Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/01FDA47E35DD11F1AC566BDACE1D38B0.roa
File: 01FDA47E35DD11F1AC566BDACE1D38B0.roa (raw, json)
Hash identifier: 9kkaAwnbgXXABrjCNoOYQVq84JhHToFQg+gk5R7Kh3E=
Subject key identifier: D3:F0:92:A1:39:C0:7F:B9:3A:12:1C:B4:08:DC:B8:5F:CE:B6:E2:25
Certificate issuer: /CN=F36A44EAAR/serialNumber=F85BB49854392228FB8B30DB05D96AC664CE83AB
Certificate serial: 0B6A
Authority key identifier: F8:5B:B4:98:54:39:22:28:FB:8B:30:DB:05:D9:6A:C6:64:CE:83:AB
Authority info access: rsync://rpki.afrinic.net/repository/arin/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/01FDA47E35DD11F1AC566BDACE1D38B0.roa
Signing time: Sat 11 Apr 2026 19:31:17 +0000
ROA not before: Sat 11 Apr 2026 19:31:12 +0000
ROA not after: Wed 31 Dec 2036 19:31:12 +0000
asID: 834
IP address blocks: 165.49.64.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.crl
rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.mft
rsync://rpki.afrinic.net/repository/arin/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 00:26:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2922 (0xb6a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36A44EAAR, serialNumber=F85BB49854392228FB8B30DB05D96AC664CE83AB
Validity
Not Before: Apr 11 19:31:12 2026 GMT
Not After : Dec 31 19:31:12 2036 GMT
Subject: CN=69daa184-45ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:9e:15:1a:26:69:45:99:d2:36:47:58:66:bd:
61:ac:fe:9f:b2:79:91:34:0e:1b:f6:83:60:2c:69:
eb:e3:63:14:8c:4c:a1:42:54:1b:9c:9f:76:de:13:
84:5e:a5:73:a6:21:56:be:83:45:84:50:f6:75:d6:
61:0b:ac:ba:da:e0:96:60:ec:71:ab:ca:8b:df:57:
ce:4e:cb:c6:86:bb:fd:f2:a8:33:77:45:31:68:73:
c4:1d:35:df:aa:88:5f:6f:9f:94:46:03:96:9e:da:
87:93:f6:d4:e0:03:a6:56:6d:fd:9d:f8:19:2f:37:
64:63:3d:4c:d8:6e:5d:13:ae:a5:d0:8c:13:56:17:
68:16:64:15:bd:01:1b:d0:73:d2:54:ea:54:23:39:
8a:bd:f8:a2:9c:0a:c3:e1:78:65:35:77:d6:45:de:
b4:d5:e1:cd:da:a6:a0:81:fb:80:08:19:93:4d:3d:
da:fb:8c:2d:53:fb:3b:b8:61:85:e3:c3:70:d9:d4:
0c:9f:71:14:2e:99:8a:fd:6f:1d:48:44:31:74:1a:
04:60:0b:d6:98:9b:32:c8:ed:37:cc:f3:d2:05:16:
fa:3a:49:d9:ba:ac:c1:d3:d1:27:37:5a:0f:d6:f9:
d2:cb:cd:ec:be:26:46:d7:15:95:04:98:dc:8b:c3:
14:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:F0:92:A1:39:C0:7F:B9:3A:12:1C:B4:08:DC:B8:5F:CE:B6:E2:25
X509v3 Authority Key Identifier:
keyid:F8:5B:B4:98:54:39:22:28:FB:8B:30:DB:05:D9:6A:C6:64:CE:83:AB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/01FDA47E35DD11F1AC566BDACE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
165.49.64.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:ef:b6:0f:48:5c:ba:fe:e3:9e:73:dc:5a:82:6f:86:d8:c7:
54:b7:a0:44:c9:20:3b:20:af:85:08:8e:d8:9e:2e:5d:26:28:
70:aa:29:46:44:80:e2:8a:8c:f1:6d:c4:e5:fd:e4:48:2e:68:
a5:0a:a3:a6:ff:62:b2:74:7b:11:a2:33:fd:f4:ac:19:7b:64:
e3:ea:72:c0:fe:cb:91:97:84:0c:33:5f:de:20:b8:16:41:62:
44:10:12:0d:63:b9:a1:1b:20:13:bc:4a:9e:9a:af:f2:2b:4c:
d5:9c:36:12:3f:a5:1b:69:d9:91:cc:c3:e2:3f:62:28:11:30:
f1:d8:5f:29:24:2a:4f:47:03:0f:26:11:67:5d:45:cf:bc:d5:
66:d9:32:a9:00:90:cb:02:66:45:53:8d:f5:7e:80:c7:4f:54:
80:cd:b3:9f:93:c6:12:d6:56:c8:4d:a5:54:62:89:8f:dc:3d:
79:8f:8e:35:f3:c6:c8:06:80:c9:dd:6c:75:a7:ba:15:64:b3:
cd:41:8f:1e:cc:40:95:b4:0b:ee:8a:0c:42:63:55:c8:6b:a6:
4f:a3:b9:f1:48:8d:90:b1:52:2d:51:cf:cc:31:c6:77:8d:82:
0a:aa:b9:b1:50:a8:ad:ac:ec:42:7c:36:e8:77:11:23:3f:bc:
eb:17:3e:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 03:55:16 2026 by rpki-client