Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36886B3/5A411F9EB8EF11EDA5B09DDAF1222468/AF498724164811F18B4BC67BDAE4EC9C.roa
File: AF498724164811F18B4BC67BDAE4EC9C.roa (raw, json)
Hash identifier: 4CjEu1vpm+wP9BTwYGqYW9uzMDMzsV6XNuV1HbMfl9g=
Subject key identifier: 19:40:F5:6A:A0:F6:FE:9B:74:0F:88:84:02:B8:F8:68:AC:5F:5F:34
Certificate issuer: /CN=F36886B3AR/serialNumber=D9C0B233ACB063543574D3F5F327BEB8B2B99118
Certificate serial: 04B8
Authority key identifier: D9:C0:B2:33:AC:B0:63:54:35:74:D3:F5:F3:27:BE:B8:B2:B9:91:18
Authority info access: rsync://rpki.afrinic.net/repository/arin/2cCyM6ywY1Q1dNP18ye-uLK5kRg.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36886B3/5A411F9EB8EF11EDA5B09DDAF1222468/AF498724164811F18B4BC67BDAE4EC9C.roa
Signing time: Mon 02 Mar 2026 15:01:26 +0000
ROA not before: Mon 02 Mar 2026 15:01:22 +0000
ROA not after: Sat 02 Mar 2030 15:01:22 +0000
asID: 33763
IP address blocks: 160.242.55.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36886B3/5A411F9EB8EF11EDA5B09DDAF1222468/2cCyM6ywY1Q1dNP18ye-uLK5kRg.crl
rsync://rpki.afrinic.net/repository/member_repository/F36886B3/5A411F9EB8EF11EDA5B09DDAF1222468/2cCyM6ywY1Q1dNP18ye-uLK5kRg.mft
rsync://rpki.afrinic.net/repository/arin/2cCyM6ywY1Q1dNP18ye-uLK5kRg.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 04 Mar 2026 00:26:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1208 (0x4b8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36886B3AR, serialNumber=D9C0B233ACB063543574D3F5F327BEB8B2B99118
Validity
Not Before: Mar 2 15:01:22 2026 GMT
Not After : Mar 2 15:01:22 2030 GMT
Subject: CN=69a5a646-c183
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:30:92:32:06:40:58:9e:a4:27:9e:cb:a2:a8:
8d:1b:6b:4e:4b:ff:86:f0:df:0a:b7:7d:09:d6:29:
a4:32:ba:c3:0f:78:c9:c1:18:b5:8a:05:d2:2f:7d:
f9:d5:49:15:41:d4:ff:6e:41:29:5c:2d:44:e6:ff:
89:94:2f:0b:6b:3e:1a:c4:40:de:08:dc:61:ee:1a:
81:01:8f:9b:10:b1:f0:eb:fd:03:c3:5d:17:53:63:
01:e8:d7:09:9d:f4:c1:c2:4c:df:70:ee:cc:17:9e:
be:82:6f:67:3e:07:10:bf:60:3b:f8:7f:47:d2:a7:
13:4c:f7:c6:fc:1d:28:c7:cb:59:4e:74:47:ca:81:
df:11:af:cb:49:27:4d:f9:ab:c7:ca:01:a3:ed:6d:
1a:4c:6c:57:ec:e4:05:17:37:e6:5e:11:6e:3e:39:
3e:3e:32:0b:32:70:91:58:5c:e6:19:b2:47:12:9b:
b5:e9:fa:9d:54:ba:13:e3:5e:a8:88:ad:23:5a:b4:
bb:ea:0d:c2:97:cb:6f:36:f7:b6:b7:ca:a2:f3:11:
ef:eb:1f:23:d8:8a:da:db:5a:42:84:a6:ed:6c:d6:
5f:ea:5c:c3:a3:4f:f6:9e:df:bf:07:7b:8c:62:32:
d8:c9:82:cc:b1:31:bf:8d:36:9d:73:d8:1a:f7:6f:
25:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:40:F5:6A:A0:F6:FE:9B:74:0F:88:84:02:B8:F8:68:AC:5F:5F:34
X509v3 Authority Key Identifier:
keyid:D9:C0:B2:33:AC:B0:63:54:35:74:D3:F5:F3:27:BE:B8:B2:B9:91:18
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36886B3/5A411F9EB8EF11EDA5B09DDAF1222468/2cCyM6ywY1Q1dNP18ye-uLK5kRg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/2cCyM6ywY1Q1dNP18ye-uLK5kRg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36886B3/5A411F9EB8EF11EDA5B09DDAF1222468/AF498724164811F18B4BC67BDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.242.55.0/24
Signature Algorithm: sha256WithRSAEncryption
75:82:d5:91:1e:c8:27:a6:3d:ae:58:71:7d:02:10:3c:94:76:
8e:d6:6b:d2:78:70:bd:2a:ed:39:0b:24:7e:e7:5b:7c:5f:95:
cf:1b:07:77:90:a4:c3:20:f9:e6:24:dd:83:4c:f2:41:85:44:
21:cd:98:95:74:b9:fd:c3:7b:ee:e7:e4:08:45:2a:13:1d:79:
ee:08:e9:91:e2:7a:ca:d0:71:75:dc:57:e4:1e:6e:00:a2:a8:
09:2b:32:32:9a:da:f5:06:cb:db:08:2e:a9:1d:79:9d:8f:0e:
c0:52:da:96:18:26:62:a7:94:e1:ad:4a:95:eb:c3:d5:07:90:
73:4e:c3:c2:d2:9e:87:c9:85:8e:82:b0:de:1a:ee:13:a0:e7:
47:c7:38:f6:e1:bf:03:aa:c5:8c:fe:8b:0a:96:a4:ca:09:78:
e5:99:2e:c0:fc:e8:c3:ce:a3:67:47:c3:06:7e:38:e2:5a:f9:
41:64:6a:e0:fe:60:6d:a5:32:f0:0e:0e:bf:c6:f9:58:2b:a2:
52:26:60:06:a9:88:94:d2:7d:35:b2:02:36:b2:b5:66:67:a4:
44:5e:d5:4b:84:b6:f5:4c:77:6c:78:ad:04:4d:90:72:63:39:
4f:39:58:04:f6:a6:1b:32:97:84:71:24:c7:b0:8e:f8:59:3e:
2b:84:8c:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 3 01:49:22 2026 by rpki-client