Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/838FFA44487C11F18AA6F7A2CE1D38B0.roa
File: 838FFA44487C11F18AA6F7A2CE1D38B0.roa (raw, json)
Hash identifier: am5lgSLVvaNjxeudnEACN2izit2CQnX7UsLAxKGjMMo=
Subject key identifier: 7D:75:19:A4:7E:DB:58:A7:95:7C:E5:E1:F9:43:32:E2:15:22:E4:FE
Certificate issuer: /CN=F36A44EAAR/serialNumber=F85BB49854392228FB8B30DB05D96AC664CE83AB
Certificate serial: 0BB6
Authority key identifier: F8:5B:B4:98:54:39:22:28:FB:8B:30:DB:05:D9:6A:C6:64:CE:83:AB
Authority info access: rsync://rpki.afrinic.net/repository/arin/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/838FFA44487C11F18AA6F7A2CE1D38B0.roa
Signing time: Tue 05 May 2026 12:18:25 +0000
ROA not before: Tue 05 May 2026 12:18:20 +0000
ROA not after: Wed 31 Dec 2036 12:18:20 +0000
asID: 201386
IP address blocks: 165.49.75.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.crl
rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.mft
rsync://rpki.afrinic.net/repository/arin/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 07 May 2026 00:26:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2998 (0xbb6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36A44EAAR, serialNumber=F85BB49854392228FB8B30DB05D96AC664CE83AB
Validity
Not Before: May 5 12:18:20 2026 GMT
Not After : Dec 31 12:18:20 2036 GMT
Subject: CN=69f9e011-8ad2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:5e:52:66:9c:5a:fd:cd:c3:16:0f:c4:8c:92:
ce:6a:4f:89:e9:14:68:87:39:95:5a:21:c9:e4:63:
2f:68:4e:39:86:b5:3d:af:3b:c1:41:c3:ed:5d:c7:
0b:29:bf:9b:db:91:ac:0c:37:e6:a2:ec:3a:13:3e:
cb:ad:8b:ae:75:96:c2:86:19:10:fd:09:3b:11:2f:
0c:f4:bb:a3:8f:ef:2b:fe:99:95:54:12:20:1b:b3:
61:68:04:09:5d:30:6b:6c:0d:24:bc:d6:4d:53:d1:
01:12:7d:34:63:1d:be:f6:ae:d3:3b:9c:c3:17:8f:
11:8d:de:a9:ea:c1:e1:35:51:23:c3:ff:e1:7a:80:
cb:d5:db:62:bb:7d:e4:c6:a4:f7:18:7f:aa:20:e5:
62:f5:b5:16:fb:9f:08:9f:f9:de:7d:9c:f4:79:43:
37:02:dd:ee:ca:a8:a9:6c:6b:36:6f:47:1e:d1:d6:
0b:29:8a:71:9d:4b:61:08:71:1d:13:99:d3:e2:66:
bb:a2:c7:b6:5d:6c:bb:30:c1:0b:f1:77:5b:25:1e:
0d:60:4a:a9:95:09:8e:d0:20:6c:a4:a6:25:37:db:
7c:2b:25:1a:b9:28:a6:6d:08:35:9b:3d:66:7e:60:
2f:85:8a:4f:77:99:3f:c8:a0:c6:56:a2:6a:5f:99:
0d:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:75:19:A4:7E:DB:58:A7:95:7C:E5:E1:F9:43:32:E2:15:22:E4:FE
X509v3 Authority Key Identifier:
keyid:F8:5B:B4:98:54:39:22:28:FB:8B:30:DB:05:D9:6A:C6:64:CE:83:AB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/838FFA44487C11F18AA6F7A2CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
165.49.75.0/24
Signature Algorithm: sha256WithRSAEncryption
a4:66:24:2f:a9:a6:8c:e9:76:a7:03:40:72:2d:4e:b2:f9:9f:
03:fa:46:97:6b:11:2c:24:63:3f:fe:88:f0:9a:cd:75:92:4a:
22:d8:71:58:03:bc:f1:2f:ce:58:a6:dc:ac:68:30:35:6b:e7:
98:23:26:47:63:98:48:5a:9c:d5:87:66:84:f0:a3:7a:c3:69:
f8:72:6e:fa:3c:cf:a6:fb:21:13:c8:e6:cc:13:3f:b6:d7:b9:
de:36:4c:11:99:2b:37:3d:a3:cb:be:5a:e4:44:6c:51:98:ab:
b2:c6:f1:62:50:2e:03:0e:99:4e:4c:9b:cc:b2:fe:0b:d3:4b:
19:06:ff:a6:f3:fb:b2:7e:fc:0d:b6:c3:16:ca:5a:7e:1f:1b:
94:f8:c3:eb:e6:6b:b3:1c:63:ef:e7:b2:ee:9d:84:de:5a:d9:
2d:1d:22:de:7e:44:40:2b:f2:a3:74:cb:44:28:96:37:2b:d6:
6a:13:7f:da:b7:0d:b1:1f:0e:92:3f:bd:d7:e3:15:62:1b:b7:
3e:ca:ee:e5:32:ad:a6:76:96:ba:e7:ae:0d:c0:d1:f7:94:f4:
85:4b:63:da:ef:b9:78:84:d9:d4:39:62:66:a0:e9:4e:4d:32:
e0:ae:9e:8f:0e:c8:77:5e:49:86:3c:91:1a:81:07:30:12:2a:
93:6e:e9:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 5 21:21:17 2026 by rpki-client