/oyUOqwIQU2qI=
Subject key identifier: E0:DF:F6:35:82:CC:7E:4C:84:9A:6B:57:2B:E0:92:30:2A:C2:02:04
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 1EC0
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/7DCB112233DA11F19E1116C2CE1D38B0.roa
Signing time: Thu 09 Apr 2026 06:08:13 +0000
ROA not before: Thu 09 Apr 2026 06:08:09 +0000
ROA not after: Sun 09 Apr 2028 06:08:09 +0000
asID: 834
IP address blocks: 154.16.16.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 11 Apr 2026 00:06:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7872 (0x1ec0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF, serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Apr 9 06:08:09 2026 GMT
Not After : Apr 9 06:08:09 2028 GMT
Subject: CN=69d7424d-4c48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:5d:f6:54:83:e6:a4:9e:11:55:29:ff:ff:48:
f6:d0:42:2e:8c:62:0a:07:d8:42:be:02:5b:37:4e:
7c:05:2f:8d:b2:6c:81:08:71:ea:9a:0e:0c:91:18:
cb:92:98:84:e5:60:50:6c:40:aa:4a:32:09:36:a2:
02:2b:0d:eb:92:6f:60:e0:8f:a1:3d:2b:2d:9f:b0:
d9:1f:c7:34:1f:b4:3c:6e:6a:93:9c:d3:da:4e:4f:
68:15:47:a4:89:e8:2e:e2:1a:87:b9:b1:a3:93:3e:
0c:b9:9e:23:40:cf:76:fc:ca:06:91:9d:7b:ab:9a:
26:a8:d5:92:0c:03:61:2a:78:96:b0:da:ef:7e:59:
49:4d:ab:ef:3d:f1:ce:f2:e0:6d:83:d3:c5:76:31:
e7:ab:97:36:51:56:08:9e:a1:c9:ef:8e:83:14:c7:
1c:61:b3:34:bd:3a:9c:09:09:ec:65:15:04:db:85:
93:bb:8c:05:54:06:a5:43:47:f2:cc:a0:66:85:20:
1a:b4:b0:e7:0e:15:b8:c0:f7:b5:79:4c:7c:76:c4:
cf:b8:ee:dd:cd:04:8c:5c:ed:53:a2:27:08:f5:de:
af:28:9d:ce:23:7c:2e:a7:8a:64:fa:2b:3b:ab:94:
b2:2c:31:64:f4:a1:17:b4:93:95:0c:3b:63:cb:bb:
c6:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:DF:F6:35:82:CC:7E:4C:84:9A:6B:57:2B:E0:92:30:2A:C2:02:04
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/7DCB112233DA11F19E1116C2CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.16.0/24
Signature Algorithm: sha256WithRSAEncryption
39:90:80:c2:ee:21:3c:d1:e9:16:27:05:cb:d2:9a:5c:7d:1d:
7b:e5:da:72:95:b7:4a:df:d3:ec:99:0e:65:3a:7b:5f:4f:58:
da:bd:c4:62:a3:8c:b1:62:87:4f:5e:45:3a:4a:5f:b4:cb:85:
0a:49:b7:3f:8f:b0:b5:48:42:97:25:8f:02:b7:44:5f:5b:dd:
16:27:d7:ae:3b:9c:43:68:9f:f3:a1:d6:da:34:ee:77:90:2c:
bb:07:d4:bd:94:ba:ea:75:21:a2:55:e3:77:5e:21:ef:7d:da:
22:c2:3d:07:f4:8d:d6:1d:92:9b:69:63:4f:2d:ab:1c:9f:0d:
aa:d6:34:ae:1a:7a:64:af:62:e4:59:6b:1a:ee:c7:bd:27:89:
4c:d6:b6:90:9b:c4:5b:e0:e0:05:86:44:f9:7d:4c:7f:5c:08:
5c:a5:65:ac:25:41:77:2e:8b:bf:a6:23:22:09:3b:77:4f:f9:
17:f3:58:c1:17:c8:5e:63:11:7a:51:b8:1f:75:6e:8d:24:b4:
7f:4b:77:ed:e3:df:f9:45:af:04:2b:74:8b:09:15:b6:f9:b9:
75:2e:66:85:d6:77:0f:db:01:73:62:68:26:0e:c1:73:37:ce:
d8:4f:19:64:ff:56:35:ab:64:b6:80:45:cc:ff:87:8f:e5:36:
87:5c:bb:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 9 13:15:49 2026 by rpki-client