Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/77F45E94493711F18E834F14CF1D38B0.roa
File: 77F45E94493711F18E834F14CF1D38B0.roa (raw, json)
Hash identifier: Wtvblkt8U808YU+zzon18+sjN/iHr3hhHESuZZl1E8E=
Subject key identifier: F4:4E:7A:E8:98:85:B6:82:15:3E:1B:18:2B:AD:C7:77:AB:3E:46:FE
Certificate issuer: /CN=F36A44EAAR/serialNumber=F85BB49854392228FB8B30DB05D96AC664CE83AB
Certificate serial: 0BBB
Authority key identifier: F8:5B:B4:98:54:39:22:28:FB:8B:30:DB:05:D9:6A:C6:64:CE:83:AB
Authority info access: rsync://rpki.afrinic.net/repository/arin/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/77F45E94493711F18E834F14CF1D38B0.roa
Signing time: Wed 06 May 2026 10:36:41 +0000
ROA not before: Wed 06 May 2026 10:36:37 +0000
ROA not after: Wed 31 Dec 2036 10:36:37 +0000
asID: 402214
IP address blocks: 165.49.75.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.crl
rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.mft
rsync://rpki.afrinic.net/repository/arin/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 15 May 2026 00:26:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3003 (0xbbb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36A44EAAR, serialNumber=F85BB49854392228FB8B30DB05D96AC664CE83AB
Validity
Not Before: May 6 10:36:37 2026 GMT
Not After : Dec 31 10:36:37 2036 GMT
Subject: CN=69fb19b9-3229
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:fd:a2:bf:a8:cd:2b:05:35:5d:f6:03:22:c3:
59:1d:6a:f1:a0:8d:34:84:33:46:a1:f6:36:58:8a:
43:9e:b2:d9:ad:e8:61:ce:43:64:99:14:09:3b:9b:
11:93:a7:c4:03:37:a4:bb:1a:c7:5f:ad:f4:87:06:
e9:18:09:f4:24:f1:cd:55:d9:c2:94:4e:b8:1f:8c:
26:cb:4b:cb:0b:b2:bc:10:83:64:f9:a8:d4:1e:22:
84:84:17:f5:bc:de:b0:46:48:9a:f4:4e:2a:e6:58:
73:ca:f6:df:6f:f0:2f:83:4c:9c:43:99:bc:6f:ba:
38:5e:c7:01:8d:b2:7b:ae:63:94:7a:fa:bf:b9:59:
1c:f0:10:05:2a:43:e0:77:17:5d:49:87:a3:df:9f:
67:ad:a7:c6:58:1f:8b:0d:3d:38:69:29:c2:c8:fa:
eb:07:f4:c9:24:6d:cc:a2:12:0e:af:0c:3e:17:1f:
42:e6:ca:37:97:38:66:95:8d:f9:60:64:ec:73:16:
83:06:c1:51:20:a8:3a:18:fd:cc:90:c3:fa:19:e4:
35:f3:c6:b4:3d:e9:93:1f:b5:c0:b5:ae:59:02:69:
da:db:e1:9a:84:42:6f:fd:3a:f4:eb:5d:f0:c6:69:
2c:23:02:d5:0a:55:72:b1:8b:c9:98:fa:31:2b:b4:
06:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:4E:7A:E8:98:85:B6:82:15:3E:1B:18:2B:AD:C7:77:AB:3E:46:FE
X509v3 Authority Key Identifier:
keyid:F8:5B:B4:98:54:39:22:28:FB:8B:30:DB:05:D9:6A:C6:64:CE:83:AB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/77F45E94493711F18E834F14CF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
165.49.75.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:86:74:36:bf:84:b5:5a:85:19:bb:15:3b:4d:bc:62:6e:e0:
19:a7:86:85:60:2a:50:99:4c:db:46:35:f9:3f:60:c1:09:e7:
8d:36:90:74:eb:02:dd:07:5a:98:61:0d:53:4d:fc:98:c6:ba:
62:92:c4:d2:86:67:cd:65:a3:45:80:6e:25:37:16:9f:87:28:
51:e9:da:74:3b:d3:3b:5a:93:69:02:0c:f3:37:e6:31:87:a5:
7a:2d:c1:f1:cd:a9:c4:69:b3:ce:4b:b1:57:ab:8c:32:a7:ca:
2f:ee:2d:3f:49:51:5d:6e:c2:62:73:cc:9a:ac:26:37:16:da:
43:5b:77:06:51:cb:12:e7:6b:15:cd:77:c7:32:ed:ec:32:a9:
91:2f:a2:c9:09:7d:54:a2:32:23:af:34:6a:2d:de:1a:a5:d7:
1b:14:60:1c:74:85:22:c7:fc:36:b1:3e:11:9d:41:60:51:39:
6e:2d:94:bc:f6:11:3a:cc:af:cb:47:98:5d:1f:39:ee:53:d1:
1d:f1:31:f4:3c:48:a3:b2:65:02:32:7b:5f:ef:84:12:29:94:
5b:32:2b:33:96:4c:d9:ac:fa:1b:68:a8:32:22:5a:b5:ec:fd:
6b:73:6e:74:cb:b5:b1:23:d0:7b:86:59:03:87:f9:fc:37:e7:
f4:96:6f:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 11:50:31 2026 by rpki-client