Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/7ED147904A3611F188B0A21BCF1D38B0.roa
File: 7ED147904A3611F188B0A21BCF1D38B0.roa (raw, json)
Hash identifier: 56HcrathFQFMd0wDowNjvkpTJz93DhAgVNtI6gbZoyI=
Subject key identifier: 4F:89:49:33:AF:C1:B8:E3:6B:EC:B8:05:24:19:BD:5A:E8:E3:C7:C4
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 1F1E
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/7ED147904A3611F188B0A21BCF1D38B0.roa
Signing time: Thu 07 May 2026 17:02:14 +0000
ROA not before: Thu 07 May 2026 17:02:10 +0000
ROA not after: Wed 07 Jun 2028 17:02:10 +0000
asID: 202736
IP address blocks: 154.16.43.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 11 May 2026 00:07:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7966 (0x1f1e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF, serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: May 7 17:02:10 2026 GMT
Not After : Jun 7 17:02:10 2028 GMT
Subject: CN=69fcc596-436d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:1c:16:8e:1f:78:8b:f6:f1:00:60:94:38:aa:
0c:73:64:10:d2:b5:ba:4b:08:11:61:12:1d:fd:4d:
af:ed:03:3b:08:9e:90:20:7b:b3:fd:5e:17:b8:05:
81:2c:c2:24:6a:04:94:cc:e9:d2:9f:41:4d:d8:3f:
5b:18:9a:99:5d:fc:40:1b:36:03:dd:e8:51:ea:d6:
b8:b6:46:41:1f:fa:c6:e5:e2:31:b1:b8:f3:f3:3a:
55:6f:d1:e1:29:28:0f:6d:14:46:91:ac:a1:ea:26:
54:6c:9c:d0:f3:fe:ee:d0:ff:1e:e0:79:00:3e:bb:
3d:dc:a6:ce:61:d9:d1:5c:e6:60:d7:c0:62:f7:20:
5c:1e:87:d7:06:9e:74:c3:40:8a:a1:5d:5d:7c:11:
2e:3d:71:49:a9:e1:a6:5d:12:8e:d3:f9:8c:bb:b0:
52:84:27:0e:13:0b:20:7b:54:0e:01:d9:f9:22:65:
7c:05:df:28:ad:43:f4:71:0a:e2:90:0a:06:84:2c:
2b:c1:51:9f:e3:1f:39:81:c4:fc:05:2e:9a:6f:08:
1a:23:5b:cb:c3:f4:ba:8e:bb:54:69:ad:94:5c:af:
0c:67:f3:5f:95:9b:ed:e5:1f:2c:9a:ea:83:d5:14:
71:2a:1e:4e:2e:a6:87:65:e7:10:10:5b:be:be:22:
9a:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:89:49:33:AF:C1:B8:E3:6B:EC:B8:05:24:19:BD:5A:E8:E3:C7:C4
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/7ED147904A3611F188B0A21BCF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.43.0/24
Signature Algorithm: sha256WithRSAEncryption
56:60:8e:27:c1:73:13:03:42:6d:c4:32:ec:ef:06:f4:2c:13:
08:c4:04:e9:27:c3:3e:c6:7a:56:93:e0:77:cb:91:62:31:d2:
12:9d:2b:4c:a5:a7:35:be:05:ce:e5:8f:d3:7b:eb:aa:d5:a0:
81:40:23:4d:0c:1d:d4:78:00:85:68:6c:77:f4:ec:8f:df:03:
9f:08:c9:c8:fe:57:5f:9e:80:cf:7c:ce:de:a4:dd:5c:2d:77:
39:bf:34:73:89:b7:e9:12:53:81:73:4c:56:02:d3:b2:f1:34:
61:3e:2b:05:77:33:73:b1:7e:ff:e9:7d:2a:31:0f:8d:34:28:
ac:dd:cc:58:de:fe:b8:41:c6:99:51:9f:71:92:24:f7:f8:5a:
03:c5:bc:68:5d:be:aa:65:ae:66:93:8b:7c:cb:29:a5:90:b2:
2f:29:45:7e:ad:a0:06:85:2f:8b:8f:81:69:ae:4d:00:cf:91:
ad:e3:88:4e:d5:04:a1:bc:f1:8c:4b:d3:b7:6b:d9:c4:78:e7:
a4:5a:13:5c:03:e8:41:82:dd:d0:f4:7d:f6:b7:a3:3a:d2:ad:
a6:ab:5e:92:9c:08:b6:cf:6a:7c:48:9a:e0:b5:45:c4:32:c8:
9b:b5:34:65:6c:4a:ca:b5:c0:c4:89:f8:30:b5:63:a8:8c:e9:
ed:27:c7:a0
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICHx4wDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
ODJCNjVBRjExMC8GA1UEBRMoMDk0MEU2MzgyODMzMzZERTVDOEM1QTQwQTRDMjNC
MzRGM0Y5Q0E1MzAeFw0yNjA1MDcxNzAyMTBaFw0yODA2MDcxNzAyMTBaMBgxFjAU
BgNVBAMTDTY5ZmNjNTk2LTQzNmQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDjHBaOH3iL9vEAYJQ4qgxzZBDStbpLCBFhEh39Ta/tAzsInpAge7P9Xhe4
BYEswiRqBJTM6dKfQU3YP1sYmpld/EAbNgPd6FHq1ri2RkEf+sbl4jGxuPPzOlVv
0eEpKA9tFEaRrKHqJlRsnNDz/u7Q/x7geQA+uz3cps5h2dFc5mDXwGL3IFweh9cG
nnTDQIqhXV18ES49cUmp4aZdEo7T+Yy7sFKEJw4TCyB7VA4B2fkiZXwF3yitQ/Rx
CuKQCgaELCvBUZ/jHzmBxPwFLppvCBojW8vD9LqOu1RprZRcrwxn81+Vm+3lHyya
6oPVFHEqHk4upodl5xAQW76+IpqTAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUT4lJ
M6/BuONr7LgFJBm9Wujjx8QwHwYDVR0jBBgwFoAUCUDmOCgzNt5cjFpApMI7NPP5
ylMwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjgyQjY1LzRFODUxRTM0REI1NTExRTg4NUIyOTk1MUY4QUVBMjI4L0NVRG1P
Q2d6TnQ1Y2pGcEFwTUk3TlBQNXlsTS5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL0NVRG1PQ2d6TnQ1Y2pGcEFwTUk3TlBQNXlsTS5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjgyQjY1LzRFODUxRTM0REI1NTExRTg4NUIyOTk1MUY4
QUVBMjI4LzdFRDE0NzkwNEEzNjExRjE4OEIwQTIxQkNGMUQzOEIwLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACaECswDQYJKoZIhvcNAQEL
BQADggEBAFZgjifBcxMDQm3EMuzvBvQsEwjEBOknwz7GelaT4HfLkWIx0hKdK0yl
pzW+Bc7lj9N766rVoIFAI00MHdR4AIVobHf07I/fA58Iycj+V1+egM98zt6k3Vwt
dzm/NHOJt+kSU4FzTFYC07LxNGE+KwV3M3Oxfv/pfSoxD400KKzdzFje/rhBxplR
n3GSJPf4WgPFvGhdvqplrmaTi3zLKaWQsi8pRX6toAaFL4uPgWmuTQDPka3jiE7V
BKG88YxL07dr2cR456RaE1wD6EGC3dD0ffa3ozrSraarXpKcCLbPanxImuC1RcQy
yJu1NGVsSsq1wMSJ+DC1Y6iM6e0nx6A=
-----END CERTIFICATE-----
Generated at Sat May 9 04:55:12 2026 by rpki-client