Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/E1D757661C5111F19F975FE6DAE4EC9C.roa
File: E1D757661C5111F19F975FE6DAE4EC9C.roa (raw, json)
Hash identifier: yIkKkTGiz/AkbItdmgZLIz9Ceb1peSCcyivDnNBxDL8=
Subject key identifier: 35:E1:BB:E7:F2:FA:4A:1A:32:AC:C5:8E:48:54:38:E1:89:C6:F2:CA
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 1E71
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/E1D757661C5111F19F975FE6DAE4EC9C.roa
Signing time: Tue 10 Mar 2026 07:22:24 +0000
ROA not before: Tue 10 Mar 2026 07:22:19 +0000
ROA not after: Fri 10 Mar 2028 07:22:19 +0000
asID: 29802
IP address blocks: 154.127.57.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 12 Mar 2026 16:23:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7793 (0x1e71)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF, serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Mar 10 07:22:19 2026 GMT
Not After : Mar 10 07:22:19 2028 GMT
Subject: CN=69afc6b0-6745
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:d2:95:d2:6d:41:c0:d8:15:44:81:d4:95:96:
21:de:a9:05:46:fa:2c:27:40:67:70:e0:81:c0:d7:
5a:22:8e:4e:f6:98:29:58:13:c6:b3:38:fb:84:b8:
13:86:67:6a:65:04:84:8e:87:21:14:1c:01:41:12:
32:31:92:e5:36:30:29:ab:06:28:67:c0:37:cb:34:
9e:52:ad:ed:c3:89:9c:be:dd:a6:a2:54:de:01:af:
2f:f7:4c:ae:b7:ce:9f:cc:e2:75:79:2d:ab:60:01:
1e:eb:f9:4b:da:49:15:f2:32:fb:b2:54:69:a0:7c:
bd:f1:1a:f0:a7:6a:d5:74:52:16:8f:97:d6:c4:1f:
9e:71:fb:da:99:ca:d5:dd:00:10:a7:a3:99:18:dc:
08:bc:58:a9:29:6f:a0:7d:18:80:a7:a0:07:f3:fd:
8b:d7:59:69:6e:e8:f8:08:f3:c6:8e:93:35:86:56:
6b:dc:a0:00:6b:67:ec:83:f3:3e:4e:20:29:6c:ba:
30:cb:63:a8:12:a1:7b:58:e7:80:de:45:98:4c:ca:
05:2c:6b:81:91:d3:36:66:2b:83:76:0b:8f:c0:02:
7d:77:ff:a4:72:f3:0d:a1:f6:62:30:89:fd:0c:b1:
ff:92:5a:c5:09:66:29:29:e9:02:c0:85:27:41:9b:
fb:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:E1:BB:E7:F2:FA:4A:1A:32:AC:C5:8E:48:54:38:E1:89:C6:F2:CA
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/E1D757661C5111F19F975FE6DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.127.57.0/24
Signature Algorithm: sha256WithRSAEncryption
ce:e6:d9:58:f4:f8:58:56:49:30:2c:b5:b6:11:4a:78:b7:9c:
82:ec:84:89:06:ea:5f:6e:43:92:c0:b7:24:41:a4:a1:f4:28:
f8:17:07:52:a0:86:c5:09:18:8b:b7:43:b1:15:ca:dc:76:7e:
33:21:f3:e1:d9:cf:b2:25:be:03:fd:16:13:88:cb:04:f0:98:
5f:4b:33:61:9f:ac:bf:ee:38:bb:8e:5a:1c:42:48:47:9a:df:
82:6e:54:ca:51:9e:f9:82:47:49:6f:45:7f:d5:e3:5a:81:16:
ee:c2:cf:83:a7:e2:f8:01:ea:9e:9d:5f:f1:63:f8:d1:6a:cd:
08:f6:c4:0e:1c:d9:9f:3d:ce:b1:b7:09:bd:cc:71:28:1f:20:
61:fa:a8:31:ec:16:d6:38:1a:f1:5f:93:f1:a3:61:c2:3a:8c:
15:53:ce:55:a4:96:17:69:e1:dc:4b:e3:8d:ec:cf:f2:ad:14:
a1:4d:45:4b:55:08:a8:00:4f:94:07:fb:89:2f:f5:77:e3:2b:
4c:8f:0a:20:8c:ad:5d:cb:1f:06:c1:72:e0:46:90:cc:e8:1e:
27:f4:98:5c:ac:fd:a6:8a:ba:9c:05:b6:8b:bf:80:c4:46:56:
7d:44:4e:7e:1b:4f:3a:76:d4:4b:f7:3c:d4:d6:0a:f9:26:8f:
65:03:89:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 10 23:49:00 2026 by rpki-client