Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/95D6328A4A4911F18B4AC60FCF1D38B0.roa
File: 95D6328A4A4911F18B4AC60FCF1D38B0.roa (raw, json)
Hash identifier: p0R4RRuKx2c6CL98HAA0y3Zp0aN5/+O2qqzgnwDUCco=
Subject key identifier: D6:57:96:B9:E5:93:08:F1:D2:6C:1D:36:22:1F:A3:40:D3:4B:71:70
Certificate issuer: /CN=F36A44EAAR/serialNumber=F85BB49854392228FB8B30DB05D96AC664CE83AB
Certificate serial: 0BC3
Authority key identifier: F8:5B:B4:98:54:39:22:28:FB:8B:30:DB:05:D9:6A:C6:64:CE:83:AB
Authority info access: rsync://rpki.afrinic.net/repository/arin/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/95D6328A4A4911F18B4AC60FCF1D38B0.roa
Signing time: Thu 07 May 2026 19:18:53 +0000
ROA not before: Thu 07 May 2026 19:18:49 +0000
ROA not after: Wed 31 Dec 2036 19:18:49 +0000
asID: 40352
IP address blocks: 165.49.73.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.crl
rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.mft
rsync://rpki.afrinic.net/repository/arin/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 15 May 2026 00:26:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3011 (0xbc3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36A44EAAR, serialNumber=F85BB49854392228FB8B30DB05D96AC664CE83AB
Validity
Not Before: May 7 19:18:49 2026 GMT
Not After : Dec 31 19:18:49 2036 GMT
Subject: CN=69fce59d-969a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:20:2a:07:ca:47:3b:07:2e:38:3b:f4:d9:0c:
12:c7:f9:1e:60:9e:c4:48:f6:d9:8a:69:3d:c3:18:
9e:2e:bf:a9:5a:ee:ea:47:4e:25:b5:99:f6:5c:36:
b6:5a:3c:8b:e0:0f:69:e2:60:6a:d9:b4:41:b7:a5:
14:70:3a:f5:d2:17:f4:36:39:8b:57:00:a1:1f:90:
0e:76:79:c7:27:56:78:8f:fd:e6:91:dc:4b:0d:7a:
12:fa:ee:ce:53:dd:fd:55:ea:57:36:70:6f:f6:62:
fe:0a:d3:e6:57:f1:e9:3b:29:bf:cc:43:09:ee:42:
89:c3:1b:a9:c9:6c:72:10:e6:e0:c7:5e:b3:b6:06:
f3:78:13:a9:84:80:7c:d9:42:f5:34:83:f9:1e:ef:
63:52:31:eb:3a:21:5b:be:05:2e:08:2d:f8:23:9b:
ce:24:7c:41:c1:ea:db:53:f1:1f:88:13:e4:97:de:
0d:b8:89:1f:d3:3a:42:c9:d2:a3:ca:51:80:cb:20:
9a:d7:10:57:3c:c7:0b:07:64:a0:ea:09:1b:b9:a5:
38:ab:1a:74:c3:63:7d:46:3f:ff:ed:df:18:2c:44:
a3:c1:1b:9d:fc:75:00:2f:97:5a:2d:12:a8:7a:be:
7a:6f:08:e2:97:47:8e:30:e3:13:a3:7a:8c:84:02:
6d:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:57:96:B9:E5:93:08:F1:D2:6C:1D:36:22:1F:A3:40:D3:4B:71:70
X509v3 Authority Key Identifier:
keyid:F8:5B:B4:98:54:39:22:28:FB:8B:30:DB:05:D9:6A:C6:64:CE:83:AB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/95D6328A4A4911F18B4AC60FCF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
165.49.73.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:6d:97:1a:4e:ac:68:21:33:9a:80:e9:ce:f3:25:a8:39:8a:
7d:12:6a:d9:56:9e:47:73:06:c1:da:11:7b:a4:56:69:a4:68:
d2:6d:1f:93:12:cb:6b:29:9d:cd:04:21:50:65:57:48:e2:90:
20:54:a4:fe:d4:14:88:c6:62:d2:52:e4:34:45:a6:db:28:f0:
fc:5b:bc:dc:e7:5c:ba:a1:d3:1d:95:de:7f:db:33:f7:bf:b0:
71:48:1b:5f:c0:c1:26:de:93:65:17:12:40:8c:88:9c:3a:a2:
5c:5e:56:27:34:11:2e:dc:69:83:19:bb:29:c6:22:3c:2f:48:
0e:91:a0:32:ac:47:44:fe:2e:d3:4f:fc:21:e9:ff:39:ee:24:
b0:c6:da:cc:6f:37:08:97:ff:80:79:91:13:a1:6b:e3:83:18:
d7:33:e2:31:e1:67:18:aa:25:5a:f7:5a:56:84:e1:1a:92:a2:
dc:c2:58:5d:0d:62:f6:e5:77:bb:45:8c:2e:56:51:1e:9a:74:
4e:07:20:76:cd:b0:3a:e5:a8:35:a7:74:c4:8c:bc:4b:24:93:
f6:8e:3e:93:3a:03:78:b3:d0:75:64:e8:8a:f4:b3:61:93:9a:
88:c5:e7:62:fa:6f:d1:e4:4e:94:9b:ed:f4:4d:23:b1:75:c2:
37:89:4b:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 11:19:02 2026 by rpki-client