Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/D3271EC2478011F1B18291AFCE1D38B0.roa
File: D3271EC2478011F1B18291AFCE1D38B0.roa (raw, json)
Hash identifier: AH/2JpifQ3t7joIpA0umqkDWAKjpeJG+WdcsX0PFXF8=
Subject key identifier: 27:24:31:01:72:0E:05:13:E0:94:52:51:66:3C:4D:DA:65:66:3E:DC
Certificate issuer: /CN=F36A44EAAR/serialNumber=F85BB49854392228FB8B30DB05D96AC664CE83AB
Certificate serial: 0BB1
Authority key identifier: F8:5B:B4:98:54:39:22:28:FB:8B:30:DB:05:D9:6A:C6:64:CE:83:AB
Authority info access: rsync://rpki.afrinic.net/repository/arin/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/D3271EC2478011F1B18291AFCE1D38B0.roa
Signing time: Mon 04 May 2026 06:16:45 +0000
ROA not before: Mon 04 May 2026 06:16:40 +0000
ROA not after: Wed 31 Dec 2036 06:16:40 +0000
asID: 834
IP address blocks: 165.49.110.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.crl
rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.mft
rsync://rpki.afrinic.net/repository/arin/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 07 May 2026 00:26:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2993 (0xbb1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36A44EAAR, serialNumber=F85BB49854392228FB8B30DB05D96AC664CE83AB
Validity
Not Before: May 4 06:16:40 2026 GMT
Not After : Dec 31 06:16:40 2036 GMT
Subject: CN=69f839cd-72b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:1b:24:d7:e1:74:45:63:f6:8c:9b:c1:6f:57:
4d:6b:f7:8a:b9:63:83:1f:bf:53:5c:d7:7d:c3:9d:
50:dc:66:0e:38:89:90:e6:f0:70:8b:80:7b:87:81:
2b:d4:b0:02:36:1d:53:ee:59:9e:d6:a2:ee:5b:99:
8d:82:aa:e5:25:75:5c:85:9a:de:fd:d1:d7:4a:3a:
dc:43:50:1a:24:17:f4:c1:f0:f5:d2:62:8f:54:07:
73:98:45:86:5b:ff:bc:1e:df:38:e0:ce:fa:ab:86:
2d:1e:99:81:cb:af:ea:81:d9:0a:32:9f:04:ec:05:
09:e0:ea:4e:42:2e:a3:73:80:c2:82:c6:3e:39:68:
bc:48:c1:5e:4a:5a:f8:58:4e:e4:be:03:d8:bf:22:
a7:87:18:e6:9d:4d:83:4c:ff:a7:fe:8d:47:a5:bb:
40:a9:29:51:a5:4a:96:5f:d6:df:46:07:cf:43:95:
ee:9a:9e:af:6e:22:df:0c:6c:6c:34:cf:ca:5d:d8:
8b:ae:3f:40:28:7e:33:8f:a6:48:88:cf:10:62:4b:
fd:e9:d2:74:9f:c0:c7:64:bb:27:1e:d2:18:af:d1:
e8:73:c4:fb:d7:8d:65:86:97:50:83:20:34:f9:f9:
7d:08:4b:1e:cb:da:52:8b:c0:01:2a:58:42:f8:0a:
51:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:24:31:01:72:0E:05:13:E0:94:52:51:66:3C:4D:DA:65:66:3E:DC
X509v3 Authority Key Identifier:
keyid:F8:5B:B4:98:54:39:22:28:FB:8B:30:DB:05:D9:6A:C6:64:CE:83:AB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/D3271EC2478011F1B18291AFCE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
165.49.110.0/24
Signature Algorithm: sha256WithRSAEncryption
06:98:f8:f4:71:59:fe:11:c5:e8:89:85:ce:5a:0e:78:b1:09:
00:a5:b6:07:c5:85:e7:99:8b:55:98:eb:4d:e1:ae:43:13:fe:
f9:e4:a5:2a:6c:cd:67:a9:cd:f3:4f:3b:59:c7:aa:9a:0d:ff:
c4:0d:e9:31:54:86:4f:b6:38:df:56:97:0d:a2:e8:63:c9:11:
b5:39:b1:db:38:f3:6e:a9:e7:85:89:6a:b7:ff:31:83:c0:75:
45:e9:a8:23:5b:6c:60:84:fa:e1:2d:e6:cc:c5:50:bf:cc:c4:
2c:2c:8e:41:a7:9d:b0:8a:7e:ad:ae:60:54:05:d9:7c:c8:a3:
ae:dc:af:30:21:46:99:86:63:5c:da:51:84:23:a7:85:7a:9b:
a5:ed:ba:12:51:c9:e0:f7:e7:a3:97:93:69:15:b6:71:9e:a6:
24:ad:90:25:0f:0d:22:af:e0:fa:27:a1:91:10:73:7a:9e:53:
50:dd:2d:ed:d8:a7:73:f6:9b:91:4b:2c:f2:c2:85:5b:64:22:
50:6d:d0:eb:09:64:72:93:66:7c:07:12:92:d0:5a:44:4d:30:
c4:3d:14:8d:d3:16:6d:04:8e:d1:5f:be:ec:2d:1f:74:67:c9:
d1:03:e7:5f:81:50:06:9e:40:7b:cd:99:de:6a:e9:e9:98:0d:
3d:a6:f0:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 5 21:21:17 2026 by rpki-client