Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36B9F4B/742037808DE011E993171A33F8AEA228/3FA44D0622B811F1A097CFBFDAE4EC9C.roa
File: 3FA44D0622B811F1A097CFBFDAE4EC9C.roa (raw, json)
Hash identifier: bm9LUHD8iWz8/51Tk3NQcoYIf2jRL8L+SWl78X4zXkI=
Subject key identifier: AC:69:B0:5B:B1:D9:6C:4E:6B:86:EA:B6:E1:72:74:E7:9F:9B:6F:41
Certificate issuer: /CN=F36B9F4BAR/serialNumber=7B4E00490D40841240B3A676B6E328A6EFD0FDA2
Certificate serial: 09F7
Authority key identifier: 7B:4E:00:49:0D:40:84:12:40:B3:A6:76:B6:E3:28:A6:EF:D0:FD:A2
Authority info access: rsync://rpki.afrinic.net/repository/arin/e04ASQ1AhBJAs6Z2tuMopu_Q_aI.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36B9F4B/742037808DE011E993171A33F8AEA228/3FA44D0622B811F1A097CFBFDAE4EC9C.roa
Signing time: Wed 18 Mar 2026 10:50:17 +0000
ROA not before: Wed 18 Mar 2026 10:50:10 +0000
ROA not after: Tue 18 Mar 2036 10:50:10 +0000
asID: 2018
IP address blocks: 192.96.94.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36B9F4B/742037808DE011E993171A33F8AEA228/e04ASQ1AhBJAs6Z2tuMopu_Q_aI.crl
rsync://rpki.afrinic.net/repository/member_repository/F36B9F4B/742037808DE011E993171A33F8AEA228/e04ASQ1AhBJAs6Z2tuMopu_Q_aI.mft
rsync://rpki.afrinic.net/repository/arin/e04ASQ1AhBJAs6Z2tuMopu_Q_aI.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 28 Mar 2026 00:26:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2551 (0x9f7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36B9F4BAR, serialNumber=7B4E00490D40841240B3A676B6E328A6EFD0FDA2
Validity
Not Before: Mar 18 10:50:10 2026 GMT
Not After : Mar 18 10:50:10 2036 GMT
Subject: CN=69ba8369-01f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:ad:7d:0d:b4:e2:ff:89:ba:24:2c:08:18:43:
25:c5:75:d2:b0:4c:43:42:f8:e5:6f:ec:c2:4c:46:
fb:c4:c4:99:55:79:fc:98:6e:1c:54:be:1c:cb:cc:
a0:1e:1b:bd:05:01:3a:38:44:02:5f:b4:56:55:ca:
3b:c8:fc:ab:c2:88:05:4c:54:4a:c7:4d:5a:3a:0c:
4f:4c:42:85:f4:95:0c:c7:47:69:a3:7d:89:df:22:
3d:34:32:e6:fa:ea:50:39:86:a3:04:0c:a4:f9:46:
59:f8:25:21:7b:c9:8c:df:21:64:c9:7b:85:b7:57:
be:29:76:1e:94:90:9c:76:2b:a0:a1:26:86:ec:94:
b9:ca:04:cd:6a:8a:38:18:43:3b:53:4c:e8:25:a7:
3d:f6:e6:33:60:3b:bf:1b:28:73:56:ec:b1:85:c8:
14:88:fa:00:13:86:04:3f:cc:b4:e0:ff:da:f5:1d:
68:18:d5:4c:0e:59:44:35:a4:6e:32:ef:a6:8d:ba:
3f:15:14:38:ec:b8:2b:9c:2a:d1:0e:72:5d:ec:ed:
b7:6d:07:33:2b:a9:84:89:93:b6:06:45:e9:09:b2:
93:8a:cd:73:b3:6a:05:e3:84:d8:89:a5:32:ad:15:
10:81:35:0b:50:e4:79:7d:51:95:44:04:90:19:29:
72:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:69:B0:5B:B1:D9:6C:4E:6B:86:EA:B6:E1:72:74:E7:9F:9B:6F:41
X509v3 Authority Key Identifier:
keyid:7B:4E:00:49:0D:40:84:12:40:B3:A6:76:B6:E3:28:A6:EF:D0:FD:A2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36B9F4B/742037808DE011E993171A33F8AEA228/e04ASQ1AhBJAs6Z2tuMopu_Q_aI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/e04ASQ1AhBJAs6Z2tuMopu_Q_aI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36B9F4B/742037808DE011E993171A33F8AEA228/3FA44D0622B811F1A097CFBFDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
192.96.94.0/24
Signature Algorithm: sha256WithRSAEncryption
29:c6:f6:77:b9:ca:b5:5b:d0:a2:29:68:03:9f:28:b8:be:7e:
0a:2e:19:ee:90:07:83:16:71:41:78:79:78:7d:9d:f3:ec:8b:
2f:83:7a:c3:64:c2:06:4e:0f:d3:10:7c:db:9b:03:3a:59:59:
40:6b:88:ae:da:4c:c6:ad:8e:af:89:34:df:9c:94:64:9d:23:
c5:a0:92:c3:8b:24:16:a9:76:1d:1c:11:11:aa:c3:a7:af:ed:
f6:a5:96:d9:48:7c:24:48:45:c1:05:ba:0a:7a:cb:e9:b7:70:
0b:fa:3c:00:0f:fd:7d:0e:c6:04:f0:48:ad:a1:dd:d2:53:3b:
3f:82:9d:33:ea:05:f7:a8:e7:ed:5a:59:24:da:52:e3:b6:e3:
90:dc:8c:bd:9a:8b:ac:94:f6:f7:6b:5c:80:62:89:8f:d4:84:
af:0c:08:7e:eb:8f:a9:ee:aa:71:fd:41:f5:be:bb:65:0a:45:
ad:d0:5a:75:a8:c0:9d:7a:98:9c:a8:6f:f1:b5:a6:15:1b:09:
fa:51:69:d9:44:80:e2:58:e6:b5:15:cb:29:f4:35:81:01:e5:
b9:85:36:0d:2b:9a:b4:b7:9a:60:3f:ec:9e:91:38:ef:95:cb:
0f:aa:e9:55:75:86:ac:2f:42:37:f5:fc:05:a5:7a:12:57:5e:
16:35:9b:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 27 00:17:37 2026 by rpki-client