Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/D1D837BA60E711F1B79B1BADCE1D38B0.roa
File: D1D837BA60E711F1B79B1BADCE1D38B0.roa (raw, json)
Hash identifier: biA0fwNMdgS460xu+/5etH+xxsPFBwzgTvmj4MABiVM=
Subject key identifier: 77:A7:87:AD:C6:EC:88:F6:E3:D0:CC:8E:6A:DC:2C:79:B1:CC:F9:20
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 1FA4
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/D1D837BA60E711F1B79B1BADCE1D38B0.roa
Signing time: Fri 05 Jun 2026 14:07:00 +0000
ROA not before: Fri 05 Jun 2026 14:06:55 +0000
ROA not after: Sat 10 Jun 2028 14:06:55 +0000
asID: 834
IP address blocks: 154.16.184.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 08 Jun 2026 00:08:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8100 (0x1fa4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF, serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Jun 5 14:06:55 2026 GMT
Not After : Jun 10 14:06:55 2028 GMT
Subject: CN=6a22d804-05d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:3a:d2:fd:f7:07:fe:73:74:68:51:4b:87:03:
28:b2:13:fd:56:4c:93:8b:cd:9e:15:93:75:fe:63:
ef:72:7a:6f:a7:b7:02:b2:09:64:4b:8a:f1:46:16:
f3:b5:c2:d3:74:2e:c8:ec:d0:21:e8:14:4a:54:80:
44:aa:7b:f5:4d:fc:7f:c3:5f:ee:61:0b:2d:6b:d1:
90:be:6a:84:fb:a4:62:fc:39:e4:04:46:0f:71:b9:
27:e1:03:f2:34:bd:fd:66:7e:76:97:bc:07:3e:de:
e8:d2:6c:3e:9e:99:6c:bb:03:e4:0b:e4:f6:76:e7:
d6:6e:90:61:43:0f:cf:ce:04:49:9c:c6:5f:33:16:
cb:c2:3b:24:8b:32:27:e1:a6:78:ed:5c:e0:c5:49:
bc:49:f4:24:c7:4f:3f:10:f9:71:c1:df:56:8e:7d:
cf:6f:11:a3:c9:f1:c7:b8:4e:29:b4:d3:11:ef:2e:
99:31:66:fc:59:c3:f9:ac:5a:60:8a:4e:48:1e:40:
0d:ca:66:8e:b9:15:22:24:2a:38:d8:f4:0a:30:27:
ea:5b:2e:4b:2f:f8:9e:4f:02:a1:88:aa:cc:b4:6b:
56:43:30:a7:91:0a:df:bb:35:21:bf:16:f3:1d:88:
96:c7:e3:11:1b:e3:16:f5:c0:08:3f:3b:7e:99:ea:
e3:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:A7:87:AD:C6:EC:88:F6:E3:D0:CC:8E:6A:DC:2C:79:B1:CC:F9:20
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/D1D837BA60E711F1B79B1BADCE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.184.0/24
Signature Algorithm: sha256WithRSAEncryption
59:75:cb:75:e2:3c:f1:a9:dd:91:1b:4a:2f:38:98:90:56:56:
6d:75:94:7b:f2:b6:c0:ef:a2:4e:a4:0a:a7:d2:87:36:ba:f7:
b8:f4:52:4e:7f:72:ef:9d:30:35:72:df:13:10:97:3f:ec:b5:
97:07:65:13:d5:f5:0a:69:f3:fa:b4:5b:64:63:a9:0c:44:d9:
10:d1:bc:07:60:02:c8:df:ce:33:a6:2f:3a:de:f9:11:aa:1c:
56:90:a0:f0:06:93:0c:e1:37:84:e3:78:81:f5:9f:dc:f5:63:
5b:49:c4:2b:64:65:83:da:11:46:04:62:97:de:ac:b5:ea:cf:
6b:3b:32:2a:49:ef:12:dd:13:02:2e:94:f3:a2:b9:0c:aa:3d:
e6:41:d1:5b:2b:d1:5c:ee:dc:c8:62:ea:1f:d3:34:54:62:bf:
17:12:16:bb:c6:4e:4d:ab:86:f5:d6:07:8d:a2:b4:d9:d4:0d:
4d:c9:67:19:8a:9c:61:4b:1c:11:51:ca:07:48:0b:2d:8d:09:
8b:db:eb:b9:fc:d8:9c:cf:de:23:34:b2:35:18:9d:48:08:e1:
68:39:70:9a:9e:a1:36:0e:f8:cf:e3:f6:6d:ed:b9:b4:da:a5:
7c:df:2b:6f:7e:7f:58:08:a1:1a:59:75:01:a7:a0:a1:43:c0:
22:25:89:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 6 09:19:22 2026 by rpki-client