Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/858540C2BEF511F08AC3F1BDDAE4EC9C.roa
File: 858540C2BEF511F08AC3F1BDDAE4EC9C.roa (raw, json)
Hash identifier: YmN3DIDCk06xRhV5ApRI2CthL4YpjNHAVw8+WDp3/Ng=
Subject key identifier: 6A:46:62:8D:36:1C:D0:4B:01:79:F0:E4:AB:EC:03:23:5F:AA:8B:D5
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 1CA4
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/858540C2BEF511F08AC3F1BDDAE4EC9C.roa
Signing time: Tue 11 Nov 2025 11:56:57 +0000
ROA not before: Tue 11 Nov 2025 11:56:51 +0000
ROA not after: Sat 06 Nov 2027 11:56:51 +0000
asID: 398465
IP address blocks: 154.16.13.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 16 Nov 2025 00:06:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7332 (0x1ca4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF, serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Nov 11 11:56:51 2025 GMT
Not After : Nov 6 11:56:51 2027 GMT
Subject: CN=69132489-62d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:71:9f:31:1b:8f:81:b3:33:d0:8b:3a:f3:c2:
35:bf:58:8f:e5:5a:c1:5a:1a:21:4c:35:b5:0c:d9:
d5:40:f6:d7:1a:88:96:41:11:07:4e:1c:17:db:25:
58:80:7f:3e:ed:41:93:be:a8:92:1c:50:6f:e2:f1:
94:43:b4:4f:88:b2:b4:a7:3a:fa:d5:f3:74:f2:d1:
d7:f2:f8:28:3a:02:9c:10:9b:ef:43:89:a0:b3:55:
0d:92:7a:7c:36:cd:e8:eb:03:6d:a5:23:37:8d:4d:
22:c2:c8:8e:57:e3:da:1e:36:8b:03:17:12:f6:54:
75:e8:3d:37:5a:2a:cd:e0:cd:64:91:c0:bb:ed:89:
c6:ee:04:ad:12:f2:ec:a4:54:e0:70:6b:a6:04:f9:
e8:b7:a7:da:b0:13:bf:29:3f:22:1a:17:66:7f:52:
b1:68:0c:aa:5f:bc:17:0c:ac:d6:4b:bc:c9:3f:1e:
02:da:5c:8c:6d:94:f7:ae:dc:bf:9a:23:59:e9:a5:
b5:e3:47:17:a2:d5:d4:80:35:9a:e6:d4:20:d0:cb:
cf:12:67:d8:99:07:62:d7:93:ca:6f:fd:f9:62:73:
cd:ab:da:a4:33:ee:ea:4f:18:bd:8d:cf:0f:3d:2f:
c9:30:73:49:da:ca:55:8a:68:c5:be:a5:ab:53:06:
5f:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:46:62:8D:36:1C:D0:4B:01:79:F0:E4:AB:EC:03:23:5F:AA:8B:D5
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/858540C2BEF511F08AC3F1BDDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.13.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:6a:da:a9:dd:8f:11:a6:f8:fc:53:d9:c8:eb:17:b9:d5:22:
56:a3:1d:d5:10:99:be:53:0a:e5:22:b7:90:84:85:e7:3f:97:
48:e7:b9:b9:8e:fc:b2:bd:05:7b:06:d7:2b:59:2e:9d:2e:ea:
f4:54:e2:78:0f:67:93:d8:88:17:a3:9a:93:24:f6:92:c1:72:
83:31:c3:1a:d5:c6:58:60:30:b1:f7:86:15:d1:62:8f:cd:24:
39:a9:c4:23:f1:ed:c7:f1:b5:9f:96:f6:ff:cf:59:04:1e:50:
2d:cd:c0:c6:b9:4c:24:96:90:66:a7:af:77:eb:01:e4:81:dc:
1d:03:e6:e4:15:a5:4c:9e:54:d2:6f:08:90:28:fb:a6:7a:2d:
99:26:25:1b:52:52:b0:74:90:d5:23:0c:15:de:aa:17:72:4a:
9c:dd:d7:4c:af:14:fd:36:55:aa:ce:4a:79:94:c7:8b:67:0d:
80:27:4f:97:7b:4f:7c:e9:5b:62:cf:55:30:65:06:8d:e1:0c:
74:67:db:a5:b8:16:4a:e1:8e:c2:e9:f6:cb:4c:cf:14:1e:8c:
69:df:90:75:bd:f3:c9:a2:67:36:cc:6c:d3:0a:37:03:00:62:
45:4f:24:d8:9f:da:b7:84:62:e4:71:f5:2d:c0:73:34:d4:0f:
7f:80:f1:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 14 03:52:47 2025 by rpki-client