Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36886B3/5A411F9EB8EF11EDA5B09DDAF1222468/4C318CCA164A11F19A859484DAE4EC9C.roa
File: 4C318CCA164A11F19A859484DAE4EC9C.roa (raw, json)
Hash identifier: Fi5vn1JhkR8Vqf8Cp06SqG2EQ+vwVXe6FRuFoKYg4pc=
Subject key identifier: 99:03:4F:9A:7A:E9:A5:64:40:44:39:55:12:51:34:19:57:6A:AA:F0
Certificate issuer: /CN=F36886B3AR/serialNumber=D9C0B233ACB063543574D3F5F327BEB8B2B99118
Certificate serial: 04C8
Authority key identifier: D9:C0:B2:33:AC:B0:63:54:35:74:D3:F5:F3:27:BE:B8:B2:B9:91:18
Authority info access: rsync://rpki.afrinic.net/repository/arin/2cCyM6ywY1Q1dNP18ye-uLK5kRg.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36886B3/5A411F9EB8EF11EDA5B09DDAF1222468/4C318CCA164A11F19A859484DAE4EC9C.roa
Signing time: Mon 02 Mar 2026 15:12:59 +0000
ROA not before: Mon 02 Mar 2026 15:12:54 +0000
ROA not after: Sat 02 Mar 2030 15:12:54 +0000
asID: 33763
IP address blocks: 160.242.41.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36886B3/5A411F9EB8EF11EDA5B09DDAF1222468/2cCyM6ywY1Q1dNP18ye-uLK5kRg.crl
rsync://rpki.afrinic.net/repository/member_repository/F36886B3/5A411F9EB8EF11EDA5B09DDAF1222468/2cCyM6ywY1Q1dNP18ye-uLK5kRg.mft
rsync://rpki.afrinic.net/repository/arin/2cCyM6ywY1Q1dNP18ye-uLK5kRg.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 04 Mar 2026 00:26:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1224 (0x4c8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36886B3AR, serialNumber=D9C0B233ACB063543574D3F5F327BEB8B2B99118
Validity
Not Before: Mar 2 15:12:54 2026 GMT
Not After : Mar 2 15:12:54 2030 GMT
Subject: CN=69a5a8fb-0d46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:50:1c:65:a4:88:f9:04:f9:59:48:bb:7b:da:
82:d6:f6:99:ab:96:35:74:c4:90:dc:8e:fc:3c:c4:
3f:8c:e6:42:7d:ff:af:f8:2b:cf:67:37:e4:7a:9b:
1b:c1:f3:87:16:f2:e5:4c:2b:85:ad:74:ed:29:13:
5a:fc:61:e1:45:5d:b5:0d:3d:3c:0a:4a:e0:5a:ad:
79:b1:fc:14:33:dc:66:8e:2b:5c:67:cd:d2:1b:50:
60:92:0a:86:e9:93:0b:27:26:d0:e6:81:58:d3:c9:
82:70:ea:3f:d5:a7:e7:3f:b9:dc:b0:2e:54:18:45:
c2:3b:fa:42:25:82:8c:37:48:7f:e9:0d:d0:13:9e:
1d:36:33:3d:97:ed:08:38:e2:66:94:eb:a1:47:83:
9c:d1:d0:24:8c:fb:18:23:f1:b4:c2:ca:26:64:3e:
0e:b5:c7:0e:34:d2:86:d2:8f:8c:e8:22:92:ef:91:
ed:28:e0:da:b7:59:11:84:24:d2:5c:58:ab:6a:90:
a9:6e:45:38:79:72:df:4d:3d:75:1e:e1:d2:38:1c:
71:4d:fe:b3:b7:57:b2:4b:3b:1b:b7:cf:41:e8:e4:
ad:9d:56:68:96:33:29:8d:c4:2e:fb:c3:86:36:55:
9f:db:69:7d:b5:1c:d4:c0:43:ce:b9:4e:e4:9d:bb:
8e:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:03:4F:9A:7A:E9:A5:64:40:44:39:55:12:51:34:19:57:6A:AA:F0
X509v3 Authority Key Identifier:
keyid:D9:C0:B2:33:AC:B0:63:54:35:74:D3:F5:F3:27:BE:B8:B2:B9:91:18
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36886B3/5A411F9EB8EF11EDA5B09DDAF1222468/2cCyM6ywY1Q1dNP18ye-uLK5kRg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/2cCyM6ywY1Q1dNP18ye-uLK5kRg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36886B3/5A411F9EB8EF11EDA5B09DDAF1222468/4C318CCA164A11F19A859484DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.242.41.0/24
Signature Algorithm: sha256WithRSAEncryption
b7:a2:49:7d:ce:1f:79:4c:21:5b:e6:50:40:02:e7:96:5c:c7:
1b:51:a8:ca:67:b0:36:37:29:0b:f6:3f:62:e3:81:66:98:19:
1f:f4:18:33:fd:0b:02:22:68:1b:b0:ec:3b:23:2a:e9:0e:1d:
2a:c6:1f:98:fe:fe:74:6b:5f:3a:71:7b:03:21:14:ff:10:26:
ca:b2:1b:3f:05:0b:36:ea:8d:96:b4:1e:4f:ff:28:34:73:62:
25:29:ed:f0:0f:a9:48:74:0c:25:ff:c3:7d:9e:c3:ff:7e:c0:
63:6e:cc:43:11:98:04:96:ae:ed:bb:af:85:2e:50:16:40:46:
de:1f:65:c8:79:61:c0:ff:ad:2d:5e:d4:be:33:7c:60:2f:e1:
f1:ce:88:15:36:b2:87:5a:f6:13:c6:87:24:fd:ca:f0:8a:c9:
ee:e7:9c:d3:cb:3f:8e:f2:75:8d:0a:7a:53:4d:b6:90:e3:39:
5d:f0:07:8e:46:db:65:fa:a2:bc:5a:df:9c:9c:6e:ac:47:02:
6f:25:61:59:5a:5e:6c:ab:b4:19:01:ba:d3:34:cf:18:2c:97:
cf:29:5f:c5:46:fa:33:23:bf:00:c0:99:13:8b:49:0a:3d:34:
ed:8f:31:b2:45:f1:2c:a9:9f:31:6a:53:60:37:90:07:03:55:
8f:55:db:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 3 01:49:58 2026 by rpki-client