Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/093C2692306B11F1B0A80AC9DAE4EC9C.roa
File: 093C2692306B11F1B0A80AC9DAE4EC9C.roa (raw, json)
Hash identifier: s+p8Gl+T6MEVS4v5qaoCcmkKkzgsCgp1mb1k9KPTK6o=
Subject key identifier: FA:D8:40:75:FA:B0:FB:9C:6A:CD:A5:39:76:22:5E:3A:E8:31:7A:B4
Certificate issuer: /CN=F36A44EAAR/serialNumber=F85BB49854392228FB8B30DB05D96AC664CE83AB
Certificate serial: 0B5D
Authority key identifier: F8:5B:B4:98:54:39:22:28:FB:8B:30:DB:05:D9:6A:C6:64:CE:83:AB
Authority info access: rsync://rpki.afrinic.net/repository/arin/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/093C2692306B11F1B0A80AC9DAE4EC9C.roa
Signing time: Sat 04 Apr 2026 21:12:54 +0000
ROA not before: Sat 04 Apr 2026 21:12:38 +0000
ROA not after: Wed 31 Dec 2036 21:12:38 +0000
asID: 34989
IP address blocks: 165.49.240.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.crl
rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.mft
rsync://rpki.afrinic.net/repository/arin/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 11 Apr 2026 00:26:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2909 (0xb5d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36A44EAAR, serialNumber=F85BB49854392228FB8B30DB05D96AC664CE83AB
Validity
Not Before: Apr 4 21:12:38 2026 GMT
Not After : Dec 31 21:12:38 2036 GMT
Subject: CN=69d17ed6-237c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:a3:b6:0c:9f:0d:3b:9b:58:13:96:41:68:a2:
02:0f:8f:43:f1:01:e8:ae:5e:5b:1a:66:65:15:fa:
af:fe:3c:00:b4:a1:5b:13:b7:a2:0a:34:79:4f:fa:
67:69:54:4c:54:42:6b:02:3c:9e:c1:44:d2:da:a6:
4c:7e:69:c2:d7:4e:9f:5a:7f:6a:bc:cc:21:02:98:
b5:91:b9:9f:3b:a2:20:7f:a7:16:d8:b0:c3:80:e2:
b7:ea:2b:86:1d:62:c9:f0:c7:5c:4f:fb:cc:94:36:
6d:47:6e:0f:59:9a:e7:b9:c7:23:23:e7:5f:d2:3f:
21:43:d8:e0:b3:09:b6:cf:3d:a5:bc:f3:78:7e:4e:
13:84:4e:39:db:f3:42:89:e1:37:44:3f:82:cf:18:
26:9a:5c:3b:c3:1e:34:32:74:03:77:53:30:5a:d0:
d5:99:1e:f6:41:a4:7f:e6:ef:6e:7a:3f:58:6a:ee:
db:bc:74:5c:b6:d6:f7:76:f8:dd:de:fa:aa:da:5b:
30:db:26:22:04:cb:8e:04:ab:43:d7:96:64:6d:89:
b1:12:b6:fa:78:5d:f6:d4:dd:c5:14:ad:de:94:5a:
8d:02:0b:b2:93:c0:8d:db:32:ba:31:9d:03:19:b4:
e5:ca:25:ee:76:06:c8:ea:01:47:84:45:7f:e9:ab:
86:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:D8:40:75:FA:B0:FB:9C:6A:CD:A5:39:76:22:5E:3A:E8:31:7A:B4
X509v3 Authority Key Identifier:
keyid:F8:5B:B4:98:54:39:22:28:FB:8B:30:DB:05:D9:6A:C6:64:CE:83:AB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/093C2692306B11F1B0A80AC9DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
165.49.240.0/24
Signature Algorithm: sha256WithRSAEncryption
61:90:3c:5f:da:63:7c:e1:67:0b:31:31:3f:03:15:6a:e2:35:
fe:2b:e4:83:81:46:47:c0:a2:47:e7:f5:95:e0:e8:79:fa:da:
ea:a3:99:68:61:96:6e:fd:d3:b2:cc:46:e3:f4:42:c8:79:7e:
84:1c:8f:d6:14:ef:0c:e8:29:d3:bf:d2:93:cb:f7:06:e6:43:
1e:49:95:f0:eb:d1:ba:9f:f7:a4:72:91:59:cb:1f:3c:91:41:
23:99:45:15:d8:ea:fe:79:a5:35:e8:be:6f:55:df:8a:08:86:
b9:60:12:5b:f1:96:8a:ff:6c:5a:07:07:c7:78:c9:57:d7:84:
07:48:88:e4:5a:97:55:e7:1c:72:04:a2:6b:fa:ee:25:b7:d1:
7b:47:7e:06:71:36:e0:b9:f9:4e:9d:6f:e7:22:f5:d8:0a:03:
15:bc:1e:ae:35:82:84:5f:63:a3:e4:d4:55:ad:6a:4a:44:cb:
c6:c4:f9:f8:7f:d8:fd:b0:04:fd:1d:2e:d4:9b:d7:72:7d:58:
5c:25:93:fb:75:61:81:b1:ef:13:31:54:f7:9d:91:51:da:4b:
40:ab:0a:06:e6:a2:e2:e9:3b:1f:f3:a8:51:15:7d:f7:24:4c:
2d:ff:bf:f6:3d:97:ac:59:8a:42:a2:06:f6:ff:af:bc:3a:38:
40:44:74:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 9 08:24:06 2026 by rpki-client