Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/941E9306731111F18A59C5D4CE1D38B0.roa
File: 941E9306731111F18A59C5D4CE1D38B0.roa (raw, json)
Hash identifier: QsWC8h+acw70oQVpHHVj3bQj5/TM8Ut3DNTVszrGXgE=
Subject key identifier: E3:F0:0A:EE:F6:35:A4:F2:7B:33:6D:69:1E:15:DE:CA:2E:3C:87:2F
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 200A
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/941E9306731111F18A59C5D4CE1D38B0.roa
Signing time: Sun 28 Jun 2026 16:51:16 +0000
ROA not before: Sun 28 Jun 2026 16:51:12 +0000
ROA not after: Wed 28 Jun 2028 16:51:12 +0000
asID: 150033
IP address blocks: 154.16.98.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 01 Jul 2026 00:07:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8202 (0x200a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF, serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Jun 28 16:51:12 2026 GMT
Not After : Jun 28 16:51:12 2028 GMT
Subject: CN=6a415104-ea3f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:bb:e6:f2:7f:98:8a:ec:cc:33:bf:a9:53:a2:
69:3f:1d:91:f5:da:74:b1:86:ce:72:73:40:93:fd:
2a:2b:17:83:6c:b1:27:1a:57:23:20:f2:9f:50:69:
6e:2f:da:15:02:e6:c2:eb:66:d2:58:69:37:7f:91:
f4:0a:2f:55:dc:10:ad:e4:76:51:cb:44:41:43:7b:
27:ee:94:f1:c1:45:ae:3d:12:4a:4e:85:9b:30:57:
04:b2:2b:02:1a:cd:0f:07:01:b8:41:62:fc:17:55:
60:0c:9e:5a:61:b5:a4:4c:10:ee:37:43:fe:d7:ac:
b3:13:21:80:18:1d:32:21:ed:b5:6a:38:57:5b:93:
ef:2c:c5:2a:7c:05:e2:ec:7c:d8:0f:46:22:b8:79:
e1:91:93:a8:a8:5e:2e:d6:a3:31:b8:0f:fe:c3:cc:
8c:48:e4:55:19:e7:f2:7f:9f:b3:57:27:74:5d:5d:
65:3f:c9:08:57:3e:2a:93:ca:98:bd:77:db:9f:1f:
dd:46:e1:20:66:8e:05:40:14:01:4c:42:67:07:2d:
04:3f:1f:84:5f:31:b9:86:45:c3:5a:e4:b2:4e:da:
43:7f:a6:2a:77:51:e1:f4:4c:72:32:c8:22:74:c4:
7c:1d:18:b7:75:7f:18:4c:9e:06:cc:eb:93:64:da:
cb:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:F0:0A:EE:F6:35:A4:F2:7B:33:6D:69:1E:15:DE:CA:2E:3C:87:2F
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/941E9306731111F18A59C5D4CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.98.0/24
Signature Algorithm: sha256WithRSAEncryption
76:a6:ef:dc:50:3c:d2:bd:07:3c:b9:1e:2c:81:46:20:c7:14:
b8:bc:f1:21:0d:db:a5:3f:56:57:f3:1c:b9:e0:c5:46:fe:ef:
6a:41:5e:7f:ba:d2:a5:67:ee:bb:ea:bd:4e:3d:2d:c8:ca:84:
c3:f7:b2:d5:aa:da:09:a2:39:3b:14:f4:cc:46:8f:b7:8d:87:
2f:3b:ca:da:dd:db:ee:ac:35:8d:ea:3c:85:7e:43:38:f4:9b:
7f:03:76:99:db:99:bf:1b:d0:a8:18:a4:58:09:34:cf:ac:41:
25:7d:49:48:e5:4e:93:68:41:c5:fd:80:8a:a1:51:91:09:9f:
39:50:71:1a:56:27:eb:02:fc:a4:54:6d:08:0d:49:5c:fc:8c:
93:e4:94:82:89:69:33:76:a2:c6:77:3a:08:05:da:68:e0:aa:
bd:fa:e9:38:1c:71:70:3f:b9:61:38:1a:95:c1:58:d8:d9:a5:
54:4f:e8:3d:25:3e:e7:c1:b0:b8:a1:66:30:85:ff:58:af:46:
ef:74:25:2c:c3:45:f2:45:5e:f9:ca:35:cf:56:54:9b:e4:7a:
0b:21:57:18:bc:38:2a:9d:3d:02:cf:18:ce:07:e4:65:5f:2c:
93:dc:2a:b1:2e:ce:d4:3e:4c:e6:93:bc:17:ab:44:df:38:cd:
aa:01:9a:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 29 06:07:06 2026 by rpki-client