Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/90FB854237D111F1A6E191DFCE1D38B0.roa
File: 90FB854237D111F1A6E191DFCE1D38B0.roa (raw, json)
Hash identifier: K+H7AqlgGEYd7mL4CEbJ8umDceGYpquzLtCpqlTBv9A=
Subject key identifier: 1A:12:F6:27:0D:CF:8F:0B:58:32:47:5B:2F:BC:45:11:15:CA:59:26
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 1ED4
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/90FB854237D111F1A6E191DFCE1D38B0.roa
Signing time: Tue 14 Apr 2026 07:14:25 +0000
ROA not before: Tue 14 Apr 2026 07:14:20 +0000
ROA not after: Fri 14 Apr 2028 07:14:20 +0000
asID: 22168
IP address blocks: 154.16.223.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 16 Apr 2026 00:07:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7892 (0x1ed4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF, serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Apr 14 07:14:20 2026 GMT
Not After : Apr 14 07:14:20 2028 GMT
Subject: CN=69dde951-2eb5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:b8:0b:40:44:71:fa:f5:12:70:cc:4f:53:2b:
9d:d5:d1:43:05:c8:23:1b:74:2b:8a:c1:65:6d:62:
4d:46:e4:7f:67:c4:d3:53:7d:95:47:7e:29:87:31:
6b:80:45:ad:08:c4:c4:a2:ab:bb:0d:26:83:53:c1:
92:75:c3:3e:0e:ed:db:de:fd:db:96:61:dc:ba:ab:
97:cc:77:71:db:a1:78:fc:0e:05:24:6e:60:2b:5d:
68:ad:42:02:12:d9:1e:c3:e5:fd:b8:55:a8:b5:2a:
7b:0c:b7:08:be:95:da:b4:2e:4e:09:e0:75:ac:8f:
94:00:d3:3f:84:b1:6a:1c:f4:b9:35:38:f5:a0:ec:
44:78:87:f7:c6:4c:25:f3:c7:c6:65:07:45:d7:d7:
2c:7d:96:eb:42:fc:b6:60:c4:0f:4d:09:d0:f6:72:
c7:ae:46:a6:4e:d7:93:0b:67:21:f3:15:24:1e:2e:
10:cb:02:03:5f:15:98:57:65:54:29:ea:8b:0f:ab:
44:98:ff:a0:32:93:11:c9:e1:11:9e:ed:6d:13:11:
14:02:a7:32:22:ee:df:3a:00:f8:25:86:f4:03:80:
b4:d3:e8:d7:e3:23:92:b9:7f:c4:a0:56:66:d8:76:
87:68:83:6d:d9:c6:8a:21:8c:4f:ed:5f:6e:03:26:
cc:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:12:F6:27:0D:CF:8F:0B:58:32:47:5B:2F:BC:45:11:15:CA:59:26
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/90FB854237D111F1A6E191DFCE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.223.0/24
Signature Algorithm: sha256WithRSAEncryption
92:47:ea:4b:62:33:20:4c:3d:c3:56:96:9c:c2:f3:ba:4e:62:
3c:a2:89:d0:2b:96:50:f9:3c:93:82:d2:5c:ba:64:eb:39:bf:
c3:63:bf:12:c0:4b:a4:d1:3a:20:39:33:13:86:7a:7c:11:22:
6f:98:5a:fc:12:8a:b2:b7:5c:06:4e:e1:da:83:72:4f:8b:32:
64:d8:e9:63:d0:46:86:27:42:da:42:40:e9:4d:8d:6d:fd:bc:
d1:d6:ef:72:82:99:ac:4e:d1:81:13:27:90:5d:87:88:3c:c2:
ff:ee:3b:00:2d:22:c4:57:e9:41:a5:62:9f:cd:b0:ce:5d:47:
ca:a3:73:fa:d7:94:bd:f3:43:d5:56:40:87:60:2a:11:37:41:
e2:5a:5a:ee:01:8a:26:10:19:e3:0a:9a:87:64:a6:df:da:ed:
eb:ef:6c:e5:ef:09:7e:8e:0e:a5:d5:39:c0:79:c4:2c:05:3d:
46:28:ac:bb:3e:16:17:6d:55:a3:35:ae:12:e0:78:a2:ff:16:
2b:53:1c:30:eb:0d:9e:5d:cb:f4:62:6d:e3:15:69:ab:b6:30:
9d:17:26:00:4d:d4:98:9b:a7:0c:1d:ab:7f:70:7a:f8:f3:6c:
ac:f1:2f:ae:d2:9f:74:36:8d:43:ed:53:f1:fd:3a:34:cd:a1:
d5:0a:85:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 14 21:50:31 2026 by rpki-client