Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/057D27644D1611F18A5E411ECF1D38B0.roa
File: 057D27644D1611F18A5E411ECF1D38B0.roa (raw, json)
Hash identifier: qflk4YPWUR83d9MRbcnHPccks5nVai6MeOdhnP4asLs=
Subject key identifier: AB:5D:9F:16:C8:72:74:9A:91:11:9C:5E:58:8E:D6:80:44:31:49:3E
Certificate issuer: /CN=F36A44EAAR/serialNumber=F85BB49854392228FB8B30DB05D96AC664CE83AB
Certificate serial: 0BCA
Authority key identifier: F8:5B:B4:98:54:39:22:28:FB:8B:30:DB:05:D9:6A:C6:64:CE:83:AB
Authority info access: rsync://rpki.afrinic.net/repository/arin/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/057D27644D1611F18A5E411ECF1D38B0.roa
Signing time: Mon 11 May 2026 08:47:20 +0000
ROA not before: Mon 11 May 2026 08:47:15 +0000
ROA not after: Wed 31 Dec 2036 08:47:15 +0000
asID: 834
IP address blocks: 165.49.105.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.crl
rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.mft
rsync://rpki.afrinic.net/repository/arin/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 15 May 2026 00:26:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3018 (0xbca)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36A44EAAR, serialNumber=F85BB49854392228FB8B30DB05D96AC664CE83AB
Validity
Not Before: May 11 08:47:15 2026 GMT
Not After : Dec 31 08:47:15 2036 GMT
Subject: CN=6a019798-78cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:8e:7d:8e:2d:30:3d:31:71:89:2d:0d:b7:75:
ee:a3:ef:f6:bd:8e:bf:68:0b:1e:73:96:ec:49:e6:
a4:9b:57:5d:39:98:da:e2:2d:71:8f:20:b5:f8:9e:
28:b3:4b:f3:9f:fb:49:22:03:96:48:a1:fc:92:9c:
0a:33:9b:b7:84:a7:f6:f0:dc:34:f6:8f:1f:19:c2:
23:0d:3c:f6:3a:e8:75:c9:3f:7c:89:2f:17:8f:48:
88:af:2a:ce:cb:11:2c:77:f9:6b:92:c6:18:8a:9a:
85:28:6e:e3:3e:b9:e2:27:3e:23:b7:99:6f:69:d8:
96:48:bc:05:dc:68:89:89:29:2a:c4:c9:a9:7b:cb:
f2:58:f0:1e:53:18:5a:c5:73:54:0b:cb:79:c9:c8:
91:3a:42:31:6d:f9:6b:f1:8b:63:3d:e0:7b:0c:c0:
67:1e:30:1e:75:b7:2a:0c:72:60:62:e1:66:f7:90:
ec:a5:df:c6:30:87:2e:ca:66:89:5d:28:03:0f:94:
03:b8:65:9f:08:74:00:4a:37:df:b9:d5:7f:f6:30:
dc:50:5f:e3:6b:07:79:ba:55:5d:0b:32:9e:ce:6a:
04:57:52:04:1e:3e:19:0d:19:f1:b2:dd:17:9c:e7:
96:f5:89:76:ca:9d:4e:35:3f:27:b6:21:58:90:94:
df:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:5D:9F:16:C8:72:74:9A:91:11:9C:5E:58:8E:D6:80:44:31:49:3E
X509v3 Authority Key Identifier:
keyid:F8:5B:B4:98:54:39:22:28:FB:8B:30:DB:05:D9:6A:C6:64:CE:83:AB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/057D27644D1611F18A5E411ECF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
165.49.105.0/24
Signature Algorithm: sha256WithRSAEncryption
71:84:94:1d:09:a7:1b:b4:ee:69:23:59:33:86:97:bd:22:23:
07:24:2e:1a:c6:7e:ab:81:7d:04:38:69:e7:ab:ec:e7:31:6c:
bf:66:fb:38:14:5d:72:76:00:6f:04:ae:7a:fb:6a:b5:3f:77:
12:9c:47:48:95:14:ca:de:25:49:16:5a:68:46:e0:85:17:f6:
07:49:1a:4b:a7:66:bd:50:a8:df:2d:d6:c2:f3:0d:c6:f0:f0:
fb:71:91:07:9c:b4:4e:b4:4b:09:6d:59:ed:d4:3e:c5:8d:ca:
d5:a6:47:88:aa:b1:1a:c0:ba:26:4c:1c:56:a8:b6:96:95:0a:
51:29:0b:da:eb:6a:47:f8:5e:9b:67:38:30:74:ad:db:d5:d1:
c8:55:86:42:fe:24:e0:5d:a0:e6:00:c4:6b:c8:e2:33:58:b1:
49:cd:03:3b:d3:d6:b5:f2:6a:1d:4f:1c:41:e5:84:15:51:f0:
af:e6:e2:9f:14:2e:a5:4e:58:78:32:f0:83:e4:b8:33:6f:a9:
b6:2e:38:a1:fc:4a:93:68:28:a5:86:65:b5:7e:a4:55:39:01:
59:0a:8c:0a:d9:d1:41:57:00:f5:36:87:64:c2:c2:a7:fe:60:
05:57:08:ec:06:fb:95:e7:92:bf:48:1d:a4:f9:45:8d:27:f7:
2e:5f:fc:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 14:17:26 2026 by rpki-client