Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36886B3/5A411F9EB8EF11EDA5B09DDAF1222468/D3BA0E0C164411F190617BE1DAE4EC9C.roa
File: D3BA0E0C164411F190617BE1DAE4EC9C.roa (raw, json)
Hash identifier: I6gL9OWppOVojAbbO/0MhbpSXxWSJ/sKvKIETher/Vk=
Subject key identifier: 87:F0:98:16:92:DA:2D:C6:DA:F8:6C:DF:FE:79:44:76:6D:7C:4D:9F
Certificate issuer: /CN=F36886B3AR/serialNumber=D9C0B233ACB063543574D3F5F327BEB8B2B99118
Certificate serial: 04A8
Authority key identifier: D9:C0:B2:33:AC:B0:63:54:35:74:D3:F5:F3:27:BE:B8:B2:B9:91:18
Authority info access: rsync://rpki.afrinic.net/repository/arin/2cCyM6ywY1Q1dNP18ye-uLK5kRg.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36886B3/5A411F9EB8EF11EDA5B09DDAF1222468/D3BA0E0C164411F190617BE1DAE4EC9C.roa
Signing time: Mon 02 Mar 2026 14:33:49 +0000
ROA not before: Mon 02 Mar 2026 14:33:45 +0000
ROA not after: Sat 02 Mar 2030 14:33:45 +0000
asID: 33763
IP address blocks: 160.242.104.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36886B3/5A411F9EB8EF11EDA5B09DDAF1222468/2cCyM6ywY1Q1dNP18ye-uLK5kRg.crl
rsync://rpki.afrinic.net/repository/member_repository/F36886B3/5A411F9EB8EF11EDA5B09DDAF1222468/2cCyM6ywY1Q1dNP18ye-uLK5kRg.mft
rsync://rpki.afrinic.net/repository/arin/2cCyM6ywY1Q1dNP18ye-uLK5kRg.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 04 Mar 2026 00:26:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1192 (0x4a8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36886B3AR, serialNumber=D9C0B233ACB063543574D3F5F327BEB8B2B99118
Validity
Not Before: Mar 2 14:33:45 2026 GMT
Not After : Mar 2 14:33:45 2030 GMT
Subject: CN=69a59fcd-bab5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:7f:d4:52:09:09:cb:19:c8:b0:33:44:f8:17:
a3:05:36:a8:91:c0:2a:27:81:21:08:ea:2e:6d:cc:
e7:66:ba:b6:01:6f:37:86:20:b2:02:89:77:d5:ab:
d6:5f:ef:e3:1d:24:5f:37:1d:f2:16:17:e5:8e:7b:
b7:8a:75:b3:0c:52:fe:55:35:56:85:de:bd:95:98:
99:d8:12:96:fc:94:69:3f:99:89:7c:ca:c1:0e:f0:
91:f7:31:e8:36:e3:4f:46:56:c2:a7:f1:9a:97:b9:
da:69:31:e3:41:29:10:1c:19:e9:42:c9:8d:43:1c:
36:bc:10:7f:c1:23:4a:b0:9a:fa:27:e5:8c:07:bf:
8c:d9:9e:4d:ab:6a:4d:68:29:06:e9:1c:97:fa:f9:
5a:75:6f:d9:de:69:e6:de:e4:85:5a:61:3c:cf:bb:
f5:65:f1:50:e6:4f:e8:66:de:bc:2d:a1:68:12:14:
46:ae:13:18:2e:7b:6e:07:1f:de:45:d0:16:7e:f2:
e9:bc:e9:94:7c:8a:54:35:b4:4a:a1:b5:9f:b0:60:
f3:9a:0a:0b:57:e8:71:3a:35:c9:80:14:79:22:1d:
fe:3b:8f:c1:03:91:4e:7b:dd:a2:8c:47:e6:e5:88:
a9:f4:2c:d4:9f:e3:65:9b:3a:23:02:32:f4:1c:d2:
54:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:F0:98:16:92:DA:2D:C6:DA:F8:6C:DF:FE:79:44:76:6D:7C:4D:9F
X509v3 Authority Key Identifier:
keyid:D9:C0:B2:33:AC:B0:63:54:35:74:D3:F5:F3:27:BE:B8:B2:B9:91:18
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36886B3/5A411F9EB8EF11EDA5B09DDAF1222468/2cCyM6ywY1Q1dNP18ye-uLK5kRg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/2cCyM6ywY1Q1dNP18ye-uLK5kRg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36886B3/5A411F9EB8EF11EDA5B09DDAF1222468/D3BA0E0C164411F190617BE1DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.242.104.0/21
Signature Algorithm: sha256WithRSAEncryption
29:c0:df:90:40:0d:54:7e:0b:76:33:f9:7e:2b:59:c6:40:ae:
09:e4:0d:a5:cf:4f:65:20:5e:ed:21:20:e7:6a:0d:53:6a:76:
0f:a7:14:8e:ba:36:79:16:68:83:60:27:8a:fe:75:8b:6b:1e:
56:53:2a:34:85:64:03:6a:48:c4:63:b1:cd:1a:5e:49:12:06:
52:9b:ad:56:2b:14:3f:86:76:32:f6:2b:bb:88:e8:fb:c6:d5:
f4:84:fb:2c:54:0b:55:8f:6b:44:1c:5e:08:44:ad:44:dc:fc:
d7:21:23:9b:15:6f:33:ec:0d:07:13:6a:3a:e0:41:e8:20:9d:
0e:e1:4e:83:18:c7:93:77:1e:80:bf:ed:80:61:79:63:d0:78:
f2:5f:52:bf:3b:3e:22:fa:e9:e6:e6:b9:0f:43:99:f5:ca:7d:
e4:e7:1f:7a:e7:48:9f:59:ae:82:bf:32:54:65:66:85:5c:54:
14:ae:7b:a2:8d:b3:cb:d7:f2:df:38:1b:7a:06:64:de:e7:83:
5f:69:3f:8b:83:fe:7c:91:ab:65:8e:e3:aa:82:8f:9a:6b:f0:
ed:ba:7b:b2:a6:14:95:80:db:b9:2d:58:fa:e2:83:02:d4:ca:
25:bb:cb:f7:a4:21:d0:f3:a3:41:ab:b5:b1:05:c8:3e:b9:52:
31:28:04:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 3 01:49:21 2026 by rpki-client