Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36886B3/5A411F9EB8EF11EDA5B09DDAF1222468/6D3EBE72164711F19F64E7F1DAE4EC9C.roa
File: 6D3EBE72164711F19F64E7F1DAE4EC9C.roa (raw, json)
Hash identifier: yLI6smy3lVo+VEqO6BS2sNIl22GUPaCfOV/LStarXLY=
Subject key identifier: 88:D3:39:32:91:23:18:70:82:44:CA:D0:DB:1C:A7:02:21:96:AA:89
Certificate issuer: /CN=F36886B3AR/serialNumber=D9C0B233ACB063543574D3F5F327BEB8B2B99118
Certificate serial: 04B0
Authority key identifier: D9:C0:B2:33:AC:B0:63:54:35:74:D3:F5:F3:27:BE:B8:B2:B9:91:18
Authority info access: rsync://rpki.afrinic.net/repository/arin/2cCyM6ywY1Q1dNP18ye-uLK5kRg.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36886B3/5A411F9EB8EF11EDA5B09DDAF1222468/6D3EBE72164711F19F64E7F1DAE4EC9C.roa
Signing time: Mon 02 Mar 2026 14:52:26 +0000
ROA not before: Mon 02 Mar 2026 14:52:22 +0000
ROA not after: Sat 02 Mar 2030 14:52:22 +0000
asID: 33763
IP address blocks: 160.242.29.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36886B3/5A411F9EB8EF11EDA5B09DDAF1222468/2cCyM6ywY1Q1dNP18ye-uLK5kRg.crl
rsync://rpki.afrinic.net/repository/member_repository/F36886B3/5A411F9EB8EF11EDA5B09DDAF1222468/2cCyM6ywY1Q1dNP18ye-uLK5kRg.mft
rsync://rpki.afrinic.net/repository/arin/2cCyM6ywY1Q1dNP18ye-uLK5kRg.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 04 Mar 2026 00:26:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1200 (0x4b0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36886B3AR, serialNumber=D9C0B233ACB063543574D3F5F327BEB8B2B99118
Validity
Not Before: Mar 2 14:52:22 2026 GMT
Not After : Mar 2 14:52:22 2030 GMT
Subject: CN=69a5a42a-4b18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:a6:77:81:69:4b:aa:1e:30:93:63:2a:bc:4c:
89:c5:6a:25:d4:fc:b0:6e:10:40:ce:11:4b:01:1b:
a7:b8:23:1b:a0:02:54:fe:69:e0:e0:b0:c0:b6:1a:
f7:41:cd:2e:ff:30:1f:c2:dd:ed:96:9d:3e:06:2c:
25:d0:e8:96:7c:94:3c:c3:22:a8:e9:5e:a8:02:b4:
9c:b8:65:1c:fe:39:4a:1f:e9:78:a0:8d:95:48:c4:
87:d9:b7:23:5a:cf:c3:17:3e:09:0f:cd:17:aa:5b:
a5:8a:f4:4a:2b:f3:4d:69:28:2e:2f:17:6e:5f:90:
f2:23:1e:42:93:14:d9:4c:8f:99:63:d8:3b:77:ff:
b4:c1:5c:06:85:30:08:b5:b0:3d:f2:fe:2b:b5:51:
4b:4c:dc:67:cb:a9:42:c9:8f:3c:d9:ae:ab:b9:f7:
29:a8:24:20:b5:66:36:85:1d:a7:44:26:75:ee:9a:
2e:c9:2a:17:a8:3e:09:0c:f3:71:a7:4e:45:07:41:
5d:23:82:1f:71:f6:9f:7a:59:19:80:1e:c3:49:9a:
68:19:97:ae:ca:4d:eb:07:ba:95:6d:8e:b2:04:3f:
f9:0e:09:45:b4:b1:f8:c5:76:e6:e7:34:dd:62:5a:
cc:67:40:43:ec:16:6d:62:df:cb:79:2a:52:27:a1:
55:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:D3:39:32:91:23:18:70:82:44:CA:D0:DB:1C:A7:02:21:96:AA:89
X509v3 Authority Key Identifier:
keyid:D9:C0:B2:33:AC:B0:63:54:35:74:D3:F5:F3:27:BE:B8:B2:B9:91:18
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36886B3/5A411F9EB8EF11EDA5B09DDAF1222468/2cCyM6ywY1Q1dNP18ye-uLK5kRg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/2cCyM6ywY1Q1dNP18ye-uLK5kRg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36886B3/5A411F9EB8EF11EDA5B09DDAF1222468/6D3EBE72164711F19F64E7F1DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.242.29.0/24
Signature Algorithm: sha256WithRSAEncryption
a2:33:26:4c:3c:08:a2:49:95:ef:e4:61:35:dd:cc:ed:40:5a:
c0:a0:f9:88:03:b2:0e:e6:b8:ce:f5:52:5c:1c:b0:f4:17:1d:
cc:66:60:6c:72:1a:74:22:dd:02:5e:6f:2a:85:96:77:4a:a8:
b8:4d:41:0e:85:d4:5c:82:63:9a:84:a8:dd:01:8b:5b:50:e4:
ab:b5:03:d4:0f:fd:dd:2f:c9:9e:91:f3:80:b4:1c:61:e3:42:
a6:8d:9a:f2:85:75:7e:ac:df:08:7e:0b:df:94:75:33:1d:45:
36:eb:35:bd:23:16:bc:d1:46:72:99:41:88:70:42:57:b6:49:
3f:b8:b7:96:f8:1e:92:33:38:ba:f3:fb:aa:91:dd:21:ff:bc:
64:d2:91:4c:99:47:28:9a:b6:b8:87:76:aa:1e:39:eb:45:11:
0a:eb:6c:96:7b:38:1a:35:1f:9c:0c:b0:e8:75:94:ab:b9:6b:
ae:32:e0:64:11:66:0b:35:76:37:7f:51:61:ec:b1:47:88:87:
0c:ef:1e:62:a8:e9:72:90:64:68:d3:40:63:09:a7:87:76:65:
bd:60:cf:3d:90:50:7d:37:b9:19:21:e6:62:f8:5c:a7:67:c2:
93:ed:13:d4:8a:92:f3:d0:7a:bc:ea:09:1b:fa:e0:ac:fb:43:
3d:ea:1a:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 3 01:49:22 2026 by rpki-client