Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/A1FA7CF8732311F1B69115BFCE1D38B0.roa
File: A1FA7CF8732311F1B69115BFCE1D38B0.roa (raw, json)
Hash identifier: URbenCMnlietDPYuPADTwAYWiSI4pzF1QlYTWVI01Es=
Subject key identifier: A5:F4:14:AE:B3:3E:5E:F3:D3:A5:A8:34:70:12:43:2D:42:E9:6F:DD
Certificate issuer: /CN=F36A44EAAR/serialNumber=F85BB49854392228FB8B30DB05D96AC664CE83AB
Certificate serial: 0C3E
Authority key identifier: F8:5B:B4:98:54:39:22:28:FB:8B:30:DB:05:D9:6A:C6:64:CE:83:AB
Authority info access: rsync://rpki.afrinic.net/repository/arin/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/A1FA7CF8732311F1B69115BFCE1D38B0.roa
Signing time: Sun 28 Jun 2026 19:00:31 +0000
ROA not before: Sun 28 Jun 2026 19:00:26 +0000
ROA not after: Wed 31 Dec 2036 19:00:26 +0000
asID: 834
IP address blocks: 165.49.229.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.crl
rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.mft
rsync://rpki.afrinic.net/repository/arin/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 01 Jul 2026 00:26:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3134 (0xc3e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36A44EAAR, serialNumber=F85BB49854392228FB8B30DB05D96AC664CE83AB
Validity
Not Before: Jun 28 19:00:26 2026 GMT
Not After : Dec 31 19:00:26 2036 GMT
Subject: CN=6a416f4f-67d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:e4:47:a9:f5:be:2d:d0:c9:95:01:b9:48:15:
f8:03:06:42:fc:df:da:03:78:b7:15:df:4d:0a:70:
59:8e:12:55:bf:7e:29:e7:e0:4d:44:23:88:15:f5:
b7:22:03:d1:e4:4c:88:16:d9:dc:71:86:cf:11:f7:
56:66:3e:6f:37:68:48:4e:48:87:6a:78:3a:a1:2d:
ce:d3:54:62:cd:df:6c:fc:7b:c5:ab:07:37:9d:56:
52:cb:43:d7:32:4d:e8:b7:38:12:34:2c:59:55:5d:
05:52:15:57:ae:35:97:21:57:ff:1e:d2:be:02:cd:
e0:e9:76:24:0f:d6:b2:35:3b:62:3c:3b:2e:1c:04:
e3:39:99:c8:81:a7:d2:63:84:4d:cb:d6:56:c9:b2:
15:0f:f6:28:6d:58:f0:07:ca:45:f1:a5:4b:f5:68:
a8:ea:de:38:ad:b9:33:d9:3a:4b:6a:45:2e:17:b8:
01:86:99:88:d1:6e:c0:87:09:88:5a:c6:01:77:91:
ba:3e:7c:85:c8:0b:16:7c:d4:97:aa:7e:df:ce:47:
f3:0c:20:0c:e0:d1:16:5c:0e:d6:d3:6a:4b:b4:0e:
ce:e5:a4:d3:f8:8f:9c:40:a2:29:e6:f2:35:30:d7:
fa:4c:de:bd:86:62:98:5d:b4:03:34:12:b9:e7:b9:
c4:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:F4:14:AE:B3:3E:5E:F3:D3:A5:A8:34:70:12:43:2D:42:E9:6F:DD
X509v3 Authority Key Identifier:
keyid:F8:5B:B4:98:54:39:22:28:FB:8B:30:DB:05:D9:6A:C6:64:CE:83:AB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/A1FA7CF8732311F1B69115BFCE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
165.49.229.0/24
Signature Algorithm: sha256WithRSAEncryption
c8:05:83:2c:9a:63:80:98:db:3c:29:cd:ef:ab:a1:1d:26:64:
c4:40:b9:04:15:43:b5:4a:b6:08:36:13:1c:44:30:2d:21:ec:
da:1b:e2:46:fc:84:bb:4d:0a:7c:05:b8:4e:0f:3a:1c:91:4b:
3c:9b:33:bd:c1:76:42:48:4f:10:62:d3:18:3b:87:ac:00:7c:
14:b9:5f:3d:5a:4d:bb:4e:72:4c:49:2d:8f:5e:26:b6:71:3d:
67:79:6a:cc:fc:5c:ed:dc:cc:41:2b:93:fe:db:16:7c:e1:80:
29:bb:87:98:b5:62:4b:a0:04:f7:f6:e5:ee:74:bd:cf:e9:38:
41:8b:7a:74:c6:fb:36:d6:6b:c4:dc:7e:59:a8:8b:19:7a:f3:
a9:e7:94:7f:7c:46:ad:3d:8d:77:67:b2:f0:58:60:61:14:84:
be:e7:65:c4:eb:bb:02:f4:41:e6:92:0e:2a:bc:c7:7a:fc:2a:
51:b8:de:eb:c2:93:e6:e0:e8:f8:90:11:d5:01:a1:26:52:80:
1e:eb:d1:77:42:3a:a7:93:07:12:75:71:bc:93:e6:53:d4:c0:
04:cf:9a:96:9a:db:2c:48:5d:a9:8e:44:66:5e:42:42:e4:3c:
ff:3d:56:3a:44:84:cb:87:aa:4e:30:ec:9c:45:46:df:a1:f0:
24:2b:64:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 29 10:00:28 2026 by rpki-client