Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36A34E4/CC8FC36CDA3011EE9E6C98AA775412E6/48F8F5D652A711F1B352EDF5CE1D38B0.roa
File: 48F8F5D652A711F1B352EDF5CE1D38B0.roa (raw, json)
Hash identifier: ce02ImdLwo/7RXTluhZpqtmk35loPw9NQKUYoqpIyRA=
Subject key identifier: DC:AF:D3:7C:BF:38:9F:32:76:18:49:76:51:57:AF:D3:AD:0C:12:8E
Certificate issuer: /CN=F36A34E4AR/serialNumber=2C671F4259707027237540BF62265A2D97EB95CB
Certificate serial: 034B
Authority key identifier: 2C:67:1F:42:59:70:70:27:23:75:40:BF:62:26:5A:2D:97:EB:95:CB
Authority info access: rsync://rpki.afrinic.net/repository/arin/LGcfQllwcCcjdUC_YiZaLZfrlcs.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36A34E4/CC8FC36CDA3011EE9E6C98AA775412E6/48F8F5D652A711F1B352EDF5CE1D38B0.roa
Signing time: Mon 18 May 2026 10:49:46 +0000
ROA not before: Mon 18 May 2026 10:49:42 +0000
ROA not after: Tue 18 May 2027 10:49:42 +0000
asID: 37613
IP address blocks: 169.239.191.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36A34E4/CC8FC36CDA3011EE9E6C98AA775412E6/LGcfQllwcCcjdUC_YiZaLZfrlcs.crl
rsync://rpki.afrinic.net/repository/member_repository/F36A34E4/CC8FC36CDA3011EE9E6C98AA775412E6/LGcfQllwcCcjdUC_YiZaLZfrlcs.mft
rsync://rpki.afrinic.net/repository/arin/LGcfQllwcCcjdUC_YiZaLZfrlcs.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 15 Jun 2026 00:26:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 843 (0x34b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36A34E4AR, serialNumber=2C671F4259707027237540BF62265A2D97EB95CB
Validity
Not Before: May 18 10:49:42 2026 GMT
Not After : May 18 10:49:42 2027 GMT
Subject: CN=6a0aeeca-ca28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:ab:b2:e4:34:2a:20:a7:c7:e6:37:95:d3:20:
57:74:a3:97:83:ef:35:d3:c5:07:51:1d:b8:78:de:
2b:43:25:c6:c3:e7:92:a6:8d:36:3f:df:2f:6c:5f:
b8:56:6b:fa:36:27:49:12:f7:96:1a:ec:27:8f:5a:
67:c8:97:c5:b8:24:06:d5:ec:85:35:98:16:b8:b2:
2d:ee:c0:a6:de:f3:bf:c1:c8:56:98:5d:62:51:05:
b0:ca:da:e8:43:ee:7b:bc:cd:3f:85:b0:e8:b6:5e:
ec:cd:c0:c1:be:3d:04:88:14:15:08:92:cb:8e:94:
3c:8d:43:61:80:ee:fb:15:92:cb:a3:8c:49:5e:f8:
b3:13:3a:19:61:87:3e:f7:13:11:59:ce:c6:d1:2c:
00:6a:c9:57:8b:0c:4b:b0:44:7b:95:a2:3b:32:88:
10:12:cf:20:5a:d4:5a:85:cb:86:85:e9:0a:c2:7a:
a5:77:6b:67:ec:c3:88:ed:11:92:f1:f1:c0:a2:13:
a7:b5:4f:35:0a:bc:08:ab:0e:95:35:67:a3:a7:29:
1b:15:b5:4b:0d:43:90:cf:5e:b9:f3:df:d8:09:88:
68:e2:3b:e3:2d:12:ab:60:b2:28:e7:f7:9e:93:4f:
8e:8c:32:43:62:fa:03:12:22:3b:61:5f:b3:f8:cb:
ef:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:AF:D3:7C:BF:38:9F:32:76:18:49:76:51:57:AF:D3:AD:0C:12:8E
X509v3 Authority Key Identifier:
keyid:2C:67:1F:42:59:70:70:27:23:75:40:BF:62:26:5A:2D:97:EB:95:CB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36A34E4/CC8FC36CDA3011EE9E6C98AA775412E6/LGcfQllwcCcjdUC_YiZaLZfrlcs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/LGcfQllwcCcjdUC_YiZaLZfrlcs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36A34E4/CC8FC36CDA3011EE9E6C98AA775412E6/48F8F5D652A711F1B352EDF5CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
169.239.191.0/24
Signature Algorithm: sha256WithRSAEncryption
08:0f:e0:d3:e0:6e:e9:bf:be:25:09:12:39:9e:23:2c:2a:d6:
e1:e8:38:ee:82:e3:5d:f3:17:7b:71:55:ef:cc:60:c7:fd:d5:
9c:24:61:94:93:c2:be:6d:25:64:77:61:b0:1e:69:cb:65:42:
f5:4d:39:2b:cf:ff:17:2a:49:b9:2e:60:40:9d:76:9a:20:73:
0e:4e:05:dc:1c:eb:8d:df:e0:50:ad:55:85:b8:06:76:bc:60:
3b:b9:60:cc:fe:96:2f:9f:a3:32:d3:53:d0:03:65:33:38:2c:
6f:c2:87:d8:1e:e1:d3:cb:18:01:07:1c:2e:dd:ae:91:2f:66:
4d:b7:89:8a:f6:97:8c:87:7b:53:7c:2e:03:f7:54:5b:b5:42:
24:7a:f4:70:d3:d1:f3:15:57:51:6f:03:de:95:f6:d7:84:dd:
67:65:68:ae:05:9a:69:2a:5e:a2:00:75:f0:1f:be:52:8f:5a:
8d:ce:9e:fd:5d:45:6f:7c:50:c1:21:33:17:91:85:a7:3b:f2:
91:5b:65:3e:30:4e:76:a1:a7:93:27:d2:ca:44:a7:94:f2:50:
22:bf:84:89:0e:4f:40:cb:78:ff:00:df:78:ba:ea:bc:20:55:
5d:6b:c3:01:77:87:85:b0:6b:81:b8:02:51:a0:ac:fe:43:b2:
3e:e6:63:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 10:38:08 2026 by rpki-client