Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/85BBD0F80B0111F1AFCE5BB7DAE4EC9C.roa
File: 85BBD0F80B0111F1AFCE5BB7DAE4EC9C.roa (raw, json)
Hash identifier: Ici9VjGl4OTLx5KjLUAp1ch2HX023UhMVl0dRGzjoRY=
Subject key identifier: BE:83:DC:06:C7:5B:84:4A:37:1D:8F:8D:D7:13:F4:9B:33:1C:3C:45
Certificate issuer: /CN=F36A44EAAR/serialNumber=F85BB49854392228FB8B30DB05D96AC664CE83AB
Certificate serial: 0AF1
Authority key identifier: F8:5B:B4:98:54:39:22:28:FB:8B:30:DB:05:D9:6A:C6:64:CE:83:AB
Authority info access: rsync://rpki.afrinic.net/repository/arin/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/85BBD0F80B0111F1AFCE5BB7DAE4EC9C.roa
Signing time: Mon 16 Feb 2026 06:34:19 +0000
ROA not before: Mon 16 Feb 2026 06:33:57 +0000
ROA not after: Wed 31 Dec 2036 06:33:57 +0000
asID: 212238
IP address blocks: 165.49.236.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.crl
rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.mft
rsync://rpki.afrinic.net/repository/arin/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 04 Mar 2026 00:26:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2801 (0xaf1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36A44EAAR, serialNumber=F85BB49854392228FB8B30DB05D96AC664CE83AB
Validity
Not Before: Feb 16 06:33:57 2026 GMT
Not After : Dec 31 06:33:57 2036 GMT
Subject: CN=6992ba6b-1846
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:d3:d0:38:f0:81:1e:b4:94:e8:b3:f3:29:7f:
76:14:a3:5f:29:27:ce:53:34:36:b3:77:6c:14:d7:
47:96:9f:c2:53:fe:86:9d:d8:bd:e3:b2:cc:50:64:
12:7a:13:ad:cc:73:6f:98:b8:c9:37:69:fc:17:14:
e7:65:f1:08:e6:3e:ad:75:c5:d3:3d:47:9c:5f:fa:
0b:49:07:dc:19:7e:ad:65:8b:33:85:27:cc:de:a0:
7a:dd:d9:32:c2:52:a7:8f:49:fb:d0:39:b7:05:db:
53:f7:d6:75:e3:ff:9c:4f:45:6e:ef:e5:78:81:27:
e9:d0:a1:25:84:18:bc:23:2d:7b:2a:22:7b:10:3f:
01:a8:e3:a9:7b:bb:c6:71:89:ff:78:67:fc:10:19:
8f:dc:9b:77:59:a2:aa:b0:7f:9a:7a:58:92:7a:7c:
08:88:27:48:e6:ab:7b:c5:8c:e8:79:14:25:d2:72:
87:6b:99:b8:ee:80:6a:5b:f0:dd:df:4b:65:53:d7:
e5:98:1f:b5:5a:b6:07:7f:3f:ee:66:2a:29:73:39:
a2:19:d2:ec:a6:ad:6b:c0:36:3d:5d:11:c5:6c:b1:
1d:cf:05:78:0b:a7:1e:30:12:37:69:ef:f6:09:5f:
af:7c:a1:d3:26:b6:b1:6d:71:04:b9:c7:81:75:c7:
9d:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:83:DC:06:C7:5B:84:4A:37:1D:8F:8D:D7:13:F4:9B:33:1C:3C:45
X509v3 Authority Key Identifier:
keyid:F8:5B:B4:98:54:39:22:28:FB:8B:30:DB:05:D9:6A:C6:64:CE:83:AB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/85BBD0F80B0111F1AFCE5BB7DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
165.49.236.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:c2:9f:ee:b5:fb:ec:43:b6:66:3d:e1:ea:32:de:60:a1:c2:
f6:6f:1e:ce:aa:37:fb:57:f3:89:b6:c7:e4:b8:91:49:f4:af:
9d:e8:fa:e4:b4:a1:e1:64:8a:63:0a:2f:bb:55:b5:c3:6f:5b:
eb:e9:68:ef:dd:33:3e:d6:db:36:d4:b9:82:9f:61:ef:c1:43:
4b:65:ba:49:b6:9d:23:cb:19:89:1b:34:40:64:70:83:d0:ba:
85:a0:c3:e1:47:ea:14:0e:1c:6c:91:ae:d3:b3:07:0e:c2:59:
4e:19:76:53:08:c4:49:64:35:8c:70:ca:5b:21:bb:81:e5:33:
74:1b:a7:fd:dd:50:50:51:ae:21:02:99:73:d5:16:4e:e2:6a:
77:f0:c9:eb:80:58:99:99:df:1c:a8:95:93:48:59:ec:60:80:
66:29:4c:ca:ce:c6:96:37:26:d4:ae:97:71:9b:ae:3c:aa:7f:
80:f5:d1:6e:1b:80:8b:65:3f:3c:de:5a:4b:23:b5:e8:ac:03:
28:fb:11:ee:dc:00:7b:11:7d:36:7f:d5:44:35:1b:53:3a:08:
99:9d:89:ed:e6:fd:82:9d:22:47:07:83:b8:49:35:9a:4d:33:
2d:09:d3:d9:98:78:47:f0:ac:09:72:62:0a:3a:c4:81:e3:00:
14:cf:05:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 21:40:46 2026 by rpki-client