Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36F144C/9030157CD2E511E99A4CE368F8AEA228/8798FAA821AF11F197D80AB0DAE4EC9C.roa
File: 8798FAA821AF11F197D80AB0DAE4EC9C.roa (raw, json)
Hash identifier: yINpq7jr9xplZf3UorF40WMgy5Q4M9fmu1bCUIs0aD0=
Subject key identifier: 09:41:C7:3C:A4:89:10:A3:CF:0A:EC:FB:10:D1:E5:F8:32:A3:CC:95
Certificate issuer: /CN=F36F144CAR/serialNumber=BFF10D73AA8138DCE36742A766F96523859E487C
Certificate serial: 0998
Authority key identifier: BF:F1:0D:73:AA:81:38:DC:E3:67:42:A7:66:F9:65:23:85:9E:48:7C
Authority info access: rsync://rpki.afrinic.net/repository/arin/v_ENc6qBONzjZ0KnZvllI4WeSHw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36F144C/9030157CD2E511E99A4CE368F8AEA228/8798FAA821AF11F197D80AB0DAE4EC9C.roa
Signing time: Tue 17 Mar 2026 03:15:21 +0000
ROA not before: Tue 17 Mar 2026 03:15:16 +0000
ROA not after: Mon 17 Mar 2036 03:15:16 +0000
asID: 328209
IP address blocks: 160.119.98.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36F144C/9030157CD2E511E99A4CE368F8AEA228/v_ENc6qBONzjZ0KnZvllI4WeSHw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36F144C/9030157CD2E511E99A4CE368F8AEA228/v_ENc6qBONzjZ0KnZvllI4WeSHw.mft
rsync://rpki.afrinic.net/repository/arin/v_ENc6qBONzjZ0KnZvllI4WeSHw.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 28 Mar 2026 00:26:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2456 (0x998)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36F144CAR, serialNumber=BFF10D73AA8138DCE36742A766F96523859E487C
Validity
Not Before: Mar 17 03:15:16 2026 GMT
Not After : Mar 17 03:15:16 2036 GMT
Subject: CN=69b8c749-a905
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f9:f1:c4:98:1b:11:17:64:52:c1:9c:a5:d4:99:
66:89:6b:b7:76:a8:2d:85:e8:03:4a:99:2d:d6:94:
d6:fe:f1:03:ef:70:44:be:e5:6b:47:34:59:22:83:
b5:b6:33:cf:84:3d:03:89:fb:1c:7b:98:ee:f7:df:
35:dd:f4:f1:7b:34:e9:5b:c0:d3:b2:8f:4f:9c:d4:
d9:97:05:0d:04:51:3f:ac:64:60:9e:d7:7c:a5:58:
a8:00:89:82:9c:cd:e6:48:7a:a0:f4:76:cd:96:cc:
6b:6f:a2:90:7d:ff:55:7a:9b:b1:41:78:bd:03:e2:
45:b1:a0:0e:ee:06:d6:c0:4d:63:fa:74:de:c1:2d:
91:9e:41:6b:20:43:31:5d:06:e0:00:52:fc:0c:3c:
a4:45:c3:d5:de:7d:28:2b:0b:0f:3e:2c:bc:4f:8c:
66:21:65:59:b0:95:f9:b2:66:fa:ce:32:b5:13:a6:
53:5b:18:3f:0e:1d:2d:18:4f:5f:dc:2b:38:bf:12:
31:19:d7:05:ed:aa:02:11:5f:a8:9c:4f:f9:27:5f:
ea:c3:e4:20:b4:fd:f9:a6:55:32:1c:80:0b:18:d9:
38:eb:10:1a:a3:2d:bb:27:f8:1e:08:01:55:3e:e5:
4a:c7:ca:aa:9e:ce:cb:a0:9f:ce:e6:80:3d:fc:f5:
31:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:41:C7:3C:A4:89:10:A3:CF:0A:EC:FB:10:D1:E5:F8:32:A3:CC:95
X509v3 Authority Key Identifier:
keyid:BF:F1:0D:73:AA:81:38:DC:E3:67:42:A7:66:F9:65:23:85:9E:48:7C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36F144C/9030157CD2E511E99A4CE368F8AEA228/v_ENc6qBONzjZ0KnZvllI4WeSHw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/v_ENc6qBONzjZ0KnZvllI4WeSHw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36F144C/9030157CD2E511E99A4CE368F8AEA228/8798FAA821AF11F197D80AB0DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.119.98.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:a0:64:ed:4d:5f:11:87:6c:cf:d5:66:b3:55:11:e6:e6:60:
c9:52:8e:20:7f:8d:46:02:2d:45:3a:a7:5e:69:81:81:b7:c2:
4b:76:a1:f3:97:af:f0:ea:3e:7f:6c:48:d4:92:f9:8c:62:d1:
62:a4:ec:bf:69:d5:49:82:e1:a5:f3:83:30:c7:38:86:45:50:
4c:d6:d0:1f:a3:a1:b0:f2:78:11:d5:d1:b3:61:cd:7c:cd:0e:
af:14:b2:10:5b:9f:f5:3b:4b:02:dc:a5:e6:80:f4:25:74:a3:
36:9e:07:7d:7c:fd:ca:39:f9:66:6b:52:9f:41:ec:5d:81:d4:
f2:96:ca:aa:08:a8:49:31:0b:2d:34:7a:bb:bf:1c:9b:3c:cd:
dc:ec:e1:af:99:e0:50:c8:e6:50:76:a3:38:e9:04:a1:d8:cb:
53:35:c9:dd:f5:09:e6:c4:3f:d6:fa:8f:a0:63:21:71:6a:04:
b3:46:c4:12:3e:09:88:90:a5:a2:d9:0b:f5:f8:2e:dd:ae:83:
f3:e7:29:d7:5b:79:68:99:e2:bc:82:46:9b:56:3f:2c:1c:a3:
f0:c4:a0:05:2e:76:71:24:d2:a2:eb:02:2e:16:1c:ce:ee:fe:
a9:02:64:0d:79:f1:d9:dc:3c:dd:e3:90:e0:4c:bd:be:9d:c0:
34:4e:f2:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 10:46:14 2026 by rpki-client