Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/358504EC0B0111F1A1C63BB7DAE4EC9C.roa
File: 358504EC0B0111F1A1C63BB7DAE4EC9C.roa (raw, json)
Hash identifier: oTZ3CaqewHeHIIrnA/g07ZTWETP0Qdt4+I8yIuU2nEA=
Subject key identifier: AB:D0:AC:2D:28:3A:03:86:DA:B0:E7:05:F9:53:96:C1:55:6A:F1:66
Certificate issuer: /CN=F36A44EAAR/serialNumber=F85BB49854392228FB8B30DB05D96AC664CE83AB
Certificate serial: 0AEF
Authority key identifier: F8:5B:B4:98:54:39:22:28:FB:8B:30:DB:05:D9:6A:C6:64:CE:83:AB
Authority info access: rsync://rpki.afrinic.net/repository/arin/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/358504EC0B0111F1A1C63BB7DAE4EC9C.roa
Signing time: Mon 16 Feb 2026 06:32:06 +0000
ROA not before: Mon 16 Feb 2026 06:31:58 +0000
ROA not after: Wed 31 Dec 2036 06:31:58 +0000
asID: 834
IP address blocks: 165.49.127.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.crl
rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.mft
rsync://rpki.afrinic.net/repository/arin/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 04 Mar 2026 00:26:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2799 (0xaef)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36A44EAAR, serialNumber=F85BB49854392228FB8B30DB05D96AC664CE83AB
Validity
Not Before: Feb 16 06:31:58 2026 GMT
Not After : Dec 31 06:31:58 2036 GMT
Subject: CN=6992b9e6-0d87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:b3:0d:0c:c3:38:5e:82:3d:59:a9:ca:2a:36:
11:04:e6:f9:81:b2:6f:14:10:36:5c:f1:a6:f0:86:
9f:d9:9d:42:1d:31:b6:12:1c:7f:4d:bf:8d:ec:57:
a4:75:fa:14:af:af:71:de:ec:4a:cc:e4:d4:90:91:
1a:d1:1f:82:4e:ed:e6:1b:f2:c8:3f:33:92:52:93:
2d:05:a9:11:a3:79:df:cb:d4:5d:69:9f:54:96:48:
45:22:f3:4b:5c:de:b3:8a:01:3f:f0:cb:e2:85:33:
db:e5:05:09:f1:a5:68:f3:a7:6f:48:04:b4:fc:e4:
50:c7:ea:b1:35:14:f8:21:f9:20:e8:90:a6:64:05:
3f:6a:f5:2f:cf:cd:0c:54:1c:00:ff:65:58:92:3d:
1b:d8:2b:d9:1d:28:c0:08:ef:6a:17:86:be:7e:6a:
37:2c:63:cc:b1:78:19:65:71:32:8e:53:ed:4e:79:
f8:19:fe:f0:1e:ae:1e:ab:f9:77:14:3b:a2:9d:86:
05:90:b2:94:2e:a9:b3:0e:2b:18:c3:09:05:93:4a:
8c:6a:fe:58:10:0a:28:84:36:b0:37:3b:19:8f:51:
83:87:da:9d:8f:ae:16:6f:22:b1:e7:e1:6a:5f:76:
fa:48:d1:89:19:a2:9e:e0:23:fb:84:cb:34:c3:f1:
9a:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:D0:AC:2D:28:3A:03:86:DA:B0:E7:05:F9:53:96:C1:55:6A:F1:66
X509v3 Authority Key Identifier:
keyid:F8:5B:B4:98:54:39:22:28:FB:8B:30:DB:05:D9:6A:C6:64:CE:83:AB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/358504EC0B0111F1A1C63BB7DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
165.49.127.0/24
Signature Algorithm: sha256WithRSAEncryption
28:51:58:ea:71:55:d7:55:54:09:06:af:76:5a:e2:62:f6:95:
e2:9b:84:6d:5d:cf:38:07:5b:4d:e3:e9:bb:b8:98:73:4e:f6:
8d:2e:fe:e6:a5:6d:5e:2c:87:a1:00:3e:f3:eb:1e:66:e2:b8:
64:dd:18:27:01:e4:8c:fa:5d:de:a7:59:50:ad:3d:76:b6:9b:
56:8a:db:a6:c6:9e:19:42:95:02:b8:cd:54:0d:7d:80:01:5b:
7e:6c:94:c1:2b:59:cd:d4:75:23:46:b4:a8:b2:e6:1a:15:23:
7b:f2:9a:6d:24:db:22:a1:63:e4:06:d1:b1:a6:2f:fd:fc:27:
48:04:f6:3f:43:9f:9d:3b:a0:02:ac:a2:32:a5:76:09:2b:55:
37:6c:93:75:93:d6:5b:73:9a:f8:ad:7f:a0:c2:15:2d:6e:00:
ad:4f:39:c1:a8:2e:0a:d2:c2:cc:19:a1:d9:b6:b1:a0:a2:38:
b8:d4:b6:a0:2f:0c:b6:1c:36:99:86:0c:21:73:41:cf:cc:8b:
09:73:3d:8d:eb:04:a5:fb:20:76:3b:b2:7d:e9:06:d4:28:c3:
00:48:95:80:7a:9e:bb:f9:f6:b0:66:3f:50:0f:ee:a4:d0:10:
b7:ad:e8:71:c0:c3:b9:8c:3e:0b:60:3c:77:4d:8b:bb:5a:53:
d5:06:8f:53
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICCu8wDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
QTQ0RUFBUjExMC8GA1UEBRMoRjg1QkI0OTg1NDM5MjIyOEZCOEIzMERCMDVEOTZB
QzY2NENFODNBQjAeFw0yNjAyMTYwNjMxNThaFw0zNjEyMzEwNjMxNThaMBgxFjAU
BgNVBAMTDTY5OTJiOWU2LTBkODcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDGsw0Mwzhegj1ZqcoqNhEE5vmBsm8UEDZc8abwhp/ZnUIdMbYSHH9Nv43s
V6R1+hSvr3He7ErM5NSQkRrRH4JO7eYb8sg/M5JSky0FqRGjed/L1F1pn1SWSEUi
80tc3rOKAT/wy+KFM9vlBQnxpWjzp29IBLT85FDH6rE1FPgh+SDokKZkBT9q9S/P
zQxUHAD/ZViSPRvYK9kdKMAI72oXhr5+ajcsY8yxeBllcTKOU+1OefgZ/vAerh6r
+XcUO6KdhgWQspQuqbMOKxjDCQWTSoxq/lgQCiiENrA3OxmPUYOH2p2PrhZvIrHn
4WpfdvpI0YkZop7gI/uEyzTD8Zr5AgMBAAGjggKiMIICnjAdBgNVHQ4EFgQUq9Cs
LSg6A4basOcF+VOWwVVq8WYwHwYDVR0jBBgwFoAU+Fu0mFQ5Iij7izDbBdlqxmTO
g6swDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNkE0NEVBL0E4QjdFQzFDODkwOTExRTlCNTdFNjg1RkY4QUVBMjI4Ly1GdTBt
RlE1SWlqN2l6RGJCZGxxeG1UT2c2cy5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
Ly1GdTBtRlE1SWlqN2l6RGJCZGxxeG1UT2c2cy5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNkE0NEVBL0E4QjdFQzFDODkwOTExRTlCNTdFNjg1RkY4QUVB
MjI4LzM1ODUwNEVDMEIwMTExRjFBMUM2M0JCN0RBRTRFQzlDLnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAClMX8wDQYJKoZIhvcNAQELBQAD
ggEBAChRWOpxVddVVAkGr3Za4mL2leKbhG1dzzgHW03j6bu4mHNO9o0u/ualbV4s
h6EAPvPrHmbiuGTdGCcB5Iz6Xd6nWVCtPXa2m1aK26bGnhlClQK4zVQNfYABW35s
lMErWc3UdSNGtKiy5hoVI3vymm0k2yKhY+QG0bGmL/38J0gE9j9Dn507oAKsojKl
dgkrVTdsk3WT1ltzmvitf6DCFS1uAK1POcGoLgrSwswZodm2saCiOLjUtqAvDLYc
NpmGDCFzQc/MiwlzPY3rBKX7IHY7sn3pBtQowwBIlYB6nrv59rBmP1AP7qTQELet
6HHAw7mMPgtgPHdNi7taU9UGj1M=
-----END CERTIFICATE-----
Generated at Mon Mar 2 12:22:06 2026 by rpki-client