Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36852F0/C35834EC825811F08AF34E8CDAE4EC9C/FD63E742542D11F1B1186BC0CE1D38B0.roa
File: FD63E742542D11F1B1186BC0CE1D38B0.roa (raw, json)
Hash identifier: fxenuwc8NyJlxjY3DT8FzVGfGv8t70BydAqVxj3Y6hI=
Subject key identifier: 61:6D:D4:17:8C:E9:11:85:AD:11:9F:CA:F4:1E:6D:79:9E:9D:80:18
Certificate issuer: /CN=F36852F0AR/serialNumber=980341CA63283FDC642E783C45583EA46442331B
Certificate serial: 0116
Authority key identifier: 98:03:41:CA:63:28:3F:DC:64:2E:78:3C:45:58:3E:A4:64:42:33:1B
Authority info access: rsync://rpki.afrinic.net/repository/arin/mANBymMoP9xkLng8RVg-pGRCMxs.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36852F0/C35834EC825811F08AF34E8CDAE4EC9C/FD63E742542D11F1B1186BC0CE1D38B0.roa
Signing time: Wed 20 May 2026 09:26:33 +0000
ROA not before: Wed 20 May 2026 09:26:28 +0000
ROA not after: Tue 20 May 2036 09:26:28 +0000
asID: 329118
IP address blocks: 169.239.148.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36852F0/C35834EC825811F08AF34E8CDAE4EC9C/mANBymMoP9xkLng8RVg-pGRCMxs.crl
rsync://rpki.afrinic.net/repository/member_repository/F36852F0/C35834EC825811F08AF34E8CDAE4EC9C/mANBymMoP9xkLng8RVg-pGRCMxs.mft
rsync://rpki.afrinic.net/repository/arin/mANBymMoP9xkLng8RVg-pGRCMxs.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 15 Jun 2026 00:26:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 278 (0x116)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36852F0AR, serialNumber=980341CA63283FDC642E783C45583EA46442331B
Validity
Not Before: May 20 09:26:28 2026 GMT
Not After : May 20 09:26:28 2036 GMT
Subject: CN=6a0d7e49-bac6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:03:aa:90:c1:d3:72:5f:92:e5:e0:af:48:08:
05:aa:4b:1c:b3:cb:df:8a:0a:41:10:ba:e3:30:ec:
84:3a:34:55:5d:09:ec:33:b2:0c:7a:bb:28:ee:de:
81:c8:63:9a:41:af:90:52:09:fd:c4:5f:e0:73:23:
12:9c:1d:30:9a:18:5e:25:a4:34:8d:ff:39:9f:4d:
d2:1e:11:50:ed:36:c8:8c:34:d2:cd:1a:8c:d3:35:
20:67:8d:d3:e1:3b:58:de:39:78:49:da:01:7a:07:
1d:f2:2a:2e:de:4b:80:71:d2:28:ea:b8:54:91:ff:
c2:48:9d:70:4a:18:68:9d:38:11:99:8b:fd:f5:29:
33:ec:fc:e5:98:07:33:30:f2:55:86:21:9a:c9:bf:
77:9c:d1:02:34:57:9d:c2:7e:3c:63:d7:18:3f:05:
27:94:ae:95:73:26:f0:38:25:fa:ea:43:3a:d6:f6:
9b:a7:ce:54:96:7f:7b:6b:7b:1b:24:89:71:27:1d:
58:12:65:f7:7e:e9:bc:ef:08:c6:4e:d5:38:71:f1:
4e:bd:50:cb:77:40:26:af:4a:de:c4:65:6f:18:d7:
2b:6d:11:bd:0e:1c:89:cd:df:14:7f:41:46:ea:19:
1a:8e:ff:f9:61:42:f1:46:78:fb:25:71:0d:be:30:
28:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:6D:D4:17:8C:E9:11:85:AD:11:9F:CA:F4:1E:6D:79:9E:9D:80:18
X509v3 Authority Key Identifier:
keyid:98:03:41:CA:63:28:3F:DC:64:2E:78:3C:45:58:3E:A4:64:42:33:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36852F0/C35834EC825811F08AF34E8CDAE4EC9C/mANBymMoP9xkLng8RVg-pGRCMxs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/mANBymMoP9xkLng8RVg-pGRCMxs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36852F0/C35834EC825811F08AF34E8CDAE4EC9C/FD63E742542D11F1B1186BC0CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
169.239.148.0/22
Signature Algorithm: sha256WithRSAEncryption
87:90:9d:f2:63:e6:16:56:c1:88:3b:21:74:d4:cf:eb:4e:62:
8e:e5:53:14:7a:1d:54:64:e3:c0:8f:df:9a:17:7b:a3:5a:7d:
2b:59:cd:e8:eb:0c:8f:3c:8a:7f:64:2a:cb:7d:4d:3d:66:89:
93:e6:70:ac:27:7e:3e:7f:8f:fe:71:93:f6:ff:a3:4e:1d:c5:
98:3b:50:19:af:09:61:74:42:d7:44:f2:7b:a2:37:4c:0d:0a:
42:92:16:5a:d5:1b:45:28:ce:fc:b7:b2:aa:9d:12:6f:ff:3f:
ee:93:5a:45:93:cf:2a:a7:3f:f0:9a:61:a0:6e:f4:18:89:58:
17:ab:ca:b1:2d:b3:ad:f5:14:cf:6d:58:af:b2:2d:f7:6a:c3:
37:a4:80:6d:8b:42:b2:6f:a8:ef:bc:e0:62:45:b8:c8:ea:3c:
a2:f2:16:18:91:5c:57:c6:92:9c:27:6f:37:34:6c:4a:5c:fc:
9d:7e:98:1b:4f:da:51:d3:cb:9b:55:02:2e:9d:7a:18:04:a5:
d2:45:bb:b3:d4:d6:aa:83:8b:fb:30:40:da:b4:db:28:e6:cd:
b2:3d:a4:1f:a3:92:f5:88:76:3b:a4:9e:9b:f5:92:65:d1:f2:
86:8f:96:cc:bc:18:d7:5e:38:27:8a:b5:a6:85:e7:89:ed:f0:
46:78:b9:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 13:10:52 2026 by rpki-client