Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36B9F4B/742037808DE011E993171A33F8AEA228/033994E822B811F183FAB1BDDAE4EC9C.roa
File: 033994E822B811F183FAB1BDDAE4EC9C.roa (raw, json)
Hash identifier: NWQU47xDGEMdfBshOG2MbAYNTV/ExbjFLB7MJsI28xY=
Subject key identifier: 43:25:A3:8B:7D:5D:62:F5:60:D6:B5:E6:DA:69:76:99:BF:C4:AC:B5
Certificate issuer: /CN=F36B9F4BAR/serialNumber=7B4E00490D40841240B3A676B6E328A6EFD0FDA2
Certificate serial: 09F4
Authority key identifier: 7B:4E:00:49:0D:40:84:12:40:B3:A6:76:B6:E3:28:A6:EF:D0:FD:A2
Authority info access: rsync://rpki.afrinic.net/repository/arin/e04ASQ1AhBJAs6Z2tuMopu_Q_aI.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36B9F4B/742037808DE011E993171A33F8AEA228/033994E822B811F183FAB1BDDAE4EC9C.roa
Signing time: Wed 18 Mar 2026 10:48:35 +0000
ROA not before: Wed 18 Mar 2026 10:48:29 +0000
ROA not after: Tue 18 Mar 2036 10:48:29 +0000
asID: 2018
IP address blocks: 192.96.95.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36B9F4B/742037808DE011E993171A33F8AEA228/e04ASQ1AhBJAs6Z2tuMopu_Q_aI.crl
rsync://rpki.afrinic.net/repository/member_repository/F36B9F4B/742037808DE011E993171A33F8AEA228/e04ASQ1AhBJAs6Z2tuMopu_Q_aI.mft
rsync://rpki.afrinic.net/repository/arin/e04ASQ1AhBJAs6Z2tuMopu_Q_aI.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 28 Mar 2026 00:26:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2548 (0x9f4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36B9F4BAR, serialNumber=7B4E00490D40841240B3A676B6E328A6EFD0FDA2
Validity
Not Before: Mar 18 10:48:29 2026 GMT
Not After : Mar 18 10:48:29 2036 GMT
Subject: CN=69ba8303-99ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:2d:94:f4:31:67:52:cf:5d:34:9b:7f:1a:1c:
d0:3f:ad:db:c5:97:ba:39:0e:22:a1:55:35:67:ee:
75:87:7b:e4:91:cc:96:65:bf:d2:06:52:f2:63:fa:
22:b1:9f:87:58:d1:e5:30:05:ec:f5:2b:bf:8d:8c:
32:bc:7a:93:eb:b4:26:d5:bf:aa:58:4f:33:96:7c:
75:72:ac:03:0c:22:55:b3:69:5b:97:a1:88:58:dd:
22:a8:fb:3b:43:c7:c6:2c:b2:49:89:20:66:ef:cc:
8d:a3:1b:b0:c0:1f:61:43:0b:51:a9:52:ec:4d:20:
f9:27:b4:04:42:b1:e7:bb:79:23:d7:7b:4b:6e:eb:
eb:c8:57:ec:8f:87:68:55:ae:55:5d:fb:a7:cf:a0:
11:66:50:fe:0c:42:fd:56:f1:58:ee:b1:e2:0c:5e:
93:eb:0c:54:dc:3e:e0:ea:c8:e8:f0:56:29:70:7e:
7f:f5:f5:75:d3:5e:01:0b:59:65:fa:11:35:77:4d:
69:a7:41:3d:37:d6:32:2b:6e:13:18:1c:9c:a4:38:
04:75:7d:a0:63:75:d3:fa:91:26:a7:2e:84:ac:f1:
f4:c9:06:a2:fc:46:f6:0b:13:3e:4c:7e:d5:34:b4:
c6:bb:43:e5:ae:8a:c3:d9:d3:c0:98:2b:48:6d:8c:
66:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:25:A3:8B:7D:5D:62:F5:60:D6:B5:E6:DA:69:76:99:BF:C4:AC:B5
X509v3 Authority Key Identifier:
keyid:7B:4E:00:49:0D:40:84:12:40:B3:A6:76:B6:E3:28:A6:EF:D0:FD:A2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36B9F4B/742037808DE011E993171A33F8AEA228/e04ASQ1AhBJAs6Z2tuMopu_Q_aI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/e04ASQ1AhBJAs6Z2tuMopu_Q_aI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36B9F4B/742037808DE011E993171A33F8AEA228/033994E822B811F183FAB1BDDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
192.96.95.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:b3:dc:12:5f:30:eb:17:7c:bc:ee:a0:a8:e3:a1:a6:9b:1f:
7b:ca:cd:3d:79:10:14:ab:70:81:a9:5f:3b:7e:b3:d6:84:89:
cc:2b:eb:bb:eb:d5:d7:e5:29:29:04:6f:10:f4:07:b6:7b:47:
fc:7b:2c:13:77:5e:24:10:2d:12:dc:13:e4:28:3d:6d:b1:38:
df:ce:ee:19:2c:e3:77:b9:46:f0:59:51:92:1a:e9:52:b7:81:
5d:98:88:78:c2:b8:3b:58:3c:8c:75:bf:55:6c:4c:99:e8:3c:
46:08:10:51:34:e1:ba:77:44:e0:ef:34:5f:64:a7:7f:be:46:
ca:75:c4:a1:00:d0:70:62:ab:ef:f6:45:e9:66:3d:40:17:2e:
1b:fb:30:05:7f:be:87:ca:e0:73:46:b8:d4:d1:03:96:a1:9e:
2e:f1:96:7e:9d:03:51:b9:b7:72:5e:6b:aa:1d:27:d5:56:bb:
51:a7:d8:38:49:f6:53:61:07:5f:50:f3:95:fc:b9:5e:10:c6:
d9:be:34:a0:30:a2:e8:54:1a:0c:1d:be:3a:46:52:b6:74:03:
24:48:54:08:f1:77:f7:81:a1:5f:e3:76:f6:be:74:68:af:e8:
24:25:e3:63:df:1e:77:e2:68:a4:b8:82:6a:69:0c:54:85:03:
44:0b:d5:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 21:28:15 2026 by rpki-client