Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/002D557E414D11F1B0B886F1CE1D38B0.roa
File: 002D557E414D11F1B0B886F1CE1D38B0.roa (raw, json)
Hash identifier: SgRSAKdf1MwfmaTBhO5y3AEsAtdCIrqjknUHTj6voPs=
Subject key identifier: EA:F3:2B:5B:2D:EE:DC:57:FF:88:A9:FE:4D:85:54:8C:DF:7B:F0:86
Certificate issuer: /CN=F36A44EAAR/serialNumber=F85BB49854392228FB8B30DB05D96AC664CE83AB
Certificate serial: 0B95
Authority key identifier: F8:5B:B4:98:54:39:22:28:FB:8B:30:DB:05:D9:6A:C6:64:CE:83:AB
Authority info access: rsync://rpki.afrinic.net/repository/arin/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/002D557E414D11F1B0B886F1CE1D38B0.roa
Signing time: Sun 26 Apr 2026 08:50:40 +0000
ROA not before: Sun 26 Apr 2026 08:50:35 +0000
ROA not after: Wed 31 Dec 2036 08:50:35 +0000
asID: 834
IP address blocks: 165.49.108.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.crl
rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.mft
rsync://rpki.afrinic.net/repository/arin/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 07 May 2026 00:26:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2965 (0xb95)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36A44EAAR, serialNumber=F85BB49854392228FB8B30DB05D96AC664CE83AB
Validity
Not Before: Apr 26 08:50:35 2026 GMT
Not After : Dec 31 08:50:35 2036 GMT
Subject: CN=69edd1e0-aa23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:47:cd:3b:44:4e:29:1d:7f:d1:51:2f:5d:f6:
ac:5a:10:52:d0:a0:19:b3:ee:a3:6f:4a:b2:45:42:
8f:13:b8:e7:b9:bb:c9:0b:75:4a:28:26:84:9e:7a:
39:84:f1:9e:2e:71:65:fd:a6:c6:73:ec:17:4e:1c:
64:f6:24:a5:d5:82:9e:ca:b9:7e:2c:e7:13:90:64:
98:cf:24:1c:16:0c:09:50:2f:bc:e4:21:b3:61:ad:
7b:c0:eb:82:06:a8:56:5d:cd:cb:2a:b5:78:cf:81:
1a:c9:e2:d2:31:1a:40:1d:27:c3:5e:f5:f3:6a:aa:
b4:d0:50:84:01:e2:02:6f:f8:d2:61:71:77:8b:b4:
06:89:b3:07:7d:cc:9f:2d:a3:87:48:5c:0c:39:9f:
1b:a1:65:95:c3:1f:e5:d9:18:09:59:2c:62:9e:d6:
3d:08:72:4f:3f:f9:d3:34:16:5a:56:6a:df:1c:22:
cf:86:6b:3b:77:ab:6f:08:00:4d:b4:4f:62:5e:fd:
55:d1:3b:e8:50:d2:77:ab:4f:4d:af:a7:fe:5b:42:
3a:db:b1:e3:e4:34:54:aa:85:04:0b:79:d4:e0:08:
62:9e:ec:28:6f:4a:f7:c4:19:63:d1:89:b6:8b:bb:
4f:c1:84:4b:d2:00:38:0f:95:35:cf:97:7c:75:87:
b5:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:F3:2B:5B:2D:EE:DC:57:FF:88:A9:FE:4D:85:54:8C:DF:7B:F0:86
X509v3 Authority Key Identifier:
keyid:F8:5B:B4:98:54:39:22:28:FB:8B:30:DB:05:D9:6A:C6:64:CE:83:AB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/002D557E414D11F1B0B886F1CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
165.49.108.0/24
Signature Algorithm: sha256WithRSAEncryption
cd:1a:d2:40:ee:84:f3:d6:87:89:f0:75:34:99:45:0b:68:ec:
ab:aa:16:21:03:fd:af:07:fe:40:bb:fc:47:35:e9:c7:4c:70:
19:79:d9:75:82:b9:fb:58:6f:1e:22:da:c4:8a:29:8c:63:d0:
3b:be:6c:89:76:21:c6:ec:ad:f2:7a:d7:55:7e:cf:61:8d:86:
9f:6e:38:bc:7e:9d:41:38:ed:f0:77:94:24:1a:a0:0b:7f:56:
b0:36:92:9f:01:0e:fe:58:dd:6d:49:ea:c3:42:5e:8e:c0:66:
8c:21:ad:e1:e0:89:2a:14:db:df:d3:30:22:88:30:32:f9:fa:
47:82:65:de:42:65:63:45:68:02:2b:b9:22:49:ca:b3:9d:1a:
14:77:c7:41:3f:c3:87:87:38:9f:20:67:3b:70:d1:0d:06:2c:
e9:0b:f1:5d:dc:3d:70:a4:a3:67:48:18:ac:9c:be:8e:36:f7:
4d:9f:c6:0a:b9:95:18:bd:3f:20:eb:66:48:3d:1f:5c:63:27:
1c:73:21:75:8d:52:bf:fa:dc:43:c2:88:83:c3:e2:90:7d:8d:
af:77:a4:5b:a2:ad:da:b7:77:ff:9c:7f:2e:18:47:40:aa:65:
6c:80:8e:0e:59:66:93:bb:21:19:ad:3b:ff:36:ad:de:c5:cd:
d0:a1:5e:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 5 21:21:17 2026 by rpki-client