Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3660137/341D643E5C1C11ECBD6FEB6D5A40D577/8733436A26A111F1A5D7988BDAE4EC9C.roa
File: 8733436A26A111F1A5D7988BDAE4EC9C.roa (raw, json)
Hash identifier: 4L+8Spl7mYLOf3F7diVAcemEBR1eKJGI+SB45GI3D5s=
Subject key identifier: BA:85:6E:62:48:98:18:CB:0E:3A:D8:7C:B5:29:4F:34:FE:F5:F9:F3
Certificate issuer: /CN=F3660137AR/serialNumber=BF2E51C85A3A817FF6C7FCC693064F8B3C7A99C6
Certificate serial: 064B
Authority key identifier: BF:2E:51:C8:5A:3A:81:7F:F6:C7:FC:C6:93:06:4F:8B:3C:7A:99:C6
Authority info access: rsync://rpki.afrinic.net/repository/arin/vy5RyFo6gX_2x_zGkwZPizx6mcY.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3660137/341D643E5C1C11ECBD6FEB6D5A40D577/8733436A26A111F1A5D7988BDAE4EC9C.roa
Signing time: Mon 23 Mar 2026 10:17:43 +0000
ROA not before: Mon 23 Mar 2026 10:17:38 +0000
ROA not after: Sat 10 Mar 2029 10:17:38 +0000
asID: 327900
IP address blocks: 169.239.0.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3660137/341D643E5C1C11ECBD6FEB6D5A40D577/vy5RyFo6gX_2x_zGkwZPizx6mcY.crl
rsync://rpki.afrinic.net/repository/member_repository/F3660137/341D643E5C1C11ECBD6FEB6D5A40D577/vy5RyFo6gX_2x_zGkwZPizx6mcY.mft
rsync://rpki.afrinic.net/repository/arin/vy5RyFo6gX_2x_zGkwZPizx6mcY.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 25 Mar 2026 00:26:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1611 (0x64b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3660137AR, serialNumber=BF2E51C85A3A817FF6C7FCC693064F8B3C7A99C6
Validity
Not Before: Mar 23 10:17:38 2026 GMT
Not After : Mar 10 10:17:38 2029 GMT
Subject: CN=69c11347-473e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:36:fe:55:ef:74:a4:94:07:c4:15:c7:ac:dd:
bd:fa:13:83:a1:c4:a4:9e:2b:49:51:57:86:01:b8:
7c:07:e5:86:61:10:0e:91:cd:f3:70:e9:3e:15:0d:
57:c9:60:3c:d0:0a:5b:ce:8f:ba:40:e9:30:86:1e:
01:17:39:69:19:aa:52:e5:76:93:43:42:de:bc:2b:
4c:d5:d9:85:9d:5c:ab:4f:13:dc:c6:50:78:c6:ba:
bb:53:dd:8b:d2:47:53:b4:c1:80:7f:7e:40:23:ba:
30:ae:9e:8b:54:d8:d3:8c:4a:de:5e:50:e3:d1:0e:
91:67:5b:07:64:01:74:58:47:f7:83:46:1b:8d:42:
3b:b3:9c:24:0f:20:08:1d:9c:ed:a3:c7:e1:62:95:
65:8a:8f:5b:e3:61:6c:6b:ff:07:8c:e3:a3:df:88:
ce:e1:a5:45:5a:6a:7d:2d:ac:ea:68:a7:b0:5b:34:
6d:93:50:25:3d:00:82:e6:3f:a2:38:ef:0e:2f:9c:
9e:4b:f2:0e:72:a3:53:64:d7:ef:66:c7:af:8f:56:
72:26:46:88:7e:36:0b:70:f7:04:e1:0f:30:c1:c8:
2c:fe:f6:de:33:93:d0:7b:43:74:16:17:2b:f8:6e:
ff:23:11:75:74:a2:e1:5c:72:12:41:cd:45:ad:88:
ad:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:85:6E:62:48:98:18:CB:0E:3A:D8:7C:B5:29:4F:34:FE:F5:F9:F3
X509v3 Authority Key Identifier:
keyid:BF:2E:51:C8:5A:3A:81:7F:F6:C7:FC:C6:93:06:4F:8B:3C:7A:99:C6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3660137/341D643E5C1C11ECBD6FEB6D5A40D577/vy5RyFo6gX_2x_zGkwZPizx6mcY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/vy5RyFo6gX_2x_zGkwZPizx6mcY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3660137/341D643E5C1C11ECBD6FEB6D5A40D577/8733436A26A111F1A5D7988BDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
169.239.0.0/22
Signature Algorithm: sha256WithRSAEncryption
5c:b6:66:45:c2:85:19:8c:72:b7:37:8b:e3:52:f4:02:c9:44:
90:2e:66:f7:ec:a0:20:fd:ca:55:93:da:95:f6:85:9a:cb:b1:
a0:84:bf:25:e5:c4:3f:05:fe:d6:cc:ea:88:e6:32:0a:a0:a2:
76:6d:ea:01:7e:a3:ff:80:12:0d:bc:04:0e:46:4a:c2:28:6c:
2f:db:c8:f1:1c:75:36:b9:9d:46:11:ff:e5:6a:db:04:e8:c9:
45:be:ac:90:8e:24:66:23:3d:d0:e1:80:3f:cc:16:92:09:aa:
8f:b8:55:82:fb:70:4f:40:61:52:bc:3a:87:93:1b:f5:70:41:
b6:03:92:07:de:93:3b:1c:01:c3:b8:fc:28:00:01:70:af:8b:
54:35:f6:ff:79:4e:6c:5f:1c:90:b3:c0:36:e0:21:3b:81:d7:
e0:f4:b9:16:da:87:f6:92:c2:34:19:31:e9:4b:0f:c5:55:89:
c4:a1:ff:f1:f0:94:17:0d:16:64:cc:89:2f:99:0a:2c:58:39:
2a:0b:cd:9e:10:23:16:fd:18:4f:75:45:1f:64:07:46:a3:e9:
1f:13:c2:10:4b:29:a4:44:6f:b3:46:09:b1:78:e3:fd:fa:c7:
80:0b:77:0c:3e:d1:dc:73:14:dd:6f:f0:c7:f0:7b:71:e2:09:
f2:69:fc:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 24 00:08:56 2026 by rpki-client