Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36A34E4/CC8FC36CDA3011EE9E6C98AA775412E6/38B7F27252A611F193771CEECE1D38B0.roa
File: 38B7F27252A611F193771CEECE1D38B0.roa (raw, json)
Hash identifier: VujmE/3tHBn8mLb5BtmFjZUZZTvVtkiSObpapiNv1LQ=
Subject key identifier: 01:3D:C3:56:9B:92:D6:16:C3:92:99:35:A1:48:11:77:B6:12:A6:62
Certificate issuer: /CN=F36A34E4AR/serialNumber=2C671F4259707027237540BF62265A2D97EB95CB
Certificate serial: 0343
Authority key identifier: 2C:67:1F:42:59:70:70:27:23:75:40:BF:62:26:5A:2D:97:EB:95:CB
Authority info access: rsync://rpki.afrinic.net/repository/arin/LGcfQllwcCcjdUC_YiZaLZfrlcs.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36A34E4/CC8FC36CDA3011EE9E6C98AA775412E6/38B7F27252A611F193771CEECE1D38B0.roa
Signing time: Mon 18 May 2026 10:42:10 +0000
ROA not before: Mon 18 May 2026 10:42:05 +0000
ROA not after: Tue 18 May 2027 10:42:05 +0000
asID: 37613
IP address blocks: 169.239.188.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36A34E4/CC8FC36CDA3011EE9E6C98AA775412E6/LGcfQllwcCcjdUC_YiZaLZfrlcs.crl
rsync://rpki.afrinic.net/repository/member_repository/F36A34E4/CC8FC36CDA3011EE9E6C98AA775412E6/LGcfQllwcCcjdUC_YiZaLZfrlcs.mft
rsync://rpki.afrinic.net/repository/arin/LGcfQllwcCcjdUC_YiZaLZfrlcs.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 15 Jun 2026 00:26:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 835 (0x343)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36A34E4AR, serialNumber=2C671F4259707027237540BF62265A2D97EB95CB
Validity
Not Before: May 18 10:42:05 2026 GMT
Not After : May 18 10:42:05 2027 GMT
Subject: CN=6a0aed02-45ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:ab:d5:bb:46:76:3c:93:9c:63:1c:f0:9b:9f:
e1:47:92:2c:96:25:63:2b:b7:02:79:e4:71:9d:48:
bd:d3:65:68:33:9c:41:55:0d:3f:eb:fa:82:0d:ad:
e5:0d:d1:4f:c4:b6:46:6b:f9:6b:c2:81:95:d5:46:
e3:dc:8f:8b:75:6d:f0:17:89:07:12:aa:0a:49:62:
7b:75:ec:8d:62:49:46:b7:e3:1d:c6:58:5e:19:80:
0d:02:98:56:f8:d9:90:da:7d:cb:df:02:69:d0:14:
c6:55:bf:fa:d5:9e:27:ce:4a:96:cf:d1:cf:3d:58:
b3:1b:79:2e:de:3c:fa:9d:4b:f4:69:05:cc:ae:34:
ea:81:71:b1:06:ce:cc:48:53:22:16:f9:f4:af:28:
84:43:64:9f:b2:19:3d:31:a9:18:12:2b:cb:8a:8c:
eb:b0:43:9e:94:00:f8:15:7d:9d:1d:70:c6:d9:1f:
ad:56:89:7c:3d:4e:2e:43:ac:28:3d:99:f6:8d:c1:
e9:72:1a:db:19:f5:62:c4:a1:93:22:4d:71:93:23:
7c:8e:65:22:b3:42:c4:27:b8:f7:14:01:2e:0b:34:
24:09:f9:c7:43:b7:a9:3f:01:a0:53:ac:3c:05:80:
b1:37:c1:7d:cf:9f:f1:ca:00:d2:ca:b0:f3:a8:17:
57:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:3D:C3:56:9B:92:D6:16:C3:92:99:35:A1:48:11:77:B6:12:A6:62
X509v3 Authority Key Identifier:
keyid:2C:67:1F:42:59:70:70:27:23:75:40:BF:62:26:5A:2D:97:EB:95:CB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36A34E4/CC8FC36CDA3011EE9E6C98AA775412E6/LGcfQllwcCcjdUC_YiZaLZfrlcs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/LGcfQllwcCcjdUC_YiZaLZfrlcs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36A34E4/CC8FC36CDA3011EE9E6C98AA775412E6/38B7F27252A611F193771CEECE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
169.239.188.0/22
Signature Algorithm: sha256WithRSAEncryption
2f:e9:b0:f3:49:af:07:5f:76:aa:62:14:f4:9a:64:0d:f2:19:
0c:57:4a:ec:23:63:01:e2:50:7e:ce:55:14:b6:ee:3f:31:e5:
b9:d4:15:db:53:29:0d:3b:d0:de:63:48:ed:8a:cb:e5:90:46:
fc:f1:c3:12:e9:1d:51:38:b1:c5:38:5b:f9:bd:e7:2c:51:65:
9b:1e:1a:76:c2:0e:58:50:e2:9d:d2:af:5a:9f:37:da:fc:5f:
fc:c6:5e:70:f3:d1:65:1f:56:a9:4a:5d:c0:0a:b5:37:7a:ac:
c4:e5:78:42:df:5f:81:77:5c:e4:e8:96:67:8b:0a:c7:2a:eb:
b5:d2:6a:36:39:1e:11:fa:5a:0c:60:c4:b9:3b:91:57:87:70:
28:27:3d:d2:1d:05:66:3f:12:f8:8c:2b:0a:a3:b8:a1:42:ff:
bb:ba:4d:a4:4e:71:b1:da:f5:0e:a4:c4:19:01:1f:2a:9f:26:
8b:d1:be:46:32:3d:e9:28:ac:b3:cb:33:7f:dd:c3:9f:6b:66:
32:fd:65:86:8b:91:e3:84:23:08:58:cb:d6:06:85:15:84:06:
c7:9f:0a:f5:92:df:30:d4:bd:f9:08:88:30:59:a3:08:67:db:
9e:04:a5:6f:85:a9:aa:32:5c:26:68:61:dd:a2:5f:b8:bc:15:
1f:ef:2d:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 09:56:26 2026 by rpki-client