Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F365B85A/064EA7CC2E7011F18AC3E3CFDAE4EC9C/2AAA9520333B11F1A095B8F4CE1D38B0.roa
File: 2AAA9520333B11F1A095B8F4CE1D38B0.roa (raw, json)
Hash identifier: iGWhQjLBV4gCuWz829VmCD69SorXbM/Rbmjs5lg5s28=
Subject key identifier: 26:74:78:D1:BC:75:D7:55:92:13:00:BF:71:C3:13:46:14:F6:20:C5
Certificate issuer: /CN=F365B85AAR/serialNumber=CDCBC98E936513C684E2C8486A3CA20DE74653CA
Certificate serial: 08
Authority key identifier: CD:CB:C9:8E:93:65:13:C6:84:E2:C8:48:6A:3C:A2:0D:E7:46:53:CA
Authority info access: rsync://rpki.afrinic.net/repository/arin/zcvJjpNlE8aE4shIajyiDedGU8o.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F365B85A/064EA7CC2E7011F18AC3E3CFDAE4EC9C/2AAA9520333B11F1A095B8F4CE1D38B0.roa
Signing time: Wed 08 Apr 2026 11:07:44 +0000
ROA not before: Wed 08 Apr 2026 11:07:30 +0000
ROA not after: Sat 08 Apr 2028 11:07:30 +0000
asID: 37329
IP address blocks: 169.239.24.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F365B85A/064EA7CC2E7011F18AC3E3CFDAE4EC9C/zcvJjpNlE8aE4shIajyiDedGU8o.crl
rsync://rpki.afrinic.net/repository/member_repository/F365B85A/064EA7CC2E7011F18AC3E3CFDAE4EC9C/zcvJjpNlE8aE4shIajyiDedGU8o.mft
rsync://rpki.afrinic.net/repository/arin/zcvJjpNlE8aE4shIajyiDedGU8o.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 00:26:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8 (0x8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F365B85AAR, serialNumber=CDCBC98E936513C684E2C8486A3CA20DE74653CA
Validity
Not Before: Apr 8 11:07:30 2026 GMT
Not After : Apr 8 11:07:30 2028 GMT
Subject: CN=69d63700-4581
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:ac:3f:c5:1f:d0:13:b3:5b:db:39:3f:20:07:
3b:82:f6:c8:e9:5d:c3:91:00:7c:6e:5c:e1:27:16:
2f:b5:4e:94:d7:16:41:78:4c:ab:a9:54:da:a9:28:
be:a8:61:7b:0e:52:f3:7e:c1:5c:9c:b7:b7:e7:b8:
27:3c:ea:08:1f:84:6f:29:ef:ea:15:e7:16:2b:d7:
b4:16:e2:00:e9:a7:3d:8d:3a:7c:86:59:71:8b:c1:
64:3a:a2:bf:a0:2b:0f:3d:e9:35:f1:cc:50:18:62:
49:13:77:f6:d9:a0:55:84:15:fe:a1:3e:3a:f4:b1:
8f:2b:31:7f:a9:00:fa:b4:fa:5f:0a:fa:63:96:9a:
77:e3:e2:d3:fd:e2:e3:13:cc:a7:e1:33:dd:4f:fe:
ea:cc:06:50:26:4b:c5:37:60:09:e0:84:f5:a4:aa:
cb:91:e3:94:27:e5:01:57:a2:ec:fd:bb:a3:3f:74:
64:b1:7b:e5:0e:02:0c:cb:83:87:ec:5a:e2:df:78:
9b:87:61:07:0d:5c:03:1b:4a:77:27:b0:ef:7b:cf:
e8:27:f7:8d:44:07:20:bc:fa:88:5b:3c:76:47:86:
c4:40:7e:ef:5b:17:c6:cf:ec:6a:9e:15:d3:77:27:
88:30:96:0b:15:8d:bc:01:90:f5:48:d0:3f:b4:4d:
c1:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:74:78:D1:BC:75:D7:55:92:13:00:BF:71:C3:13:46:14:F6:20:C5
X509v3 Authority Key Identifier:
keyid:CD:CB:C9:8E:93:65:13:C6:84:E2:C8:48:6A:3C:A2:0D:E7:46:53:CA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F365B85A/064EA7CC2E7011F18AC3E3CFDAE4EC9C/zcvJjpNlE8aE4shIajyiDedGU8o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/zcvJjpNlE8aE4shIajyiDedGU8o.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F365B85A/064EA7CC2E7011F18AC3E3CFDAE4EC9C/2AAA9520333B11F1A095B8F4CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
169.239.24.0/22
Signature Algorithm: sha256WithRSAEncryption
a9:b9:31:f5:71:ed:6c:b4:39:a9:26:e5:23:e5:95:db:f1:4d:
4c:7f:80:96:b6:14:be:3e:51:86:9f:74:fd:cf:ee:4b:5a:9d:
58:d5:24:60:e5:a2:c8:0b:a8:b0:0f:ac:37:f5:1a:1e:bb:d4:
a2:5a:75:a4:e4:b5:76:00:8a:ee:60:8e:68:c6:7f:9f:8b:be:
50:f9:4c:5d:3b:89:da:a2:93:cc:1a:56:9e:54:19:c8:65:48:
50:95:7b:ed:c5:09:38:0f:47:bc:56:e4:69:73:b9:86:81:e8:
0d:05:31:77:d4:32:6e:3a:c7:fe:2e:e2:e3:2e:08:0b:f4:a8:
8b:30:83:12:f5:a8:1a:2b:09:4d:8d:da:ec:e7:11:f7:16:0b:
1f:9b:ac:dd:df:fa:5a:cb:b0:cb:f3:b8:45:31:38:86:c8:7e:
03:ce:2d:7e:b0:63:ce:17:f6:09:b5:06:37:d0:62:86:e3:b9:
9c:fb:c3:25:07:52:1c:ac:d2:4e:92:08:8e:98:80:2c:40:f8:
5b:52:68:50:21:ab:cf:4c:33:27:e3:fa:7f:aa:84:79:eb:25:
07:de:4c:77:fe:82:5f:e1:1a:91:e2:50:df:32:27:8c:f1:ad:
20:a4:38:0f:04:43:02:85:cf:a2:c6:f5:94:6f:c7:e4:de:16:
3b:09:56:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 12:43:29 2026 by rpki-client