Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36F144C/9030157CD2E511E99A4CE368F8AEA228/B571390E21AF11F1A70F3CB0DAE4EC9C.roa
File: B571390E21AF11F1A70F3CB0DAE4EC9C.roa (raw, json)
Hash identifier: jQBOlKXzRvL7aZ4LvcPCaJ8v5ZYQA2/tFLBZwlHecQA=
Subject key identifier: 25:E4:59:76:D6:17:97:AC:7C:0A:B0:95:37:B8:83:C3:27:25:DB:E9
Certificate issuer: /CN=F36F144CAR/serialNumber=BFF10D73AA8138DCE36742A766F96523859E487C
Certificate serial: 099A
Authority key identifier: BF:F1:0D:73:AA:81:38:DC:E3:67:42:A7:66:F9:65:23:85:9E:48:7C
Authority info access: rsync://rpki.afrinic.net/repository/arin/v_ENc6qBONzjZ0KnZvllI4WeSHw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36F144C/9030157CD2E511E99A4CE368F8AEA228/B571390E21AF11F1A70F3CB0DAE4EC9C.roa
Signing time: Tue 17 Mar 2026 03:16:38 +0000
ROA not before: Tue 17 Mar 2026 03:16:33 +0000
ROA not after: Mon 17 Mar 2036 03:16:33 +0000
asID: 328209
IP address blocks: 160.119.99.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36F144C/9030157CD2E511E99A4CE368F8AEA228/v_ENc6qBONzjZ0KnZvllI4WeSHw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36F144C/9030157CD2E511E99A4CE368F8AEA228/v_ENc6qBONzjZ0KnZvllI4WeSHw.mft
rsync://rpki.afrinic.net/repository/arin/v_ENc6qBONzjZ0KnZvllI4WeSHw.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 28 Mar 2026 00:26:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2458 (0x99a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36F144CAR, serialNumber=BFF10D73AA8138DCE36742A766F96523859E487C
Validity
Not Before: Mar 17 03:16:33 2026 GMT
Not After : Mar 17 03:16:33 2036 GMT
Subject: CN=69b8c796-3ade
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:20:a5:9e:d9:65:0b:91:92:78:a2:5e:45:7e:
b1:7a:92:12:56:24:11:d6:6b:88:64:98:b2:a4:bf:
60:69:0a:87:cb:60:1b:62:ce:7c:61:2a:5e:1c:56:
00:b0:70:0b:0b:13:3c:e5:d3:eb:67:e8:ca:ea:f7:
0f:cc:e0:87:21:44:58:94:e1:11:56:17:de:30:70:
90:f3:eb:e8:b7:0f:b9:07:ef:b6:e7:ec:0a:52:63:
e7:f6:03:59:36:55:db:60:1d:b7:86:40:66:4c:c8:
03:f9:76:24:cc:e0:af:9c:25:77:d5:8e:a1:4b:bf:
c7:3b:58:e9:ed:42:a3:41:d1:b5:f1:b2:0f:1c:5e:
94:3d:77:55:28:77:07:92:d7:f8:84:9f:a7:f5:e6:
11:1a:c5:c2:d7:12:d5:2e:1e:5f:2f:0d:8d:3e:5d:
a9:cb:bb:44:72:19:8b:6a:60:e3:5d:e3:f4:27:78:
a4:e9:3f:ab:5b:c2:3b:d0:b9:e7:a0:82:ef:74:e3:
8b:53:f7:d9:38:93:31:3d:e4:f7:19:61:67:66:bd:
cd:3f:a6:d5:26:e3:37:e8:44:e4:93:a1:9c:32:92:
37:4a:df:ea:9a:e7:1a:94:62:0b:c4:a2:7c:a8:af:
6c:50:80:8b:29:73:d1:46:a4:53:aa:39:f1:ab:36:
57:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:E4:59:76:D6:17:97:AC:7C:0A:B0:95:37:B8:83:C3:27:25:DB:E9
X509v3 Authority Key Identifier:
keyid:BF:F1:0D:73:AA:81:38:DC:E3:67:42:A7:66:F9:65:23:85:9E:48:7C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36F144C/9030157CD2E511E99A4CE368F8AEA228/v_ENc6qBONzjZ0KnZvllI4WeSHw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/v_ENc6qBONzjZ0KnZvllI4WeSHw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36F144C/9030157CD2E511E99A4CE368F8AEA228/B571390E21AF11F1A70F3CB0DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.119.99.0/24
Signature Algorithm: sha256WithRSAEncryption
04:ae:bc:0c:54:0f:65:32:66:13:4c:7e:f4:ac:6b:c9:0b:d6:
ef:a2:64:3f:23:9c:04:71:d5:f1:39:c9:1b:ef:ab:eb:28:fc:
f8:e5:09:81:47:de:7a:49:c2:e9:15:80:a4:cf:0b:68:bb:4a:
7d:a0:89:ea:fc:81:f5:bf:16:27:d2:67:be:17:af:d7:7a:d0:
71:16:a3:ed:a1:d6:32:c4:b8:00:10:3b:85:c2:b4:be:02:e1:
79:60:74:8d:dc:93:42:ca:6d:b6:59:1e:3b:da:77:8e:ff:47:
b5:0a:11:82:36:92:2d:cf:9e:82:97:cc:89:bf:3a:d5:a6:c4:
18:f1:ab:a8:4b:0c:f7:9c:92:d4:c1:4b:bc:fb:4a:08:8f:14:
2f:f4:fa:e8:d2:f5:fc:0d:bf:11:c2:67:8d:c4:31:f6:c6:f6:
f6:54:a7:6b:6a:8d:e4:d1:8f:13:a8:b8:53:6f:ba:68:12:03:
55:26:ad:c2:67:c1:d4:3a:66:09:95:34:73:73:80:43:ae:4c:
71:78:47:eb:bc:99:42:8c:c4:bc:9a:2e:0e:15:15:68:ee:fa:
34:00:b8:d5:3b:38:a7:4f:72:40:4e:70:89:32:69:b0:12:3f:
d8:4f:42:c2:84:a4:81:e6:ce:72:dd:03:51:a0:63:11:0d:36:
be:cd:88:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 09:33:27 2026 by rpki-client