Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/91410A1C162611F1856AE4ABDAE4EC9C.roa
File: 91410A1C162611F1856AE4ABDAE4EC9C.roa (raw, json)
Hash identifier: rAgr3nbmiMVWNr30ZSPZu4AXTbYwM5H/wNPLdAxdoc8=
Subject key identifier: EB:E6:34:A4:8E:CB:34:11:8B:A7:D0:5F:F4:7E:24:DF:DE:DB:1B:32
Certificate issuer: /CN=F36A44EAAR/serialNumber=F85BB49854392228FB8B30DB05D96AC664CE83AB
Certificate serial: 0B13
Authority key identifier: F8:5B:B4:98:54:39:22:28:FB:8B:30:DB:05:D9:6A:C6:64:CE:83:AB
Authority info access: rsync://rpki.afrinic.net/repository/arin/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/91410A1C162611F1856AE4ABDAE4EC9C.roa
Signing time: Mon 02 Mar 2026 10:57:13 +0000
ROA not before: Mon 02 Mar 2026 10:57:08 +0000
ROA not after: Wed 31 Dec 2036 10:57:08 +0000
asID: 834
IP address blocks: 165.49.83.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.crl
rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.mft
rsync://rpki.afrinic.net/repository/arin/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 23 Mar 2026 00:26:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2835 (0xb13)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36A44EAAR, serialNumber=F85BB49854392228FB8B30DB05D96AC664CE83AB
Validity
Not Before: Mar 2 10:57:08 2026 GMT
Not After : Dec 31 10:57:08 2036 GMT
Subject: CN=69a56d09-035d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:17:b2:e2:bf:c2:7d:09:e6:9d:0d:7e:6e:95:
9f:62:4f:d4:39:1f:28:9a:b0:b3:7b:eb:0d:0e:1d:
20:87:23:ef:46:42:f6:e5:88:51:9e:06:83:e8:3f:
3d:14:6f:26:2a:2d:1a:7a:49:7f:19:a1:19:e5:6d:
b7:6f:c8:66:82:e1:04:b7:ad:75:d9:f5:fa:40:b9:
83:43:f4:2a:31:17:75:a7:5c:bf:34:cb:f6:b4:d3:
da:30:63:d8:28:25:dc:88:9f:7e:72:ea:21:c8:bf:
71:c7:a3:31:8e:ad:77:9e:2c:e4:31:ec:82:a8:93:
ae:ef:e5:08:fd:40:bc:6e:df:0d:46:43:48:6c:b7:
87:8b:d3:11:27:65:81:83:ef:5d:51:0d:61:bf:55:
46:65:27:eb:87:21:8c:0c:ae:80:a8:d7:a5:88:fc:
cf:30:fb:8d:bb:7e:e2:ae:a2:1e:c4:2b:a1:39:04:
33:a6:cb:d2:3f:e0:3d:2c:b0:18:e2:4e:a5:b4:b3:
bc:47:62:76:fc:12:37:48:fb:75:73:71:20:a9:04:
be:26:3b:17:fe:40:e6:a2:9b:67:66:5b:27:22:a0:
87:d4:29:2b:1f:a9:72:73:03:f1:7d:6c:09:be:89:
5a:ea:24:dd:46:f7:70:3a:76:dc:f4:e9:fd:86:05:
2b:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:E6:34:A4:8E:CB:34:11:8B:A7:D0:5F:F4:7E:24:DF:DE:DB:1B:32
X509v3 Authority Key Identifier:
keyid:F8:5B:B4:98:54:39:22:28:FB:8B:30:DB:05:D9:6A:C6:64:CE:83:AB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/91410A1C162611F1856AE4ABDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
165.49.83.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:fd:bd:00:60:1a:67:05:46:3e:29:33:e0:2b:e5:c9:72:5e:
96:a4:46:ac:3f:99:f8:b2:f9:8f:c8:ea:cd:07:73:82:92:1f:
3f:c5:3c:50:ad:13:26:98:f7:f1:a3:e8:6a:cd:fc:bb:a3:f1:
90:53:e4:66:ee:ba:32:1d:d5:f6:da:bf:32:7a:45:37:4e:f3:
1b:ba:c5:1d:a2:43:39:99:13:ea:62:a8:24:d9:31:4a:60:81:
d8:7d:d2:fc:b3:7c:9b:c9:d6:67:99:60:36:86:fe:af:d6:8b:
86:26:35:c5:11:db:56:b8:9e:90:18:00:bd:b8:1d:ca:1f:b8:
99:a2:b0:f5:57:6d:4d:92:ab:b4:f9:61:98:f3:c7:75:3f:18:
71:37:ab:b4:78:df:00:86:ef:a2:ed:78:f5:48:e1:7b:55:b6:
26:c4:10:80:1c:75:15:49:be:48:5b:64:21:9a:ec:11:01:1d:
2b:73:b5:98:8d:f2:ef:bd:dc:6a:9c:fb:94:a0:ed:ff:58:28:
e3:12:95:a1:85:34:dd:dc:28:ae:55:b6:14:fa:10:65:99:ce:
d3:a1:1f:1b:3e:67:fb:39:2b:98:b6:d0:3d:5f:a2:9a:16:fd:
57:34:e9:d9:6a:d8:b7:62:f3:9d:bf:a8:79:e7:ba:51:26:22:
86:16:f8:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 21 09:56:31 2026 by rpki-client