Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/2A0BC5285B6611F1B207B9B2CE1D38B0.roa
File: 2A0BC5285B6611F1B207B9B2CE1D38B0.roa (raw, json)
Hash identifier: /a76/+o8+j1GKoDbIRhzJdGo9zwU0G84u+e1xYT1sYs=
Subject key identifier: FD:B0:99:D1:B0:A5:4B:3C:DB:BE:06:33:0B:78:D6:4A:BD:50:47:AA
Certificate issuer: /CN=F36A44EAAR/serialNumber=F85BB49854392228FB8B30DB05D96AC664CE83AB
Certificate serial: 0BFC
Authority key identifier: F8:5B:B4:98:54:39:22:28:FB:8B:30:DB:05:D9:6A:C6:64:CE:83:AB
Authority info access: rsync://rpki.afrinic.net/repository/arin/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/2A0BC5285B6611F1B207B9B2CE1D38B0.roa
Signing time: Fri 29 May 2026 13:56:18 +0000
ROA not before: Fri 29 May 2026 13:56:12 +0000
ROA not after: Wed 31 Dec 2036 13:56:12 +0000
asID: 834
IP address blocks: 165.49.116.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.crl
rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.mft
rsync://rpki.afrinic.net/repository/arin/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 15 Jun 2026 00:26:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3068 (0xbfc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36A44EAAR, serialNumber=F85BB49854392228FB8B30DB05D96AC664CE83AB
Validity
Not Before: May 29 13:56:12 2026 GMT
Not After : Dec 31 13:56:12 2036 GMT
Subject: CN=6a199b02-d92f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:00:b5:ad:4a:4b:fa:1c:f5:46:04:b0:7e:d4:
58:e1:75:fb:8f:78:08:88:27:8f:ac:5a:11:7a:2d:
71:d8:21:b4:76:7e:ec:a5:1e:37:cc:71:4d:16:a8:
88:66:e0:f7:b7:c3:d4:f2:1d:11:aa:87:bf:57:fa:
0e:1a:da:55:12:04:cd:12:6a:56:e4:99:9f:34:3f:
df:8d:0a:d4:d2:ba:ea:bb:f5:6d:89:fd:fe:e7:e5:
c2:02:78:25:78:b0:c3:2b:9d:40:85:7d:d3:44:27:
3b:18:65:64:72:a1:ec:70:ed:ae:a3:87:7b:21:5a:
78:1e:86:a8:7b:00:82:0b:b0:41:df:3e:a5:ec:18:
7a:b2:08:6b:1a:f8:f7:98:ac:c9:5f:cd:c8:c1:55:
51:b7:d9:91:c6:33:ed:b0:26:f4:6f:88:27:f0:e2:
c3:5b:d3:1f:16:bb:84:a1:59:3c:73:ab:ca:fe:9b:
fd:61:a0:27:18:2c:19:81:40:c5:dc:35:06:2e:3c:
b2:02:8f:86:f6:3e:aa:5b:86:ea:fe:96:58:d8:2d:
4a:c3:ff:25:34:9e:41:20:08:3b:3e:e2:cb:52:d4:
bd:31:2e:75:d2:0c:0c:0f:e5:dc:84:76:5d:4d:9f:
df:52:3e:8e:fd:81:64:99:1f:a7:07:14:08:41:06:
7a:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:B0:99:D1:B0:A5:4B:3C:DB:BE:06:33:0B:78:D6:4A:BD:50:47:AA
X509v3 Authority Key Identifier:
keyid:F8:5B:B4:98:54:39:22:28:FB:8B:30:DB:05:D9:6A:C6:64:CE:83:AB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/2A0BC5285B6611F1B207B9B2CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
165.49.116.0/24
Signature Algorithm: sha256WithRSAEncryption
92:60:fa:84:78:74:a1:b5:0e:b6:a2:d8:54:8e:5a:c0:d5:20:
b4:d7:02:de:b1:dc:bb:e4:c6:fe:f1:43:40:8a:a4:7d:9d:4a:
cf:91:57:f2:6e:69:66:39:04:04:ca:a6:76:72:98:49:e4:86:
bc:6a:ac:73:c8:9b:6d:dd:2a:a2:57:4e:00:b2:47:38:8f:88:
e7:da:05:1b:2e:5a:3b:52:51:12:b9:21:38:53:2f:f4:c2:0d:
8f:e9:95:0e:13:8c:06:e6:ca:f5:68:d1:a4:bc:13:30:c6:a7:
44:b8:bb:71:7c:c1:fa:57:17:6d:d3:ef:c6:fe:57:70:af:46:
97:4a:c3:dc:80:81:ce:a0:19:2a:6d:4b:d1:55:7c:96:74:8a:
e5:c0:57:79:33:46:31:03:d4:5d:a8:6a:fe:df:68:7b:dc:dd:
7e:fb:ad:58:a6:4f:82:af:7a:c5:fa:cf:b9:ed:98:b5:49:e0:
1b:51:87:ae:01:b4:b9:b9:8e:2e:b6:2c:78:00:50:32:de:6a:
8e:c1:db:91:35:8a:b6:ae:1b:60:88:65:54:22:e9:02:1f:18:
2b:24:7a:4c:b1:f2:27:39:73:9f:e9:7b:6d:49:c9:35:65:68:
05:cc:58:4e:09:c0:78:c8:7a:a5:53:b2:b8:f8:f5:48:9a:1e:
1e:e8:04:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 05:54:08 2026 by rpki-client