Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/4E4818FE211B11F1804583D6DAE4EC9C.roa
File: 4E4818FE211B11F1804583D6DAE4EC9C.roa (raw, json)
Hash identifier: A2dBwwjvwrgwmClzr8kJo1TJ1x8IgrGDnpCmmbdkb1c=
Subject key identifier: 8E:B2:7B:94:14:85:6A:5A:4A:D5:B9:58:51:56:F2:0A:8F:7A:C4:21
Certificate issuer: /CN=F36A44EAAR/serialNumber=F85BB49854392228FB8B30DB05D96AC664CE83AB
Certificate serial: 0B35
Authority key identifier: F8:5B:B4:98:54:39:22:28:FB:8B:30:DB:05:D9:6A:C6:64:CE:83:AB
Authority info access: rsync://rpki.afrinic.net/repository/arin/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/4E4818FE211B11F1804583D6DAE4EC9C.roa
Signing time: Mon 16 Mar 2026 09:34:19 +0000
ROA not before: Mon 16 Mar 2026 09:34:14 +0000
ROA not after: Wed 31 Dec 2036 09:34:14 +0000
asID: 398465
IP address blocks: 165.49.197.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.crl
rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.mft
rsync://rpki.afrinic.net/repository/arin/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 23 Mar 2026 00:26:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2869 (0xb35)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36A44EAAR, serialNumber=F85BB49854392228FB8B30DB05D96AC664CE83AB
Validity
Not Before: Mar 16 09:34:14 2026 GMT
Not After : Dec 31 09:34:14 2036 GMT
Subject: CN=69b7ce9b-f59b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:ce:ee:62:ad:13:16:73:f6:3e:78:39:24:cd:
4b:c1:3e:03:da:9c:c0:f3:ba:05:4b:38:a4:df:31:
fd:d2:54:b6:f5:18:d2:6f:4b:eb:30:b6:db:bd:a7:
77:d8:7c:10:7d:4f:cf:f6:d7:5b:1c:27:7c:72:13:
f4:8b:ae:f6:fc:0f:61:cb:6e:18:b5:03:11:35:be:
94:15:25:73:38:ba:57:01:3c:de:62:34:97:0e:24:
d4:9a:85:7c:65:22:96:f5:21:31:a6:4b:de:6c:0d:
c8:33:f3:fe:6b:6b:60:c2:bb:a7:c3:00:06:fb:09:
9e:95:cd:98:bf:2a:60:68:54:3f:be:d6:44:71:44:
1a:66:ed:f0:c2:07:cb:b6:93:39:9d:2d:39:70:70:
97:3a:35:8e:9c:0a:9e:5e:3d:be:29:d2:26:40:bd:
41:36:85:43:d3:65:b3:27:53:1f:b3:b7:b5:c1:9d:
d9:6a:a7:d4:14:a6:5a:2d:14:60:ef:c1:4f:2a:b9:
41:d4:d6:f8:03:88:28:88:fe:29:d6:1a:9a:63:a3:
98:3d:1f:1a:48:64:18:07:9a:50:c3:b9:75:db:87:
7f:6f:ca:3d:5c:89:8d:a9:e0:25:80:84:ac:8e:9e:
95:f8:6e:47:d7:14:f0:a1:03:04:e0:f5:29:56:37:
55:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:B2:7B:94:14:85:6A:5A:4A:D5:B9:58:51:56:F2:0A:8F:7A:C4:21
X509v3 Authority Key Identifier:
keyid:F8:5B:B4:98:54:39:22:28:FB:8B:30:DB:05:D9:6A:C6:64:CE:83:AB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/4E4818FE211B11F1804583D6DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
165.49.197.0/24
Signature Algorithm: sha256WithRSAEncryption
97:bc:86:29:22:40:fa:73:c0:e1:7d:9d:98:99:dd:f5:c4:f7:
f8:e8:8f:7a:7d:ef:73:bf:23:8f:14:50:20:f1:26:2b:37:57:
47:a4:fd:11:d2:39:5c:c8:90:d8:9d:fc:87:60:f9:94:5c:02:
0c:2c:a8:05:a4:29:a1:a0:1a:a7:03:38:b5:1c:d6:12:04:f4:
35:79:7b:ff:9f:d5:17:61:dd:bc:7a:eb:1b:13:08:ba:82:1b:
92:b9:e6:fa:09:02:22:8f:6f:9b:c9:45:f2:f3:d8:df:ec:6b:
5e:60:d6:0f:62:39:97:3f:19:aa:f2:b2:ea:ef:24:cc:97:b3:
65:eb:12:03:5e:91:0d:19:5a:08:28:81:a6:d4:06:a7:b0:11:
3a:41:05:05:f7:4e:eb:cc:65:37:62:6b:45:e9:c4:66:3b:08:
87:fc:cb:05:2d:95:5b:23:ff:18:37:64:0f:32:c1:47:cb:51:
c6:4a:3d:28:e4:c8:60:7a:23:00:92:56:55:f4:56:2f:86:d0:
c9:b7:b5:4b:27:f8:5a:c9:bc:b9:f1:02:c8:b6:0d:d4:d2:f3:
6c:44:40:0f:30:89:e9:53:71:21:27:5e:49:a3:19:46:af:b4:
f9:48:70:17:b4:15:47:40:a9:20:a6:75:88:68:d7:06:79:58:
84:20:c4:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 21 09:56:32 2026 by rpki-client