Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/7E98B248154511F1847FF0C7DAE4EC9C.roa
File: 7E98B248154511F1847FF0C7DAE4EC9C.roa (raw, json)
Hash identifier: QsQKfNzG4vShoacahp7D9x3oucDb2PxTtaC4XBppJEY=
Subject key identifier: 0C:3F:1E:FB:D6:0B:D2:60:55:1E:14:21:2D:6F:CA:80:2F:92:4E:FF
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 1E47
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/7E98B248154511F1847FF0C7DAE4EC9C.roa
Signing time: Sun 01 Mar 2026 08:06:05 +0000
ROA not before: Sun 01 Mar 2026 08:06:01 +0000
ROA not after: Wed 01 Mar 2028 08:06:01 +0000
asID: 834
IP address blocks: 154.16.62.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 03 Mar 2026 00:07:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7751 (0x1e47)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF, serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Mar 1 08:06:01 2026 GMT
Not After : Mar 1 08:06:01 2028 GMT
Subject: CN=69a3f36c-25ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:f1:6a:c0:dd:66:91:98:5c:aa:bb:b5:70:79:
27:9f:2f:66:be:d1:14:a7:ba:87:93:cf:64:93:88:
ce:e3:5f:2a:54:74:57:ca:40:c0:0a:fb:03:1e:7e:
56:ed:f3:8e:bc:1f:e4:83:f3:88:1a:57:3c:df:db:
22:2f:53:49:6d:44:46:f0:47:07:d7:8c:d8:ca:6b:
1a:b7:a8:12:0b:ac:8c:10:9f:8a:62:ee:fd:ee:8f:
c7:95:35:a5:45:be:d0:c9:cc:0a:5d:ad:d6:40:26:
bd:4e:b4:5f:ea:0f:d8:c4:28:b3:fe:a1:5c:e1:84:
e2:24:e0:cf:9b:7a:d6:63:ac:22:bd:8c:ef:76:31:
7d:3f:33:f4:e5:58:0c:7b:d3:c8:9e:16:f7:6c:3e:
38:89:d3:51:f4:82:f7:d6:17:57:56:58:20:51:fe:
e0:82:31:2d:8a:f8:7c:9f:23:8f:30:81:4b:f1:12:
e9:f5:1a:2d:c2:db:85:1b:44:2c:29:91:cf:7e:99:
11:f2:42:95:72:ff:9c:a5:4e:bd:7d:d2:29:de:a2:
30:76:aa:ed:6f:0b:9a:74:52:e0:62:8b:d5:86:6e:
22:af:b2:40:bc:43:bd:d8:56:7b:26:7c:d7:72:7d:
a5:f4:b7:48:27:3d:69:37:38:bf:e7:98:29:6a:e4:
a7:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:3F:1E:FB:D6:0B:D2:60:55:1E:14:21:2D:6F:CA:80:2F:92:4E:FF
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/7E98B248154511F1847FF0C7DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.62.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:35:c4:2d:18:06:1b:48:39:84:f2:7c:67:8d:d3:8b:ea:16:
84:93:3d:78:e8:f3:8d:3c:d8:e8:d6:2e:40:0e:af:82:de:37:
6a:ca:93:54:9c:19:37:fa:d4:76:3f:4d:89:4d:1b:b8:84:bf:
ed:44:a8:1d:e1:fe:59:78:84:7b:50:87:52:67:a2:ec:71:d6:
e7:a6:e6:81:00:53:3c:27:a7:29:a1:18:6f:ef:9e:2d:64:91:
50:0b:42:7a:f0:1d:94:97:e4:58:6f:35:57:36:52:99:f6:f3:
ff:71:45:68:6e:8e:00:37:22:ed:96:f7:01:21:f6:71:dd:fa:
36:de:83:f2:5e:ff:1a:cf:e3:a3:7b:1e:1f:77:98:2c:e4:ad:
30:9e:78:04:bb:90:bd:1e:da:01:b5:f3:62:81:e0:b2:a4:26:
66:74:41:1f:98:18:14:0a:ba:56:ed:f1:ad:6a:de:a3:be:d1:
5c:1b:ca:78:14:25:78:ea:11:54:dd:36:5c:fa:74:62:7a:49:
34:e0:89:12:fb:e5:ab:8f:b6:9a:31:0a:1b:96:9e:a0:51:74:
b3:4a:aa:08:5b:29:86:2e:42:20:34:bd:bf:31:6f:56:00:2f:
92:dd:e2:08:10:f9:86:65:e0:8f:7b:20:fa:8f:29:a7:45:9b:
7c:5f:1d:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 18:56:31 2026 by rpki-client