Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/A9C6BBF64A3611F1B2707B1DCF1D38B0.roa
File: A9C6BBF64A3611F1B2707B1DCF1D38B0.roa (raw, json)
Hash identifier: JKeNpJCUbAgIRCxPX4ED+t8SSBE4K117Z+v10EwEswM=
Subject key identifier: F0:DB:68:0F:32:7F:99:E1:82:3D:F1:A3:9E:18:A7:D6:D0:DF:91:AB
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 1F20
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/A9C6BBF64A3611F1B2707B1DCF1D38B0.roa
Signing time: Thu 07 May 2026 17:03:27 +0000
ROA not before: Thu 07 May 2026 17:03:22 +0000
ROA not after: Sun 07 May 2028 17:03:22 +0000
asID: 197537
IP address blocks: 154.16.43.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 11 May 2026 00:07:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7968 (0x1f20)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF, serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: May 7 17:03:22 2026 GMT
Not After : May 7 17:03:22 2028 GMT
Subject: CN=69fcc5de-04f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:08:f6:6d:04:04:c6:89:b9:e6:9f:67:aa:35:
25:bb:45:d9:1d:7c:cc:38:71:25:0e:dc:42:a8:dd:
5a:3d:ed:3e:60:6b:60:34:54:58:12:82:e5:01:21:
c5:21:64:78:bd:94:dd:bf:48:0f:22:87:af:3b:5f:
f8:1c:43:a1:f2:9f:62:7e:10:8a:46:83:ea:cb:33:
98:36:70:3f:2a:b0:9d:f3:f3:21:79:25:22:36:99:
b4:3a:84:3f:26:c6:79:91:a4:bc:26:10:51:73:a3:
29:1b:61:73:e3:04:3e:2f:e0:2c:87:fa:23:f4:57:
46:38:97:90:59:17:bd:3b:c5:40:e8:8f:92:09:9c:
db:fb:10:e5:8f:7e:3e:38:44:64:be:99:3f:f3:f6:
83:04:84:33:0f:0a:b5:00:c6:eb:2a:64:9a:0b:0c:
6e:cb:2b:70:ec:3f:fa:ed:73:c0:19:d1:fa:71:97:
79:f4:3d:87:6b:39:a3:8a:b7:4c:fd:32:7a:56:0d:
6f:20:c6:27:b7:62:b6:b0:4f:60:63:20:57:39:7a:
a1:7c:93:52:67:d7:13:3b:02:d4:02:a8:59:84:12:
ca:c2:b3:91:24:4f:16:4b:80:44:d2:35:a9:e1:52:
c7:d2:a4:60:b6:eb:1b:6d:fa:8f:94:3a:17:35:65:
f2:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:DB:68:0F:32:7F:99:E1:82:3D:F1:A3:9E:18:A7:D6:D0:DF:91:AB
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/A9C6BBF64A3611F1B2707B1DCF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.43.0/24
Signature Algorithm: sha256WithRSAEncryption
a9:b7:46:61:98:da:cb:b5:db:9f:96:02:41:69:88:b4:82:0d:
ba:96:31:45:1b:40:58:eb:36:27:69:4d:9e:e5:81:6c:d8:24:
5a:e1:a8:2c:00:80:ac:1f:2c:94:95:f6:c6:55:7e:76:33:c6:
17:65:9b:96:f2:0c:80:20:c5:11:07:f9:e4:48:ab:67:19:03:
11:e7:00:a0:2c:82:1b:27:90:c7:3f:7d:3d:97:c1:f3:72:3a:
b0:20:cb:ee:1d:45:af:e9:58:7e:16:52:1d:35:ba:6d:6e:1a:
3e:4a:c8:ee:0f:1c:88:42:85:08:a9:46:1a:2b:de:d7:fd:aa:
36:ad:90:ca:98:b1:df:fd:c0:25:b7:08:d4:27:72:6f:16:6f:
d8:a0:8e:2f:4a:fa:19:c9:e2:e8:d6:63:f3:40:51:58:bb:0b:
67:43:f6:f2:08:9d:76:e9:44:79:cc:6d:b1:4e:26:59:40:3b:
b9:71:87:40:a8:a2:92:af:08:57:e0:34:db:84:eb:c5:b0:a5:
6c:60:cf:c3:50:5e:ab:7b:85:3c:ef:b9:f9:4a:5b:2c:ca:c2:
6a:77:95:98:71:27:46:e0:50:b2:17:8d:83:b8:26:e9:79:fb:
e8:b8:13:36:a4:9d:08:21:f1:be:86:79:59:65:67:1e:0d:1e:
6c:3d:40:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 9 04:55:26 2026 by rpki-client