Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/DF39DB40732311F1B754B4C2CE1D38B0.roa
File: DF39DB40732311F1B754B4C2CE1D38B0.roa (raw, json)
Hash identifier: 8sVkeknwVFe24mDKc6PC79AEWImqvwQb8NED/aoe6hY=
Subject key identifier: 9A:F3:EC:B2:CE:13:5F:1C:E3:A2:F7:01:F6:22:84:5A:FF:38:87:2B
Certificate issuer: /CN=F36A44EAAR/serialNumber=F85BB49854392228FB8B30DB05D96AC664CE83AB
Certificate serial: 0C41
Authority key identifier: F8:5B:B4:98:54:39:22:28:FB:8B:30:DB:05:D9:6A:C6:64:CE:83:AB
Authority info access: rsync://rpki.afrinic.net/repository/arin/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/DF39DB40732311F1B754B4C2CE1D38B0.roa
Signing time: Sun 28 Jun 2026 19:02:13 +0000
ROA not before: Sun 28 Jun 2026 19:02:09 +0000
ROA not after: Wed 31 Dec 2036 19:02:09 +0000
asID: 834
IP address blocks: 165.49.79.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.crl
rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.mft
rsync://rpki.afrinic.net/repository/arin/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 01 Jul 2026 00:26:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3137 (0xc41)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36A44EAAR, serialNumber=F85BB49854392228FB8B30DB05D96AC664CE83AB
Validity
Not Before: Jun 28 19:02:09 2026 GMT
Not After : Dec 31 19:02:09 2036 GMT
Subject: CN=6a416fb5-18ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:0a:d5:36:ac:2f:80:f7:ce:de:41:ca:3e:a3:
b7:c4:72:52:56:13:09:26:8f:b8:cb:f2:3a:96:75:
eb:28:12:7b:6e:ed:18:be:5b:71:64:8f:9d:ad:75:
ca:ac:04:02:ab:97:95:c3:23:54:50:86:e1:b7:97:
75:9c:e2:cc:b1:5c:83:d0:46:c7:af:f2:45:5b:56:
d6:d3:8d:24:d3:1d:da:36:2e:d4:ef:66:1e:19:cb:
01:5b:c8:a0:b3:5f:fa:db:8e:09:b6:4b:e8:53:29:
13:0d:7b:63:0a:a5:2f:4c:ca:cb:82:a2:bf:d3:86:
64:a7:03:2d:63:fb:9e:74:4c:cc:4b:a2:dd:ff:25:
6a:e7:59:d2:45:5c:89:15:fb:73:51:82:09:69:33:
24:99:3a:fa:03:08:95:01:17:c0:76:1d:c2:38:8b:
dc:4a:fa:f5:a7:39:df:1e:9f:c6:44:1c:44:59:c9:
58:8d:63:4a:f8:fc:93:61:33:aa:ef:a8:b0:84:62:
a3:67:ef:6f:38:4b:0a:0e:37:48:8d:79:cd:80:05:
2e:d9:fa:cd:d9:ea:f1:d3:2e:01:36:47:69:d3:0b:
1e:f7:cb:88:39:95:e6:80:16:ec:87:22:6a:51:e0:
9d:f0:2a:05:82:8d:cb:83:8b:23:f3:b5:f8:b6:fc:
7a:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:F3:EC:B2:CE:13:5F:1C:E3:A2:F7:01:F6:22:84:5A:FF:38:87:2B
X509v3 Authority Key Identifier:
keyid:F8:5B:B4:98:54:39:22:28:FB:8B:30:DB:05:D9:6A:C6:64:CE:83:AB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/DF39DB40732311F1B754B4C2CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
165.49.79.0/24
Signature Algorithm: sha256WithRSAEncryption
a3:13:27:d1:b5:c3:2f:62:d7:cd:e6:ef:44:8d:68:03:52:f2:
23:3a:dc:e8:f9:b1:a1:18:e8:66:67:f3:cd:08:46:ac:b9:b4:
37:d7:98:af:36:60:cb:7f:08:7b:1d:38:68:aa:f1:3c:5a:1a:
3b:67:37:48:35:f8:23:71:c2:df:90:33:3c:17:06:bd:da:72:
24:a7:d9:b9:74:a9:b1:f5:31:7e:31:60:5c:b0:97:b2:33:5e:
5b:a7:63:a6:4e:a1:b1:12:9b:bd:49:69:84:4c:21:0b:a9:27:
1a:66:d2:5d:45:45:a1:a0:d7:47:48:e3:76:6e:63:ab:09:e5:
94:dd:0c:70:81:14:1f:29:59:f0:c7:d0:c3:63:fa:dc:46:a7:
13:0b:81:39:b1:40:ce:9a:c2:99:4a:f3:17:e8:31:e1:95:41:
59:d9:4e:f9:21:97:17:98:17:27:60:80:1c:10:b3:31:dc:4d:
b5:58:a3:ad:4d:d0:ea:5f:4d:8f:37:67:c0:b1:cb:f6:d1:c7:
f1:dd:0b:a6:a3:6e:22:ea:a0:90:ca:2e:0c:38:ec:6d:b9:56:
bd:4a:e5:67:f8:40:ce:e3:b8:48:a7:9b:64:a1:b3:16:cd:cf:
b2:8f:fa:4c:e7:4e:e8:ce:97:56:13:50:85:51:ec:1b:7c:1c:
3c:ad:2f:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 29 10:00:07 2026 by rpki-client