Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36886B3/5A411F9EB8EF11EDA5B09DDAF1222468/005F57B0164411F1BAFF55DDDAE4EC9C.roa
File: 005F57B0164411F1BAFF55DDDAE4EC9C.roa (raw, json)
Hash identifier: FNAoTrUV+u0/qrkFEdnS32oasDVOtwHwST38Ns3Twkw=
Subject key identifier: 6B:5D:EE:0E:A4:43:37:F9:CB:9B:CE:CF:A5:D1:29:82:FA:F8:DF:CF
Certificate issuer: /CN=F36886B3AR/serialNumber=D9C0B233ACB063543574D3F5F327BEB8B2B99118
Certificate serial: 04A5
Authority key identifier: D9:C0:B2:33:AC:B0:63:54:35:74:D3:F5:F3:27:BE:B8:B2:B9:91:18
Authority info access: rsync://rpki.afrinic.net/repository/arin/2cCyM6ywY1Q1dNP18ye-uLK5kRg.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36886B3/5A411F9EB8EF11EDA5B09DDAF1222468/005F57B0164411F1BAFF55DDDAE4EC9C.roa
Signing time: Mon 02 Mar 2026 14:27:54 +0000
ROA not before: Mon 02 Mar 2026 14:27:50 +0000
ROA not after: Sat 02 Mar 2030 14:27:50 +0000
asID: 33763
IP address blocks: 160.242.120.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36886B3/5A411F9EB8EF11EDA5B09DDAF1222468/2cCyM6ywY1Q1dNP18ye-uLK5kRg.crl
rsync://rpki.afrinic.net/repository/member_repository/F36886B3/5A411F9EB8EF11EDA5B09DDAF1222468/2cCyM6ywY1Q1dNP18ye-uLK5kRg.mft
rsync://rpki.afrinic.net/repository/arin/2cCyM6ywY1Q1dNP18ye-uLK5kRg.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 04 Mar 2026 00:26:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1189 (0x4a5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36886B3AR, serialNumber=D9C0B233ACB063543574D3F5F327BEB8B2B99118
Validity
Not Before: Mar 2 14:27:50 2026 GMT
Not After : Mar 2 14:27:50 2030 GMT
Subject: CN=69a59e6a-0319
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:d0:a5:e5:61:ed:a5:81:92:f2:de:3e:43:3a:
59:3c:14:6b:6f:da:da:cb:be:f5:e4:f3:cb:47:f1:
9e:69:34:61:f2:50:a5:50:3c:d3:f0:13:f0:33:fc:
22:af:d2:cd:12:a4:67:bd:1a:12:6f:d2:85:bf:e4:
ea:69:42:e2:67:00:e2:33:5c:00:06:55:6c:87:2e:
95:3c:9a:dd:59:b1:01:6c:6c:dd:66:92:41:e5:f9:
0f:42:20:50:18:45:4f:43:9d:1d:5f:06:cb:19:3d:
43:9a:fe:44:44:29:d7:28:28:cd:dc:44:0a:03:f2:
00:fb:09:93:5b:92:66:e5:bf:0f:57:e5:9a:16:4f:
cc:85:86:66:fd:13:25:fa:9c:18:b2:e9:f1:0d:4d:
17:ce:9d:c8:7e:1e:b7:e0:ab:1f:16:45:67:2a:3d:
77:43:07:4b:4c:be:9b:be:eb:56:7c:15:95:05:16:
a0:78:a9:80:4b:8c:d8:01:4d:24:7e:67:c0:19:bc:
76:c2:74:50:d5:c0:c1:02:f3:21:a6:08:92:a1:1d:
12:b5:1c:4e:7d:2b:a5:b3:7d:c5:94:83:69:74:4e:
e2:5d:a8:0a:21:b3:d5:eb:d9:31:de:35:7c:ae:1d:
53:9d:5f:e3:3a:76:2c:33:7b:79:e2:8b:27:cc:c2:
e0:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:5D:EE:0E:A4:43:37:F9:CB:9B:CE:CF:A5:D1:29:82:FA:F8:DF:CF
X509v3 Authority Key Identifier:
keyid:D9:C0:B2:33:AC:B0:63:54:35:74:D3:F5:F3:27:BE:B8:B2:B9:91:18
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36886B3/5A411F9EB8EF11EDA5B09DDAF1222468/2cCyM6ywY1Q1dNP18ye-uLK5kRg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/2cCyM6ywY1Q1dNP18ye-uLK5kRg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36886B3/5A411F9EB8EF11EDA5B09DDAF1222468/005F57B0164411F1BAFF55DDDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.242.120.0/21
Signature Algorithm: sha256WithRSAEncryption
bf:fc:e9:33:62:34:07:9a:00:35:57:9f:55:e6:7c:7e:e8:b3:
21:87:64:44:d4:cd:6c:f6:f0:8a:32:23:a9:33:d7:6c:40:85:
a1:71:0d:c0:ca:bb:ba:2b:f6:78:8f:de:d4:19:db:9c:74:2a:
aa:56:2c:4d:95:af:66:48:d9:d8:5f:71:02:0b:93:69:06:a7:
59:3a:0e:28:2a:3b:df:4d:5d:09:ca:a2:01:87:cd:f6:96:bc:
9d:98:2b:83:b4:cc:75:8c:01:69:6a:61:f2:7d:f4:77:59:8c:
b8:6d:92:e8:0f:24:ee:67:4e:b1:e1:f4:78:dc:12:00:9a:6c:
55:7b:96:97:67:54:ed:c3:43:53:e2:7a:24:73:c6:8a:9e:4d:
ab:f5:31:88:aa:e9:4e:1f:ce:ad:ac:f0:97:90:19:f0:81:ea:
eb:b0:df:38:09:61:57:82:a2:2f:ed:19:05:2b:27:7c:3c:fc:
9a:25:14:6b:96:8a:63:fe:a2:c5:b3:55:5e:b0:49:95:94:10:
2c:72:24:f2:22:80:a8:8d:2d:a2:76:a8:65:14:6e:5c:b9:e6:
ca:69:8e:d8:af:af:f5:6f:d8:75:78:ff:75:c3:5a:81:14:a6:
0b:a8:20:68:31:5f:96:5c:a2:31:a8:a2:42:8c:90:58:c3:b7:
72:08:e9:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 3 01:49:23 2026 by rpki-client