Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36FC328/2976E2BA511F11EC9329157DD8A014CE/EB8BB54C228A11F19208D6B6DAE4EC9C.roa
File: EB8BB54C228A11F19208D6B6DAE4EC9C.roa (raw, json)
Hash identifier: 5ahKQTUHbsT6qmsjyp5i17NZTsk325A7dnAXmVyCtMk=
Subject key identifier: F9:F2:A4:A6:9A:EC:B9:2F:C4:27:2A:A0:15:13:A9:11:C9:C5:0C:06
Certificate issuer: /CN=F36FC328AR/serialNumber=056880B8C36044A59126F111AA3545BC20C12862
Certificate serial: 064B
Authority key identifier: 05:68:80:B8:C3:60:44:A5:91:26:F1:11:AA:35:45:BC:20:C1:28:62
Authority info access: rsync://rpki.afrinic.net/repository/arin/BWiAuMNgRKWRJvERqjVFvCDBKGI.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36FC328/2976E2BA511F11EC9329157DD8A014CE/EB8BB54C228A11F19208D6B6DAE4EC9C.roa
Signing time: Wed 18 Mar 2026 05:25:48 +0000
ROA not before: Wed 18 Mar 2026 05:25:43 +0000
ROA not after: Mon 20 Mar 2028 05:25:43 +0000
asID: 327960
IP address blocks: 169.239.68.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36FC328/2976E2BA511F11EC9329157DD8A014CE/BWiAuMNgRKWRJvERqjVFvCDBKGI.crl
rsync://rpki.afrinic.net/repository/member_repository/F36FC328/2976E2BA511F11EC9329157DD8A014CE/BWiAuMNgRKWRJvERqjVFvCDBKGI.mft
rsync://rpki.afrinic.net/repository/arin/BWiAuMNgRKWRJvERqjVFvCDBKGI.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 28 Mar 2026 00:26:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1611 (0x64b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36FC328AR, serialNumber=056880B8C36044A59126F111AA3545BC20C12862
Validity
Not Before: Mar 18 05:25:43 2026 GMT
Not After : Mar 20 05:25:43 2028 GMT
Subject: CN=69ba375c-04be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:b2:4a:ac:74:1c:60:f4:06:9d:4c:81:49:55:
82:24:5c:0d:ec:4a:f2:4f:50:eb:38:11:c9:8e:7b:
7b:71:e7:ef:3b:fa:86:21:35:c5:b7:a9:92:6a:ac:
f2:e0:0e:91:31:bd:9f:dd:62:c4:8e:e4:0c:d5:3f:
07:a2:35:8d:39:a8:11:c2:c3:de:17:1e:8c:40:b1:
1d:cd:66:5f:2b:0b:b0:1d:86:b5:d7:dd:2b:62:33:
64:d2:ef:e0:cf:56:c4:20:63:82:58:5a:91:5f:99:
e8:3b:b2:23:74:c8:21:60:dc:21:3a:3f:99:9c:f2:
1e:f6:27:16:b3:4c:df:2a:d2:fb:0c:13:9b:09:85:
8e:bd:bb:4f:62:24:38:9b:c4:9b:0f:62:42:da:78:
b1:7c:26:67:f1:36:f0:f8:ad:97:58:2f:30:6c:eb:
ca:5c:4c:e7:37:bf:da:3f:e0:69:20:6d:db:a8:69:
fa:17:b9:fe:15:95:ba:e5:24:2f:33:2b:7f:9d:e8:
f1:24:61:b0:c5:51:6a:63:4c:85:f4:26:e2:6e:48:
4e:d6:7a:81:07:af:f4:83:7e:1b:f1:b1:4e:f2:b1:
bd:d6:65:8e:1a:fc:cc:fe:d5:36:dd:54:79:8f:0f:
1c:16:94:1d:85:a8:a2:7b:c2:54:20:d1:86:31:e5:
97:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:F2:A4:A6:9A:EC:B9:2F:C4:27:2A:A0:15:13:A9:11:C9:C5:0C:06
X509v3 Authority Key Identifier:
keyid:05:68:80:B8:C3:60:44:A5:91:26:F1:11:AA:35:45:BC:20:C1:28:62
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36FC328/2976E2BA511F11EC9329157DD8A014CE/BWiAuMNgRKWRJvERqjVFvCDBKGI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/BWiAuMNgRKWRJvERqjVFvCDBKGI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36FC328/2976E2BA511F11EC9329157DD8A014CE/EB8BB54C228A11F19208D6B6DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
169.239.68.0/22
Signature Algorithm: sha256WithRSAEncryption
6a:cf:72:1d:fa:99:99:74:33:37:ca:63:de:11:a6:c6:cc:7e:
75:92:c9:b1:44:bf:1e:08:a4:65:c9:fc:53:00:2a:9b:e2:4c:
e3:09:e5:51:51:1c:4e:2f:84:20:53:42:98:dd:17:b9:10:be:
d4:1b:76:e2:7c:59:f7:b5:e7:af:f8:c2:c4:a3:f8:cb:03:c9:
ba:36:94:9b:33:2e:69:f0:71:8d:86:d2:0c:f0:f1:25:0d:1a:
c7:93:c2:66:4c:b1:24:32:02:c4:af:19:01:1b:a6:76:e3:25:
3e:a5:a7:73:cc:a7:a5:ba:76:3a:d9:aa:2e:d3:ea:2c:18:65:
3a:04:df:2e:01:24:2c:b0:50:8a:29:f6:d7:f0:48:d6:88:99:
37:3c:9b:24:e7:d3:f4:1b:22:77:db:57:ae:5b:42:af:d4:0c:
96:bd:2d:a5:39:41:9d:b1:75:5c:22:0c:3c:39:b6:d9:db:de:
4c:cd:fa:34:d4:1e:57:de:d6:c5:f2:0b:75:de:fb:9e:8e:f8:
93:db:8d:d6:c5:61:13:81:4a:4c:0f:30:5c:da:ef:41:19:46:
7c:58:a3:8e:ff:78:f4:8c:49:55:ac:fe:8c:8f:cc:4d:ca:b9:
03:d6:df:51:1c:36:2f:36:45:90:68:f5:c1:23:fe:8c:10:a7:
e5:de:ed:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 10:46:12 2026 by rpki-client