Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/FFDAFE081C5011F18E31A1E0DAE4EC9C.roa
File: FFDAFE081C5011F18E31A1E0DAE4EC9C.roa (raw, json)
Hash identifier: kkEo5THVUXlCK20wXqaFXJWj6TSeImIZrGfwhuXenQ8=
Subject key identifier: DC:F2:04:10:D5:35:0A:CC:85:EB:C5:2E:0D:A3:2D:09:A8:7C:7A:35
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 1E68
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/FFDAFE081C5011F18E31A1E0DAE4EC9C.roa
Signing time: Tue 10 Mar 2026 07:16:05 +0000
ROA not before: Tue 10 Mar 2026 07:16:00 +0000
ROA not after: Fri 10 Mar 2028 07:16:00 +0000
asID: 29802
IP address blocks: 154.16.202.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 12 Mar 2026 16:23:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7784 (0x1e68)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF, serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Mar 10 07:16:00 2026 GMT
Not After : Mar 10 07:16:00 2028 GMT
Subject: CN=69afc534-58f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:1a:52:e0:00:e0:5a:46:a3:7e:62:10:27:47:
c7:cf:f6:3f:84:14:b5:7b:31:3d:a2:9c:1e:3c:d9:
63:e9:57:a2:7f:4a:8d:0f:93:89:3a:62:7b:18:7c:
f4:c8:94:5e:e4:70:d9:ff:07:c4:ab:07:f0:a3:98:
a8:7c:ea:4f:e5:0e:13:f2:20:a7:75:45:88:f5:b1:
a1:d8:a7:29:d4:3f:43:dd:ac:0a:ef:df:ce:91:04:
a4:39:9c:a8:f9:6f:e8:9e:27:15:76:9f:73:f7:60:
77:cc:cf:a2:ea:aa:a3:a5:58:39:b4:78:0d:1b:26:
04:2a:df:bd:0b:74:7d:9f:50:68:07:c1:d7:ea:60:
f8:a8:ec:28:82:28:0d:ad:47:4f:90:de:0c:8e:e6:
2d:30:02:70:7a:64:79:96:e4:c0:db:bc:bc:d8:a1:
45:0b:7c:92:5f:f4:67:59:c6:dc:d0:e0:ba:60:1c:
15:1c:9c:0f:9d:f4:35:c0:9d:5c:2e:e7:27:aa:ef:
b7:9e:29:69:0f:3e:f8:d0:8f:7a:28:38:a3:12:88:
d2:47:58:48:5d:40:17:c8:55:dc:36:45:b5:f9:a5:
53:75:1c:2d:57:c5:28:86:5b:f3:05:e1:e8:d9:59:
46:a5:28:9f:cc:3b:61:fe:b5:99:61:49:99:a2:e6:
5e:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:F2:04:10:D5:35:0A:CC:85:EB:C5:2E:0D:A3:2D:09:A8:7C:7A:35
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/FFDAFE081C5011F18E31A1E0DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.202.0/24
Signature Algorithm: sha256WithRSAEncryption
60:5f:82:d2:cf:11:fa:1e:c3:df:fc:2a:14:89:f8:9a:8c:a2:
73:b1:05:0f:1a:da:14:c1:b6:b5:a3:b4:0b:1f:7e:4a:1e:6f:
6e:13:41:4e:aa:4b:bf:2f:b2:e5:45:dd:cc:d3:6f:ac:05:b7:
3f:85:c2:95:da:6a:71:36:b0:79:e2:2c:1d:4e:6c:46:c2:56:
1b:ec:9d:18:29:4d:6d:b9:5c:e9:f8:fd:e1:21:05:ea:23:ec:
26:14:11:dd:1f:15:5d:34:d7:f0:df:cb:a2:33:d2:d6:65:66:
62:35:9d:42:46:1f:35:38:a2:75:39:4b:e7:da:51:d4:ef:13:
22:b9:bb:44:13:73:79:64:6b:f9:9e:4a:d3:95:64:81:0f:3d:
0b:81:0a:83:d3:39:b4:33:cb:63:db:19:68:d0:c1:fb:f7:28:
f7:b1:91:9f:88:e2:8e:48:9f:4b:23:de:bb:d1:5c:73:b9:7d:
5e:ad:3a:dc:08:ad:f4:7f:d0:28:be:c2:13:55:94:18:01:94:
e7:e8:d9:44:23:5b:09:d5:a9:73:21:10:65:81:55:44:8a:bc:
df:f3:08:fd:d7:89:10:80:b3:3a:e9:0c:40:9e:d6:cb:78:24:
1b:25:39:40:52:c4:89:43:fe:93:66:07:b2:3d:a1:27:fc:cf:
ab:a9:6a:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 10 23:49:50 2026 by rpki-client