Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/8D2B9FA63B7311F189DF2301CF1D38B0.roa
File: 8D2B9FA63B7311F189DF2301CF1D38B0.roa (raw, json)
Hash identifier: 0bQuMbQMyV9SAXVj5Y9PI5ceoV15qmIPkuTXCZXq/BM=
Subject key identifier: 3B:78:00:51:18:FB:A5:D9:18:B8:35:B4:D6:EF:48:AB:15:08:98:05
Certificate issuer: /CN=F36A44EAAR/serialNumber=F85BB49854392228FB8B30DB05D96AC664CE83AB
Certificate serial: 0B7A
Authority key identifier: F8:5B:B4:98:54:39:22:28:FB:8B:30:DB:05:D9:6A:C6:64:CE:83:AB
Authority info access: rsync://rpki.afrinic.net/repository/arin/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/8D2B9FA63B7311F189DF2301CF1D38B0.roa
Signing time: Sat 18 Apr 2026 22:11:30 +0000
ROA not before: Sun 19 Apr 2026 22:11:25 +0000
ROA not after: Wed 31 Dec 2036 22:11:25 +0000
asID: 216475
IP address blocks: 165.49.224.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.crl
rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.mft
rsync://rpki.afrinic.net/repository/arin/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 29 Apr 2026 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2938 (0xb7a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36A44EAAR, serialNumber=F85BB49854392228FB8B30DB05D96AC664CE83AB
Validity
Not Before: Apr 19 22:11:25 2026 GMT
Not After : Dec 31 22:11:25 2036 GMT
Subject: CN=69e40192-853f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:7d:11:9d:74:72:51:55:e2:d7:e3:10:8f:95:
77:5a:c7:68:f0:4f:04:3d:31:91:17:a2:be:65:77:
4e:d6:9d:9d:01:a1:e3:ac:91:b4:c9:66:2a:aa:3f:
8f:74:98:cf:d4:96:90:c4:86:d0:7c:42:c9:ae:d9:
36:ac:c4:dd:e7:ec:ad:fb:1b:4c:b5:62:92:c1:06:
bd:a0:00:9d:65:0f:04:68:90:9a:7d:ae:fb:0e:2e:
ab:3a:5a:fc:46:68:ce:2d:a1:97:3b:61:e3:51:8c:
76:27:53:f3:00:10:e7:cf:8a:8d:d7:15:c8:52:cd:
f0:9a:30:36:0f:1d:1d:c7:b3:f5:a0:21:7f:c0:42:
04:2f:21:96:9b:0a:dc:b0:bf:59:e1:80:c1:97:1b:
18:3d:93:df:51:c1:ef:e5:7e:a5:75:93:09:1d:43:
c6:8a:4b:d5:0f:52:47:a7:61:24:90:1d:bd:4b:17:
49:cb:e2:32:a0:78:10:99:f6:b1:01:61:e9:14:67:
a8:72:1d:b0:de:89:70:a1:bd:d5:ed:45:63:5c:86:
8b:0f:4c:8c:17:7b:5d:d7:68:61:9c:13:ad:fc:e7:
42:26:b0:a0:29:c4:66:d4:42:97:cc:50:5a:ad:3a:
aa:81:c1:f2:84:b2:22:00:c5:a9:72:d2:0e:b4:06:
13:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:78:00:51:18:FB:A5:D9:18:B8:35:B4:D6:EF:48:AB:15:08:98:05
X509v3 Authority Key Identifier:
keyid:F8:5B:B4:98:54:39:22:28:FB:8B:30:DB:05:D9:6A:C6:64:CE:83:AB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/8D2B9FA63B7311F189DF2301CF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
165.49.224.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:c5:18:09:08:5e:a2:c9:b5:c4:bb:92:cd:57:0b:5b:b3:36:
1c:0c:15:5e:0c:c7:eb:c5:f0:e4:db:34:67:16:13:eb:4e:8c:
d2:c9:b2:9f:ba:57:b0:f0:35:2e:3e:2a:e4:81:47:83:90:4a:
57:6b:a4:bf:18:1c:72:42:67:0c:55:26:34:58:18:71:01:8d:
00:55:94:ea:9a:f5:4c:43:31:14:ed:aa:e7:2d:97:5b:13:d1:
65:a9:6d:09:2c:85:d0:46:c1:90:ad:b2:c1:36:6a:74:f9:f3:
65:5a:1c:a2:5b:d3:fd:3d:08:c6:13:ad:ac:ef:99:a1:65:f7:
e3:b8:25:ae:9d:4a:c4:50:6a:ba:b6:c3:fa:eb:fe:24:ee:65:
db:1f:d9:2a:d5:87:d1:c9:65:cf:de:91:54:6e:b7:5c:1b:9b:
e1:2e:5e:85:74:e4:46:8d:9d:ec:79:b6:61:d9:1a:5d:87:ab:
43:74:e5:47:6e:be:c9:ac:ea:83:2e:9d:fd:7e:27:d7:71:d6:
3d:5c:c7:95:50:73:1c:b4:57:6d:2c:82:1b:e8:54:19:c9:c4:
a2:b6:0f:ff:8d:58:74:2f:83:21:e4:82:72:56:6d:ac:b8:f3:
08:62:91:6b:80:40:3a:62:63:9d:04:32:38:15:2e:d2:0a:a4:
eb:75:6e:e2
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICC3owDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
QTQ0RUFBUjExMC8GA1UEBRMoRjg1QkI0OTg1NDM5MjIyOEZCOEIzMERCMDVEOTZB
QzY2NENFODNBQjAeFw0yNjA0MTkyMjExMjVaFw0zNjEyMzEyMjExMjVaMBgxFjAU
BgNVBAMTDTY5ZTQwMTkyLTg1M2YwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQCWfRGddHJRVeLX4xCPlXdax2jwTwQ9MZEXor5ld07WnZ0BoeOskbTJZiqq
P490mM/UlpDEhtB8Qsmu2TasxN3n7K37G0y1YpLBBr2gAJ1lDwRokJp9rvsOLqs6
WvxGaM4toZc7YeNRjHYnU/MAEOfPio3XFchSzfCaMDYPHR3Hs/WgIX/AQgQvIZab
Ctywv1nhgMGXGxg9k99Rwe/lfqV1kwkdQ8aKS9UPUkenYSSQHb1LF0nL4jKgeBCZ
9rEBYekUZ6hyHbDeiXChvdXtRWNchosPTIwXe13XaGGcE63850ImsKApxGbUQpfM
UFqtOqqBwfKEsiIAxaly0g60BhPDAgMBAAGjggKiMIICnjAdBgNVHQ4EFgQUO3gA
URj7pdkYuDW01u9IqxUImAUwHwYDVR0jBBgwFoAU+Fu0mFQ5Iij7izDbBdlqxmTO
g6swDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNkE0NEVBL0E4QjdFQzFDODkwOTExRTlCNTdFNjg1RkY4QUVBMjI4Ly1GdTBt
RlE1SWlqN2l6RGJCZGxxeG1UT2c2cy5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
Ly1GdTBtRlE1SWlqN2l6RGJCZGxxeG1UT2c2cy5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNkE0NEVBL0E4QjdFQzFDODkwOTExRTlCNTdFNjg1RkY4QUVB
MjI4LzhEMkI5RkE2M0I3MzExRjE4OURGMjMwMUNGMUQzOEIwLnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAClMeAwDQYJKoZIhvcNAQELBQAD
ggEBAA3FGAkIXqLJtcS7ks1XC1uzNhwMFV4Mx+vF8OTbNGcWE+tOjNLJsp+6V7Dw
NS4+KuSBR4OQSldrpL8YHHJCZwxVJjRYGHEBjQBVlOqa9UxDMRTtquctl1sT0WWp
bQkshdBGwZCtssE2anT582VaHKJb0/09CMYTrazvmaFl9+O4Ja6dSsRQarq2w/rr
/iTuZdsf2SrVh9HJZc/ekVRut1wbm+EuXoV05EaNnex5tmHZGl2Hq0N05Uduvsms
6oMunf1+J9dx1j1cx5VQcxy0V20sghvoVBnJxKK2D/+NWHQvgyHkgnJWbay48whi
kWuAQDpiY50EMjgVLtIKpOt1buI=
-----END CERTIFICATE-----
Generated at Mon Apr 27 05:47:54 2026 by rpki-client