Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/A389DDEA687711F1B12C8EA4CE1D38B0.roa
File: A389DDEA687711F1B12C8EA4CE1D38B0.roa (raw, json)
Hash identifier: QYETvzLt2Yd6OwK3EZlNUWfWZBSKSCN9Of3CrtznHnY=
Subject key identifier: F7:F9:03:95:C6:8A:C1:49:5E:09:A7:4C:2E:B9:6E:81:C4:33:F6:61
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 1FE0
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/A389DDEA687711F1B12C8EA4CE1D38B0.roa
Signing time: Mon 15 Jun 2026 05:04:08 +0000
ROA not before: Mon 15 Jun 2026 05:04:02 +0000
ROA not after: Thu 15 Jun 2028 05:04:02 +0000
asID: 834
IP address blocks: 154.16.122.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 17 Jun 2026 05:04:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8160 (0x1fe0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF, serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Jun 15 05:04:02 2026 GMT
Not After : Jun 15 05:04:02 2028 GMT
Subject: CN=6a2f87c8-5d01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:62:52:e9:f6:a4:d3:3a:2e:13:ff:e3:33:c5:
61:19:c0:39:74:ec:a4:e9:c9:66:80:d8:18:39:f5:
4f:87:51:3c:7c:54:a7:ef:31:15:71:6d:f4:e2:2e:
3a:2e:97:ec:6a:d0:b7:2b:c0:87:d6:58:8f:7e:65:
e2:62:db:43:d3:ff:e0:00:40:6d:ec:aa:20:6d:c9:
db:94:34:f1:61:ac:f6:9d:01:f8:ec:b2:52:01:b1:
d3:2d:68:6e:82:23:5d:d4:18:0f:40:76:2f:91:18:
16:10:7d:a0:c2:9a:dd:b4:b9:f5:42:e7:8e:bd:73:
91:2c:6a:73:cc:57:3c:7d:b8:0e:4e:ca:22:83:bd:
a1:71:c4:18:b4:42:1f:47:78:f5:c4:b5:b2:fd:b8:
54:9f:87:bc:9c:7c:21:4e:e7:0f:c6:0d:b2:76:10:
49:ce:51:43:67:64:62:0c:87:09:e8:a0:95:b2:67:
9e:43:55:ca:4d:a8:70:92:e7:dd:63:d0:24:f4:b0:
41:5d:fd:20:5d:53:a4:79:84:f3:89:51:22:00:81:
63:8a:26:5f:d0:2a:06:30:7d:59:c3:fc:fc:a5:9e:
2c:30:fd:d8:21:0c:01:4f:e7:7e:4e:11:83:c1:9b:
66:c5:3e:48:9f:18:44:ac:7a:04:ce:a7:28:bf:74:
99:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:F9:03:95:C6:8A:C1:49:5E:09:A7:4C:2E:B9:6E:81:C4:33:F6:61
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/A389DDEA687711F1B12C8EA4CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.122.0/24
Signature Algorithm: sha256WithRSAEncryption
a3:80:b6:09:c5:0f:cf:55:f8:d5:c1:97:d8:b7:14:90:ee:b2:
59:17:07:a9:55:4a:05:c5:f3:fe:50:6a:3a:3d:94:93:3b:7c:
01:9c:6c:4c:54:e9:c7:d2:67:3e:94:c1:4a:69:c8:cb:13:67:
a8:6a:93:4a:47:2e:fe:5b:c8:24:a5:13:49:33:9a:8c:eb:1b:
6f:07:37:e6:03:8e:a4:50:66:b9:bf:64:3e:62:fb:64:da:fe:
db:a2:a8:af:a9:0a:b8:a4:fa:3f:33:8c:72:45:2b:95:84:5a:
e6:91:8e:a5:06:73:6c:09:97:fc:7b:ab:91:e7:a7:4a:f6:64:
f9:67:95:60:b7:71:a7:eb:0a:81:f5:f8:1a:06:26:5b:c7:eb:
77:15:ee:83:3e:90:f6:67:9c:ef:75:9d:eb:d2:8b:18:1e:69:
c2:e2:4e:cf:af:a0:1f:4b:64:9b:09:c6:b5:aa:0b:d4:ab:a4:
39:5a:b2:9a:8b:5b:ef:84:33:c1:e5:cd:e7:8a:34:30:55:f6:
82:4b:76:17:00:c0:15:e2:c1:a0:d6:69:9a:af:4a:83:f1:54:
51:64:91:0c:54:dd:ac:c8:73:0b:6a:a7:ac:e2:34:57:41:10:
f1:86:7e:93:64:b5:31:0a:60:f3:d5:7d:59:6d:52:b2:59:93:
67:a4:7a:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 15 20:54:49 2026 by rpki-client