Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/DF895AF661C811F18C467402CF1D38B0.roa
File: DF895AF661C811F18C467402CF1D38B0.roa (raw, json)
Hash identifier: qQeHvy6p8hNAANO+TcTjV6lwLYOj83olGf7P8MBqFLY=
Subject key identifier: 7A:5D:12:BD:58:70:6D:FD:7A:7F:CF:16:76:36:78:28:B4:87:9F:78
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 1FB0
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/DF895AF661C811F18C467402CF1D38B0.roa
Signing time: Sat 06 Jun 2026 16:58:00 +0000
ROA not before: Sat 06 Jun 2026 16:57:55 +0000
ROA not after: Tue 06 Jun 2028 16:57:55 +0000
asID: 200221
IP address blocks: 154.16.52.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 09 Jun 2026 00:07:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8112 (0x1fb0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF, serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Jun 6 16:57:55 2026 GMT
Not After : Jun 6 16:57:55 2028 GMT
Subject: CN=6a245198-5c37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:71:63:2b:b6:f9:0b:88:81:6e:e0:76:05:5d:
33:f3:19:74:59:50:4c:8e:34:ef:65:a7:3b:3f:63:
94:7e:f3:5a:d2:c2:16:e7:6a:ed:ba:ca:fa:7c:46:
d9:dc:95:b2:f9:9b:88:c3:f3:22:7f:b8:3e:b3:5f:
54:f3:17:c8:22:fb:eb:f8:c6:30:b4:26:1c:f7:77:
05:54:e7:87:ff:4b:f3:c6:1a:19:d3:43:da:d0:1f:
aa:b8:dc:51:6e:4e:3c:ce:46:37:74:dc:74:10:4a:
76:ae:8c:7c:55:32:3e:08:80:a9:68:4e:91:6b:71:
f1:bc:63:17:57:df:13:e4:5e:5d:b3:97:02:e0:cb:
8a:82:21:7b:96:c3:85:df:a4:be:2f:58:f5:54:3c:
08:f2:c0:fe:64:43:d9:4a:f5:94:58:47:04:72:d4:
72:91:08:c5:94:57:7f:34:f1:90:46:98:0d:39:20:
22:48:3d:a0:6f:cd:44:33:9b:b7:00:10:4b:c5:d6:
2b:37:36:de:09:07:7a:4b:0a:d7:bc:7c:f0:69:38:
2d:e2:dd:e8:20:97:b9:26:c4:ba:7c:c7:93:e2:0a:
30:d3:8b:d9:af:55:84:20:f6:05:6f:7a:de:f0:35:
39:29:66:ba:fb:54:20:53:54:34:e2:e0:19:a4:29:
2b:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:5D:12:BD:58:70:6D:FD:7A:7F:CF:16:76:36:78:28:B4:87:9F:78
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/DF895AF661C811F18C467402CF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.52.0/24
Signature Algorithm: sha256WithRSAEncryption
93:93:7f:fd:35:7b:a8:47:e6:b7:94:4b:dc:d7:e2:b8:a0:6c:
cb:38:19:f8:d7:c1:b4:8c:ae:4e:9e:27:f8:28:d2:49:ec:46:
b0:93:09:68:a9:f1:17:61:5d:fd:d0:32:0b:5f:ac:f4:c8:4e:
97:d4:30:b6:a3:fa:4b:e9:64:a5:86:4a:da:e8:a0:05:f0:35:
33:5f:72:21:95:6e:1b:f9:b4:b1:09:49:7a:76:dc:38:39:ac:
ad:fd:4f:71:f5:80:b4:30:7c:39:22:f1:36:2f:b5:34:95:0e:
e3:e8:14:83:21:d8:5c:cc:24:63:c4:5e:97:7e:8e:8f:66:c7:
2f:86:38:ea:5c:20:a7:46:c3:72:00:61:5b:13:e0:39:c3:dc:
cc:38:ba:e7:c8:96:21:6f:fe:6d:ae:ac:ca:16:5c:78:a0:d0:
2b:6a:e3:1a:c3:e8:63:3e:a1:98:66:90:c9:a4:3d:5f:68:51:
28:de:d3:78:e8:34:84:6d:29:1e:bc:36:84:b6:40:0e:e5:dc:
9b:01:08:24:b4:b2:14:ed:1d:f6:07:6b:44:d9:b7:c3:f3:90:
eb:6a:38:a8:69:0b:a1:95:ef:3b:17:60:7f:2b:af:83:77:50:
d7:9d:1f:93:18:6b:b0:84:d8:a8:56:94:34:f1:c1:1f:ef:d6:
5d:e6:95:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 7 09:59:52 2026 by rpki-client