Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/B2420270211B11F194B1B8D8DAE4EC9C.roa
File: B2420270211B11F194B1B8D8DAE4EC9C.roa (raw, json)
Hash identifier: 3r9eZWVeG9zoidRVcbdFqKj2JATDWJzDicAnUZwVN/M=
Subject key identifier: 37:DE:C2:7C:14:89:17:34:2C:C2:94:10:F8:3B:01:62:6B:0D:A3:41
Certificate issuer: /CN=F36A44EAAR/serialNumber=F85BB49854392228FB8B30DB05D96AC664CE83AB
Certificate serial: 0B3B
Authority key identifier: F8:5B:B4:98:54:39:22:28:FB:8B:30:DB:05:D9:6A:C6:64:CE:83:AB
Authority info access: rsync://rpki.afrinic.net/repository/arin/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/B2420270211B11F194B1B8D8DAE4EC9C.roa
Signing time: Mon 16 Mar 2026 09:37:07 +0000
ROA not before: Mon 16 Mar 2026 09:37:02 +0000
ROA not after: Wed 31 Dec 2036 09:37:02 +0000
asID: 6079
IP address blocks: 165.49.197.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.crl
rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.mft
rsync://rpki.afrinic.net/repository/arin/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 23 Mar 2026 00:26:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2875 (0xb3b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36A44EAAR, serialNumber=F85BB49854392228FB8B30DB05D96AC664CE83AB
Validity
Not Before: Mar 16 09:37:02 2026 GMT
Not After : Dec 31 09:37:02 2036 GMT
Subject: CN=69b7cf43-0e25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:f3:a0:5b:84:2c:d3:73:2b:5e:ce:65:40:10:
86:f5:61:aa:4e:86:39:95:8d:24:84:95:1b:83:a3:
37:04:42:07:8a:a0:48:ab:55:cd:d1:21:b0:0d:87:
f1:11:0e:1a:a8:da:0c:2f:db:e3:71:15:ae:75:01:
43:9b:15:53:c5:82:57:03:10:77:7d:0f:f6:8a:02:
d6:a4:e8:9d:b4:b8:80:84:4a:56:a7:7c:08:28:ed:
e5:93:98:97:b2:77:f5:36:ee:aa:36:dc:4a:85:33:
7f:63:01:a7:6c:05:5d:51:f6:7d:9f:e4:b4:9e:5a:
d7:ef:ae:8b:bc:0b:9d:95:e6:bf:45:bb:2d:d5:c0:
a4:c5:5f:78:79:67:0d:53:d0:7d:1d:c0:de:99:d6:
68:54:4b:18:7b:eb:1c:98:cb:64:2a:70:91:80:ad:
0e:48:aa:86:b5:c2:e4:f3:6d:96:09:2d:5f:d2:1f:
cb:ce:ab:5a:73:f1:1e:5e:48:e6:df:bf:a7:4b:6c:
a3:87:7f:51:a3:86:6a:30:41:cc:a3:85:92:6e:c8:
6c:63:ae:cb:ff:77:8e:73:72:81:1a:e7:e4:5d:4b:
5a:9c:a9:40:e1:3f:ce:f0:6a:00:d8:26:23:a5:85:
dc:da:cf:cd:cf:f4:43:a0:4b:f3:37:e5:65:9a:36:
59:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:DE:C2:7C:14:89:17:34:2C:C2:94:10:F8:3B:01:62:6B:0D:A3:41
X509v3 Authority Key Identifier:
keyid:F8:5B:B4:98:54:39:22:28:FB:8B:30:DB:05:D9:6A:C6:64:CE:83:AB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/B2420270211B11F194B1B8D8DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
165.49.197.0/24
Signature Algorithm: sha256WithRSAEncryption
00:06:00:52:11:1b:b0:2a:3c:fe:35:6f:a9:6f:b2:cc:22:83:
9c:de:7f:f2:63:a5:73:d4:c6:61:b8:92:59:41:ef:91:40:79:
7a:e7:8f:72:fd:8d:50:28:a0:09:16:87:9c:69:dd:3a:6e:0e:
bf:70:67:7b:8a:8b:a3:3f:9d:f7:0b:db:c4:dd:63:26:1b:ff:
e0:d2:5a:57:2c:f1:42:68:fc:44:0c:5d:1e:44:f4:a4:8d:9c:
23:03:4c:30:dd:65:58:7e:01:25:b3:a0:5f:0c:27:2b:47:79:
50:20:0b:bb:68:6a:b8:40:e6:c8:ce:37:ae:51:b2:40:d1:cd:
5c:e2:bb:7c:14:93:a6:9e:d8:71:a9:ce:03:34:72:7d:9a:05:
8b:40:3a:24:04:24:9f:be:d1:85:d0:f1:57:9e:f8:58:83:e9:
86:1c:4a:27:60:89:f8:fa:77:c7:41:3a:b4:fe:8f:a9:32:e2:
73:05:47:1b:26:dc:87:d0:83:fc:fa:41:09:04:1a:a8:91:86:
9c:25:32:b7:b6:b1:cc:98:b1:86:46:43:e0:14:8a:22:d9:f7:
27:f2:bd:94:01:56:a2:44:60:ad:d8:1e:63:f9:6c:31:f2:40:
49:3b:b5:8d:a1:83:1a:ea:7c:ec:a4:fb:c6:20:bb:9c:a9:ec:
5a:40:78:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 21 10:03:57 2026 by rpki-client