Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/7177BFD03CA711F19E938CE9CE1D38B0.roa
File: 7177BFD03CA711F19E938CE9CE1D38B0.roa (raw, json)
Hash identifier: DoHsDCqWWrlnrvlOm9BFXrlVQ27+oaP4n62jd1oAfWo=
Subject key identifier: 9B:55:52:49:49:20:2A:7C:22:85:06:98:79:92:87:8C:74:9C:30:E8
Certificate issuer: /CN=F36A44EAAR/serialNumber=F85BB49854392228FB8B30DB05D96AC664CE83AB
Certificate serial: 0B81
Authority key identifier: F8:5B:B4:98:54:39:22:28:FB:8B:30:DB:05:D9:6A:C6:64:CE:83:AB
Authority info access: rsync://rpki.afrinic.net/repository/arin/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/7177BFD03CA711F19E938CE9CE1D38B0.roa
Signing time: Mon 20 Apr 2026 10:55:29 +0000
ROA not before: Mon 20 Apr 2026 10:55:23 +0000
ROA not after: Wed 31 Dec 2036 10:55:23 +0000
asID: 329323
IP address blocks: 165.49.238.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.crl
rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.mft
rsync://rpki.afrinic.net/repository/arin/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 07 May 2026 00:26:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2945 (0xb81)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36A44EAAR, serialNumber=F85BB49854392228FB8B30DB05D96AC664CE83AB
Validity
Not Before: Apr 20 10:55:23 2026 GMT
Not After : Dec 31 10:55:23 2036 GMT
Subject: CN=69e60621-38e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:4f:60:74:7f:98:d9:f1:e4:9f:66:8d:bd:9f:
6b:d9:5d:74:4a:c8:5f:cb:59:b5:a3:10:a9:4b:f7:
f2:76:83:32:1d:44:c8:60:d3:fb:dc:a6:16:a3:d0:
fe:9d:79:1d:aa:68:0c:18:4a:89:9c:fb:ff:11:17:
09:81:30:3e:f2:0c:26:48:d2:9b:29:41:36:96:bb:
09:89:b0:4f:6f:46:3a:d1:89:51:32:82:95:f9:1f:
8a:14:89:1d:ce:12:55:6d:06:a1:06:38:c6:19:4b:
a2:0e:99:e7:1c:e4:36:45:91:3e:41:53:82:e1:ea:
56:f4:3a:1f:45:80:2a:73:9a:fe:fd:c7:2e:ba:31:
06:72:39:e9:a1:5d:26:51:f7:1f:18:0a:91:41:e7:
a7:73:57:e3:77:4f:f8:d3:e5:9c:e7:1a:cb:4b:67:
58:b5:97:88:de:d8:ea:7b:77:11:cc:57:49:67:0d:
80:d4:c0:a0:30:4d:03:2a:38:54:0a:20:80:9f:86:
8f:15:19:7c:9a:d4:3a:43:1f:b3:6f:4f:1d:11:f0:
e4:bc:bd:ba:1c:ba:9c:17:84:38:f0:df:ec:f7:7b:
6b:08:2b:07:46:c1:72:e2:be:e2:c5:6b:be:f1:8d:
67:7b:ba:e4:df:59:e2:66:6c:40:54:77:f7:29:4f:
f4:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:55:52:49:49:20:2A:7C:22:85:06:98:79:92:87:8C:74:9C:30:E8
X509v3 Authority Key Identifier:
keyid:F8:5B:B4:98:54:39:22:28:FB:8B:30:DB:05:D9:6A:C6:64:CE:83:AB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/7177BFD03CA711F19E938CE9CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
165.49.238.0/24
Signature Algorithm: sha256WithRSAEncryption
b6:e4:3e:17:41:d8:4f:42:dd:4e:24:14:ac:c7:6d:eb:97:f4:
67:a7:31:2d:9e:d0:64:50:2d:bf:ea:20:59:d6:43:30:72:db:
9f:17:4f:7a:ff:d3:9e:91:ee:4d:d2:a6:cb:97:cc:92:ca:dd:
00:3f:37:c3:7e:fc:ba:7f:97:6a:6b:58:bb:6c:17:53:46:a7:
3d:b4:81:5f:84:27:45:63:a9:e9:4f:7f:95:1c:29:7c:37:ff:
25:ce:4e:07:0f:65:8e:92:cb:19:c0:5a:29:e5:73:51:2f:4d:
d8:da:5b:58:69:89:28:78:d9:48:3b:04:11:ac:03:aa:9c:f5:
2a:a4:d0:10:fa:04:71:b8:cd:fb:53:a7:6c:6f:1b:b6:3c:bf:
45:61:d4:b8:cb:29:54:ef:0e:58:2d:ec:42:fd:22:52:72:f2:
f4:49:2e:50:7b:43:0a:69:dd:bf:b3:4a:27:24:6e:bc:51:ee:
f4:24:4f:6d:e2:b8:ad:d7:c8:c6:84:4b:67:fb:c0:7f:88:db:
c1:be:c1:bc:a2:73:23:ea:53:fa:14:1c:28:19:f5:89:80:6b:
3c:b9:00:00:9c:47:ed:82:35:b7:1e:ef:60:74:f2:31:36:77:
d3:1e:51:21:91:6e:3a:75:17:97:54:6b:c6:e6:0d:5d:bd:47:
5b:5f:4d:09
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICC4EwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
QTQ0RUFBUjExMC8GA1UEBRMoRjg1QkI0OTg1NDM5MjIyOEZCOEIzMERCMDVEOTZB
QzY2NENFODNBQjAeFw0yNjA0MjAxMDU1MjNaFw0zNjEyMzExMDU1MjNaMBgxFjAU
BgNVBAMTDTY5ZTYwNjIxLTM4ZTcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDNT2B0f5jZ8eSfZo29n2vZXXRKyF/LWbWjEKlL9/J2gzIdRMhg0/vcphaj
0P6deR2qaAwYSomc+/8RFwmBMD7yDCZI0pspQTaWuwmJsE9vRjrRiVEygpX5H4oU
iR3OElVtBqEGOMYZS6IOmecc5DZFkT5BU4Lh6lb0Oh9FgCpzmv79xy66MQZyOemh
XSZR9x8YCpFB56dzV+N3T/jT5ZznGstLZ1i1l4je2Op7dxHMV0lnDYDUwKAwTQMq
OFQKIICfho8VGXya1DpDH7NvTx0R8OS8vbocupwXhDjw3+z3e2sIKwdGwXLivuLF
a77xjWd7uuTfWeJmbEBUd/cpT/R/AgMBAAGjggKiMIICnjAdBgNVHQ4EFgQUm1VS
SUkgKnwihQaYeZKHjHScMOgwHwYDVR0jBBgwFoAU+Fu0mFQ5Iij7izDbBdlqxmTO
g6swDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNkE0NEVBL0E4QjdFQzFDODkwOTExRTlCNTdFNjg1RkY4QUVBMjI4Ly1GdTBt
RlE1SWlqN2l6RGJCZGxxeG1UT2c2cy5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
Ly1GdTBtRlE1SWlqN2l6RGJCZGxxeG1UT2c2cy5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNkE0NEVBL0E4QjdFQzFDODkwOTExRTlCNTdFNjg1RkY4QUVB
MjI4LzcxNzdCRkQwM0NBNzExRjE5RTkzOENFOUNFMUQzOEIwLnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAClMe4wDQYJKoZIhvcNAQELBQAD
ggEBALbkPhdB2E9C3U4kFKzHbeuX9GenMS2e0GRQLb/qIFnWQzBy258XT3r/056R
7k3SpsuXzJLK3QA/N8N+/Lp/l2prWLtsF1NGpz20gV+EJ0VjqelPf5UcKXw3/yXO
TgcPZY6SyxnAWinlc1EvTdjaW1hpiSh42Ug7BBGsA6qc9Sqk0BD6BHG4zftTp2xv
G7Y8v0Vh1LjLKVTvDlgt7EL9IlJy8vRJLlB7Qwpp3b+zSickbrxR7vQkT23iuK3X
yMaES2f7wH+I28G+wbyicyPqU/oUHCgZ9YmAazy5AACcR+2CNbce72B08jE2d9Me
USGRbjp1F5dUa8bmDV29R1tfTQk=
-----END CERTIFICATE-----
Generated at Tue May 5 21:21:17 2026 by rpki-client