Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36886B3/5A411F9EB8EF11EDA5B09DDAF1222468/E71DC93E164911F197173A84DAE4EC9C.roa
File: E71DC93E164911F197173A84DAE4EC9C.roa (raw, json)
Hash identifier: zwqwls4BteBUkxBEc2uPK0GElac5FIoBWop+Nk7jS34=
Subject key identifier: F9:2B:3C:D7:0C:EA:DA:66:B1:09:C0:93:99:61:E6:0B:A2:53:6D:30
Certificate issuer: /CN=F36886B3AR/serialNumber=D9C0B233ACB063543574D3F5F327BEB8B2B99118
Certificate serial: 04C0
Authority key identifier: D9:C0:B2:33:AC:B0:63:54:35:74:D3:F5:F3:27:BE:B8:B2:B9:91:18
Authority info access: rsync://rpki.afrinic.net/repository/arin/2cCyM6ywY1Q1dNP18ye-uLK5kRg.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36886B3/5A411F9EB8EF11EDA5B09DDAF1222468/E71DC93E164911F197173A84DAE4EC9C.roa
Signing time: Mon 02 Mar 2026 15:10:09 +0000
ROA not before: Mon 02 Mar 2026 15:10:05 +0000
ROA not after: Sat 02 Mar 2030 15:10:05 +0000
asID: 33763
IP address blocks: 160.242.67.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36886B3/5A411F9EB8EF11EDA5B09DDAF1222468/2cCyM6ywY1Q1dNP18ye-uLK5kRg.crl
rsync://rpki.afrinic.net/repository/member_repository/F36886B3/5A411F9EB8EF11EDA5B09DDAF1222468/2cCyM6ywY1Q1dNP18ye-uLK5kRg.mft
rsync://rpki.afrinic.net/repository/arin/2cCyM6ywY1Q1dNP18ye-uLK5kRg.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 04 Mar 2026 00:26:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1216 (0x4c0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36886B3AR, serialNumber=D9C0B233ACB063543574D3F5F327BEB8B2B99118
Validity
Not Before: Mar 2 15:10:05 2026 GMT
Not After : Mar 2 15:10:05 2030 GMT
Subject: CN=69a5a851-9704
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:c8:fe:23:63:94:b4:f4:05:76:dc:49:c8:3a:
5a:1e:89:2d:09:6a:1e:2a:88:82:e3:3a:9c:9a:27:
b8:93:3a:a1:76:45:45:2e:50:a4:fc:b9:2c:cf:7e:
cf:2b:bd:fc:b3:75:01:26:ca:25:66:b9:ad:70:7f:
c7:f5:1c:8f:a4:14:ea:48:f1:8a:ce:b8:b4:5c:9c:
35:99:fa:d4:b9:d3:ab:71:98:c3:51:90:cb:f9:0c:
13:81:74:93:73:96:7b:c0:a6:fd:db:7e:d7:b3:19:
50:7f:13:1a:20:9e:b6:60:ee:4a:6a:c9:9b:82:1a:
f4:5e:20:24:7e:d6:09:6b:2d:8b:61:c7:66:87:f4:
79:47:f8:36:4b:23:bd:6c:61:dc:a9:4b:f4:4a:a7:
5e:69:27:49:eb:06:3b:ee:39:d5:64:7d:23:44:35:
c3:9e:49:75:fb:ed:1a:0f:ca:c1:73:72:9b:8d:e8:
83:e6:d5:2e:6a:0c:6d:fc:f3:11:a5:f4:c2:6b:84:
34:c5:5f:d2:dc:63:f9:7d:f8:6b:a8:37:ff:f2:b8:
3c:70:78:06:3a:9d:1f:ac:e7:ef:bd:a7:9c:95:ca:
c2:0a:5c:75:c6:82:ca:f7:80:c2:4d:b9:7f:d9:5f:
38:78:3a:3c:88:c0:dc:6d:f4:98:80:17:7b:99:25:
ac:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:2B:3C:D7:0C:EA:DA:66:B1:09:C0:93:99:61:E6:0B:A2:53:6D:30
X509v3 Authority Key Identifier:
keyid:D9:C0:B2:33:AC:B0:63:54:35:74:D3:F5:F3:27:BE:B8:B2:B9:91:18
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36886B3/5A411F9EB8EF11EDA5B09DDAF1222468/2cCyM6ywY1Q1dNP18ye-uLK5kRg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/2cCyM6ywY1Q1dNP18ye-uLK5kRg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36886B3/5A411F9EB8EF11EDA5B09DDAF1222468/E71DC93E164911F197173A84DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.242.67.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:3f:ad:54:91:94:f3:46:c7:3b:f1:02:e6:de:0d:9c:9e:bf:
a4:b4:b2:ec:48:07:50:bd:7b:ec:e0:71:66:bf:9e:ec:e2:69:
a5:4a:ec:27:08:f6:30:11:30:7f:b7:eb:98:f4:91:25:31:11:
c5:85:39:b3:82:db:d3:bb:44:c9:84:d3:44:03:74:73:98:6b:
3d:72:f4:c2:ad:2e:f3:f4:a1:ae:88:77:c3:34:c7:05:bf:f8:
9b:b2:30:ad:b6:e3:4a:96:76:45:9f:ab:d3:18:5c:7d:55:2e:
6c:40:cb:82:5e:13:2d:a9:14:9f:db:d1:a5:34:df:50:28:23:
84:f5:45:60:ab:75:8a:28:0f:ff:2d:4b:3e:1d:12:11:dc:ce:
ab:71:7a:a9:35:9b:e1:89:47:16:f9:21:3f:d5:b3:87:02:93:
8e:e5:7f:5f:11:7d:2c:06:24:ce:de:dc:e9:e6:ff:92:11:0a:
ce:ba:d7:fa:40:41:9b:9a:38:ef:c3:40:41:f0:06:61:6b:4e:
e1:e9:69:2b:b8:bf:1a:5f:9e:e4:21:ba:ad:8a:12:3a:41:7f:
5f:3f:11:06:66:b3:72:7c:6a:68:59:89:08:cb:8b:26:0a:82:
63:20:28:57:28:5a:36:08:75:95:97:0a:af:3b:58:28:4b:3f:
20:c6:16:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 3 01:50:01 2026 by rpki-client