Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/1967AAEE4A4911F19EF10A0CCF1D38B0.roa
File: 1967AAEE4A4911F19EF10A0CCF1D38B0.roa (raw, json)
Hash identifier: AlnDmNELj+ffWxavjxOf18P2fjwTVXQwhUleVA9BwEo=
Subject key identifier: BF:AF:14:BA:21:FF:56:CD:B1:76:91:63:52:5B:12:69:97:7D:BB:81
Certificate issuer: /CN=F36A44EAAR/serialNumber=F85BB49854392228FB8B30DB05D96AC664CE83AB
Certificate serial: 0BC1
Authority key identifier: F8:5B:B4:98:54:39:22:28:FB:8B:30:DB:05:D9:6A:C6:64:CE:83:AB
Authority info access: rsync://rpki.afrinic.net/repository/arin/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/1967AAEE4A4911F19EF10A0CCF1D38B0.roa
Signing time: Thu 07 May 2026 19:15:25 +0000
ROA not before: Thu 07 May 2026 19:15:20 +0000
ROA not after: Wed 31 Dec 2036 19:15:20 +0000
asID: 402310
IP address blocks: 165.49.234.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.crl
rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.mft
rsync://rpki.afrinic.net/repository/arin/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 15 May 2026 00:26:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3009 (0xbc1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36A44EAAR, serialNumber=F85BB49854392228FB8B30DB05D96AC664CE83AB
Validity
Not Before: May 7 19:15:20 2026 GMT
Not After : Dec 31 19:15:20 2036 GMT
Subject: CN=69fce4cd-4be8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:a7:e4:e2:b0:2c:a6:91:c6:f9:bc:b0:b2:b7:
90:08:7b:46:6c:c3:26:9b:56:da:19:7c:f3:2a:01:
68:04:15:c0:0c:a5:84:4f:5e:61:ba:88:7c:90:6a:
e3:22:0c:5b:c5:80:3f:05:4b:0d:63:8f:84:25:f3:
c3:fa:38:18:a1:87:71:5e:f4:58:e2:6f:0a:9f:e8:
0f:51:b8:42:b3:73:9d:c7:cb:85:63:cf:97:4f:e1:
73:93:6c:56:89:25:51:5a:28:d9:01:8c:20:32:d2:
66:4b:26:1b:67:9a:9b:dc:2c:f9:58:38:eb:09:d4:
73:f3:c5:5f:95:64:b8:ce:06:b3:31:31:d5:24:97:
26:59:e2:de:e3:83:a0:c7:07:24:f4:8b:3d:bb:c5:
3c:d3:20:fe:30:e9:7d:1c:97:3c:ed:db:a0:4c:a0:
fe:9d:1e:2f:a0:fd:83:c7:5f:57:02:97:62:18:ee:
9d:01:9d:02:6b:49:58:41:b5:d6:45:0b:37:16:99:
9f:f7:2c:e0:0a:31:09:94:8d:7d:55:47:7a:c3:c3:
60:4a:dd:21:73:6f:22:73:ee:a5:5f:59:2a:ec:00:
0a:00:50:f2:33:f1:ca:b3:2c:6e:91:bc:36:f6:1e:
f9:a1:0f:1f:9e:07:a4:94:e3:6c:55:04:88:5c:5b:
e9:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:AF:14:BA:21:FF:56:CD:B1:76:91:63:52:5B:12:69:97:7D:BB:81
X509v3 Authority Key Identifier:
keyid:F8:5B:B4:98:54:39:22:28:FB:8B:30:DB:05:D9:6A:C6:64:CE:83:AB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/1967AAEE4A4911F19EF10A0CCF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
165.49.234.0/24
Signature Algorithm: sha256WithRSAEncryption
87:6a:a9:12:8c:dd:f6:19:a3:64:53:f9:69:c8:a7:f6:f0:a8:
52:ba:df:f9:6d:07:21:bf:95:23:52:70:a3:1f:0c:d8:b0:55:
60:4d:7b:45:4c:f4:45:b5:6b:b0:c1:53:6d:79:97:c2:cf:61:
25:08:e4:58:c3:9a:00:6b:1d:91:3a:79:10:d1:e9:73:94:eb:
d3:48:b1:b4:f3:4d:9a:58:15:ad:02:a1:6e:52:6a:d8:51:34:
e0:e7:61:a9:f1:8c:d8:e8:cf:b3:f8:2b:4f:d1:f2:19:1c:ac:
43:c0:d4:4a:14:71:4a:52:f1:98:dd:40:6e:11:fd:6f:20:3d:
da:5d:b2:2f:af:d7:7a:2a:b6:37:85:9f:b8:2f:36:4a:6e:78:
05:2e:33:a8:e9:51:11:46:88:7b:50:7a:da:11:60:32:83:33:
0b:fd:06:2c:8c:1e:11:e8:d4:3d:b5:6b:57:85:9f:19:9e:40:
f3:ee:3f:b0:02:a9:91:30:86:ed:a4:3c:a1:78:ab:fc:00:ae:
1e:7a:ae:e8:c3:da:8c:bb:2b:5d:c6:d4:64:69:11:a9:c3:13:
ff:2b:27:7c:69:7a:a7:6b:2d:23:9d:0d:5e:e4:a2:d5:90:bb:
8c:10:69:db:f5:c8:c3:79:db:a1:86:2b:d6:d1:f4:3c:00:11:
c9:ac:95:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 13:02:30 2026 by rpki-client