Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/AF5DA65058F611F1A0F11BEECE1D38B0.roa
File: AF5DA65058F611F1A0F11BEECE1D38B0.roa (raw, json)
Hash identifier: 2IVkFiYyKpfeEIQn/+S41CRF3ASPAYNGhXfFA51mVDY=
Subject key identifier: A3:51:C5:F7:32:90:48:67:64:2E:60:B6:BF:46:61:E0:4C:5A:E4:5C
Certificate issuer: /CN=F36A44EAAR/serialNumber=F85BB49854392228FB8B30DB05D96AC664CE83AB
Certificate serial: 0BF6
Authority key identifier: F8:5B:B4:98:54:39:22:28:FB:8B:30:DB:05:D9:6A:C6:64:CE:83:AB
Authority info access: rsync://rpki.afrinic.net/repository/arin/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/AF5DA65058F611F1A0F11BEECE1D38B0.roa
Signing time: Tue 26 May 2026 11:33:15 +0000
ROA not before: Tue 26 May 2026 11:33:11 +0000
ROA not after: Wed 31 Dec 2036 11:33:11 +0000
asID: 203106
IP address blocks: 165.49.228.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.crl
rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.mft
rsync://rpki.afrinic.net/repository/arin/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 15 Jun 2026 00:26:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3062 (0xbf6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36A44EAAR, serialNumber=F85BB49854392228FB8B30DB05D96AC664CE83AB
Validity
Not Before: May 26 11:33:11 2026 GMT
Not After : Dec 31 11:33:11 2036 GMT
Subject: CN=6a1584fb-5207
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:1a:35:86:42:00:86:83:d9:af:8b:30:17:71:
d0:62:ef:f9:d8:9c:f2:99:87:cd:f4:bc:7a:0d:06:
2a:11:6b:62:86:e3:f7:bc:c2:61:5e:a6:47:ae:b8:
84:b2:d3:e6:1d:5e:d6:6c:26:0d:81:c4:dd:ae:c4:
a6:0a:1b:72:34:81:19:a6:79:cb:33:ce:85:fa:f5:
42:db:3b:52:2d:29:8a:3a:6b:3a:d1:49:0e:d1:92:
f4:2b:fc:de:19:10:61:40:df:7c:d5:0e:c5:2b:9a:
80:ec:69:c5:48:e7:27:bf:92:73:dc:2b:15:62:36:
39:1a:ee:b0:17:1d:24:a8:50:9d:11:bf:39:5e:12:
87:cf:59:23:49:24:b6:e6:12:2e:0a:0e:19:6e:b3:
8b:cb:24:fe:58:4f:0a:06:a9:ad:4e:00:3a:4b:8e:
50:d2:0b:3f:02:04:9f:2d:01:20:b0:0c:df:f2:0c:
a1:8e:4c:dc:f0:5e:2d:e8:e1:7a:3d:aa:4c:ae:14:
5a:77:62:8c:f4:e0:18:d0:e9:e4:63:06:79:f9:22:
f0:60:e3:eb:73:b8:f3:a9:f8:bf:62:80:cb:a3:58:
c1:0c:58:57:1a:cf:e4:69:de:50:bd:22:0a:96:7c:
2f:7f:7d:9f:94:e5:b7:32:76:19:07:f6:dd:87:61:
c5:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:51:C5:F7:32:90:48:67:64:2E:60:B6:BF:46:61:E0:4C:5A:E4:5C
X509v3 Authority Key Identifier:
keyid:F8:5B:B4:98:54:39:22:28:FB:8B:30:DB:05:D9:6A:C6:64:CE:83:AB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/AF5DA65058F611F1A0F11BEECE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
165.49.228.0/24
Signature Algorithm: sha256WithRSAEncryption
31:ee:e8:54:f5:12:75:aa:39:a4:79:10:2b:8b:71:39:80:63:
0f:7d:04:ce:22:7d:d0:02:d9:be:d0:f8:3a:1b:dc:a4:38:1e:
5c:2b:17:35:82:db:f9:1b:06:11:f1:e4:61:c6:96:35:d4:50:
18:93:be:6b:61:86:4d:f3:e4:e2:22:65:a2:f0:f7:fb:69:bd:
67:2e:2c:97:17:4b:2e:d7:d8:5e:dc:c9:50:9d:55:7f:5a:2f:
62:7e:e9:6f:fc:a4:1b:8d:56:df:8e:cf:f5:51:a0:36:3c:8e:
12:4d:d1:26:ac:17:1c:f2:c6:3b:a0:96:d3:e0:47:dd:08:b9:
4c:21:55:49:b5:09:d7:04:0a:a0:ec:31:4a:12:b1:0d:ee:46:
84:e6:e7:fe:9b:ca:5b:dc:04:3b:e6:45:58:a2:22:0f:8d:62:
c1:54:e1:5c:c5:5b:db:a2:05:1f:c1:9a:f9:ee:d8:86:fe:91:
e2:52:d8:d1:02:04:ca:95:7f:84:e4:65:9d:70:e8:e5:63:3e:
db:27:df:9a:39:78:88:af:28:b8:85:4e:50:0d:42:ee:e8:95:
f1:89:fd:4e:25:59:e0:a6:4e:01:e7:3e:3d:67:cb:cf:6c:65:
45:53:96:9f:57:a2:35:f1:78:55:a7:a6:b9:45:0e:37:6f:fb:
9b:50:99:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 15:30:00 2026 by rpki-client