Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/FF070AF867B411F19676CD07CF1D38B0.roa
File: FF070AF867B411F19676CD07CF1D38B0.roa (raw, json)
Hash identifier: DmRxdnwM2Y0krZnxjiIwzJaFLMCBUfz3S3nFCxWYCYA=
Subject key identifier: B1:0D:C1:B0:40:CF:A9:C9:22:C0:BD:C0:08:03:3D:5E:D0:88:6D:3D
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 1FDA
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/FF070AF867B411F19676CD07CF1D38B0.roa
Signing time: Sun 14 Jun 2026 05:50:50 +0000
ROA not before: Sun 14 Jun 2026 05:50:45 +0000
ROA not after: Wed 14 Jun 2028 05:50:45 +0000
asID: 26548
IP address blocks: 154.16.7.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 16 Jun 2026 00:07:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8154 (0x1fda)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF, serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Jun 14 05:50:45 2026 GMT
Not After : Jun 14 05:50:45 2028 GMT
Subject: CN=6a2e413a-6ff5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:24:65:96:a4:f2:4f:67:92:9f:b3:67:88:5a:
76:92:7a:59:d2:d6:d2:fe:7d:0e:59:83:96:cd:25:
36:28:c0:f1:84:95:f7:e8:10:da:13:50:7a:d7:2c:
1b:ce:1c:cf:28:66:75:7d:f7:5e:c8:08:6f:f7:04:
40:85:f6:90:76:50:7a:b0:4d:f6:46:eb:22:a8:fc:
a1:a5:e9:fb:a4:9f:c9:04:9f:e6:a3:95:f9:98:24:
0b:52:a7:db:85:02:99:f6:1c:9f:7b:21:5d:34:0c:
ed:9b:c9:e8:b5:bf:78:52:c2:19:48:e5:e7:5a:e2:
c5:20:92:6b:0d:21:37:19:8a:58:05:c7:90:73:b1:
ca:df:4d:be:c7:0b:27:c7:0e:39:f9:95:f2:2b:11:
c5:5c:d7:1b:4e:51:68:18:59:bd:c9:1e:b4:90:64:
d5:81:05:fd:4c:39:fc:91:06:da:fe:89:de:60:1e:
c6:e3:94:40:0c:4d:64:6d:06:00:80:f2:6c:ec:e4:
b9:e8:b3:31:ee:74:23:ef:c4:84:20:d4:be:1e:b9:
d5:a4:81:0b:c8:04:63:79:48:d1:05:fb:45:b5:91:
47:16:73:92:bb:c4:59:d6:1e:4f:9f:8d:26:9d:b3:
9f:8a:dd:59:c3:b8:b0:a7:f6:9b:62:4b:a7:13:4e:
99:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:0D:C1:B0:40:CF:A9:C9:22:C0:BD:C0:08:03:3D:5E:D0:88:6D:3D
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/FF070AF867B411F19676CD07CF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.7.0/24
Signature Algorithm: sha256WithRSAEncryption
d1:d1:af:45:21:b6:af:45:cf:8e:00:ba:9c:86:55:b5:92:44:
bc:71:33:d6:67:17:1c:43:54:48:fb:0a:06:78:35:2a:ba:2e:
a7:e4:b8:19:a1:80:7f:45:57:ac:08:1a:54:bd:68:d3:88:88:
01:1d:fa:5b:2d:55:e4:89:06:b8:ec:89:8a:52:3a:34:bd:4c:
f8:49:b3:7c:94:9d:19:2d:66:41:83:b2:eb:ae:4f:24:71:71:
5e:ca:60:da:dd:3a:2c:4b:2b:8e:3e:04:40:dd:34:75:75:a6:
69:1a:64:47:4f:82:8a:6a:8f:d0:ef:75:22:f4:b6:7a:5e:79:
0e:2b:fb:05:04:f4:2f:fc:1c:aa:b8:03:1f:cd:8e:a0:73:c8:
02:fb:7a:97:d4:3b:ac:3d:b0:51:93:52:86:ce:0d:04:9e:d5:
56:89:ba:ee:f6:4b:40:db:97:77:95:fb:d6:c1:8c:b7:92:98:
27:45:25:cc:09:ad:13:20:f8:1f:0e:3d:54:f2:5f:74:16:c9:
c7:fe:6e:28:e9:e5:61:d9:7a:91:12:7e:d3:50:5c:07:05:68:
4e:ee:13:1d:b8:61:b2:e5:f6:64:08:d6:76:9a:cb:d9:95:51:
e8:ce:97:9e:c8:10:98:1f:6a:99:7c:f4:20:37:2f:df:ca:2d:
21:a0:57:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 19:12:44 2026 by rpki-client