Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36722D4/229903BA6BC011EF8E0EC970762E951A/2C40B2D6283A11F19ED36BDADAE4EC9C.roa
File: 2C40B2D6283A11F19ED36BDADAE4EC9C.roa (raw, json)
Hash identifier: RO1PZMcn+2BdP26YxmqjVpw98emd74IGxt47U3YTrHY=
Subject key identifier: C7:4B:D2:1E:E9:3F:8E:C0:23:82:D4:BC:0A:F0:FC:02:45:F1:10:6D
Certificate issuer: /CN=F36722D4AR/serialNumber=78D1CD779C799FA64D6E90FAFC7B86E81BC2FC1A
Certificate serial: 0249
Authority key identifier: 78:D1:CD:77:9C:79:9F:A6:4D:6E:90:FA:FC:7B:86:E8:1B:C2:FC:1A
Authority info access: rsync://rpki.afrinic.net/repository/arin/eNHNd5x5n6ZNbpD6_HuG6BvC_Bo.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36722D4/229903BA6BC011EF8E0EC970762E951A/2C40B2D6283A11F19ED36BDADAE4EC9C.roa
Signing time: Wed 25 Mar 2026 11:02:55 +0000
ROA not before: Wed 25 Mar 2026 11:02:49 +0000
ROA not after: Thu 25 Mar 2027 11:02:49 +0000
asID: 328157
IP address blocks: 160.19.196.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36722D4/229903BA6BC011EF8E0EC970762E951A/eNHNd5x5n6ZNbpD6_HuG6BvC_Bo.crl
rsync://rpki.afrinic.net/repository/member_repository/F36722D4/229903BA6BC011EF8E0EC970762E951A/eNHNd5x5n6ZNbpD6_HuG6BvC_Bo.mft
rsync://rpki.afrinic.net/repository/arin/eNHNd5x5n6ZNbpD6_HuG6BvC_Bo.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 28 Mar 2026 00:26:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 585 (0x249)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36722D4AR, serialNumber=78D1CD779C799FA64D6E90FAFC7B86E81BC2FC1A
Validity
Not Before: Mar 25 11:02:49 2026 GMT
Not After : Mar 25 11:02:49 2027 GMT
Subject: CN=69c3c0de-8c11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:55:dd:af:be:48:64:51:99:92:76:36:b3:e2:
f4:ce:07:0c:37:1c:99:36:eb:09:11:57:c3:e6:c0:
a5:a3:f9:81:01:03:63:b6:34:5d:7e:95:ae:13:81:
b7:8f:1a:30:a1:80:b9:6e:e9:65:f7:cc:d2:01:d6:
7b:11:a7:c4:85:1e:a2:2a:c5:6a:60:54:54:99:7c:
e9:c0:eb:46:bb:a1:56:ec:d3:33:c6:6b:c8:c5:ee:
63:15:be:50:72:b6:e3:51:c2:af:ef:6f:23:93:7b:
ca:89:c7:70:71:56:72:d4:d1:91:0c:0e:8d:3a:bc:
6e:91:32:b6:ec:33:f2:58:54:ed:b1:a1:35:88:96:
62:88:16:62:aa:b2:80:f2:34:8d:79:bd:b2:cc:90:
7e:69:38:03:b4:35:b9:07:2c:e4:58:5e:82:1a:e9:
5e:a1:9c:f4:0a:d4:ab:03:be:de:81:8d:bc:20:0e:
d4:60:40:3f:bf:d2:4f:f0:26:29:41:43:ff:0e:e6:
ff:bb:84:d5:48:5e:00:a1:0f:65:9b:96:d6:57:59:
68:d2:71:a5:f0:6c:87:26:20:7d:63:35:4d:14:14:
bb:41:1e:78:86:b6:35:e0:1f:b8:5d:6e:e9:88:5d:
d6:92:d6:e9:00:28:92:2c:6f:50:4a:4f:59:d5:12:
0e:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:4B:D2:1E:E9:3F:8E:C0:23:82:D4:BC:0A:F0:FC:02:45:F1:10:6D
X509v3 Authority Key Identifier:
keyid:78:D1:CD:77:9C:79:9F:A6:4D:6E:90:FA:FC:7B:86:E8:1B:C2:FC:1A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36722D4/229903BA6BC011EF8E0EC970762E951A/eNHNd5x5n6ZNbpD6_HuG6BvC_Bo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eNHNd5x5n6ZNbpD6_HuG6BvC_Bo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36722D4/229903BA6BC011EF8E0EC970762E951A/2C40B2D6283A11F19ED36BDADAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.19.196.0/22
Signature Algorithm: sha256WithRSAEncryption
94:cf:ec:de:49:c2:43:51:e0:13:b0:b8:c8:e9:ac:91:28:4f:
e8:30:19:6a:29:48:34:7b:10:6b:87:b8:d1:12:0e:8c:27:e5:
a7:c8:8d:40:40:af:45:0b:33:7a:43:28:0f:e8:5c:02:bb:b8:
7b:d0:85:00:f3:2a:3f:b1:53:52:1d:4c:52:d5:a2:38:d9:69:
f9:49:7c:40:aa:c2:f5:b0:06:6a:77:97:66:d7:f2:95:22:da:
e4:30:40:77:e2:58:41:19:a0:65:26:dc:c0:8c:66:9e:32:a6:
6a:54:10:e5:93:97:6a:d9:76:9a:32:35:db:21:43:d2:9f:2d:
70:ea:a3:78:bc:2b:0e:c0:e3:31:75:7d:9e:64:fc:64:9c:c5:
5f:46:e9:57:75:31:88:0a:e5:b0:08:50:3a:82:83:c2:41:f6:
44:cd:52:90:51:58:e1:6c:68:b6:c3:ec:c0:76:c3:d6:2c:36:
ed:da:49:0a:62:a8:52:80:37:4f:94:76:5b:79:92:22:10:ad:
01:fb:39:1a:c0:8c:11:aa:00:d5:75:07:61:5e:61:64:c7:e0:
b5:52:62:43:39:83:d2:ba:b3:b0:29:59:38:6c:90:ec:83:2b:
8c:3d:df:6e:3b:b1:ad:18:30:ce:91:70:02:4a:db:03:50:6f:
33:52:7c:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 27 01:52:59 2026 by rpki-client