Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/E4A2E916370311F1B8F530F5CE1D38B0.roa
File: E4A2E916370311F1B8F530F5CE1D38B0.roa (raw, json)
Hash identifier: 7jfCu2bEB6C811zUyct0bEmC1tjxCHS8CUxB0s8bC+o=
Subject key identifier: 5A:15:31:F7:1C:D8:5D:33:87:6A:32:33:69:1E:BA:2D:38:B1:B5:DC
Certificate issuer: /CN=F36A44EAAR/serialNumber=F85BB49854392228FB8B30DB05D96AC664CE83AB
Certificate serial: 0B6F
Authority key identifier: F8:5B:B4:98:54:39:22:28:FB:8B:30:DB:05:D9:6A:C6:64:CE:83:AB
Authority info access: rsync://rpki.afrinic.net/repository/arin/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/E4A2E916370311F1B8F530F5CE1D38B0.roa
Signing time: Mon 13 Apr 2026 06:42:09 +0000
ROA not before: Mon 13 Apr 2026 06:42:04 +0000
ROA not after: Wed 31 Dec 2036 06:42:04 +0000
asID: 834
IP address blocks: 165.49.247.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.crl
rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.mft
rsync://rpki.afrinic.net/repository/arin/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 01:26:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2927 (0xb6f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36A44EAAR, serialNumber=F85BB49854392228FB8B30DB05D96AC664CE83AB
Validity
Not Before: Apr 13 06:42:04 2026 GMT
Not After : Dec 31 06:42:04 2036 GMT
Subject: CN=69dc9041-23f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:b2:4d:70:ef:c5:10:4b:df:86:34:e4:19:0a:
60:e5:be:24:29:be:9f:44:2f:8c:f0:89:46:78:48:
42:87:d7:9c:c2:f2:ff:6d:e3:e1:f5:8b:d3:23:31:
f0:5c:fa:0b:59:21:eb:28:f2:8c:f1:5b:ee:93:f1:
98:76:09:97:f8:8a:07:3a:96:ca:fe:5e:c2:5f:e8:
a8:24:4c:7f:2f:59:40:d7:e7:6e:75:78:c3:60:b6:
04:7e:c7:c2:7e:e6:5f:de:3b:52:19:b8:d0:86:20:
a2:ae:2a:16:d7:db:80:e2:51:03:16:5e:58:83:e1:
ac:3b:34:5e:f6:8c:67:03:34:c6:af:02:7e:55:02:
91:3c:0c:b1:4e:15:2f:9c:0b:1f:aa:4c:c3:99:b8:
d1:51:5a:c0:88:84:f9:1e:d9:08:a6:fe:32:ba:56:
13:95:fc:4a:10:79:9e:3e:8d:e3:e9:9c:31:7f:ca:
90:08:7d:99:ee:2e:48:92:dc:4f:86:1e:4c:87:0f:
c3:23:1e:02:32:a5:bf:03:ae:fc:ef:6c:c0:c9:8b:
0e:49:d7:ed:28:88:f8:94:15:ab:7b:ed:3a:e5:51:
41:d7:bb:a1:02:f1:89:65:5b:31:bd:61:bf:3b:13:
81:86:0d:08:fc:a4:2b:cc:12:bc:0b:6e:ae:db:30:
1a:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:15:31:F7:1C:D8:5D:33:87:6A:32:33:69:1E:BA:2D:38:B1:B5:DC
X509v3 Authority Key Identifier:
keyid:F8:5B:B4:98:54:39:22:28:FB:8B:30:DB:05:D9:6A:C6:64:CE:83:AB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/E4A2E916370311F1B8F530F5CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
165.49.247.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:01:69:af:5b:8f:cc:2f:49:d8:5a:56:d8:e4:cb:50:27:5c:
53:ee:47:d4:4e:03:db:81:ba:5f:6f:14:fd:be:3d:63:85:0b:
17:4d:97:6c:4b:70:39:98:d0:ea:01:b3:26:b9:27:87:66:81:
4c:6d:66:c6:6a:0a:e1:30:7a:ae:f8:74:e1:11:ef:f2:b1:49:
ac:41:c3:61:65:5d:ee:2d:2d:7c:06:64:0b:18:da:b1:b8:7c:
2c:f9:5a:f2:18:aa:50:9d:22:59:a1:15:91:9d:12:00:80:dd:
19:fd:ed:55:ca:22:ea:a0:5c:67:cd:0c:42:ae:7e:20:97:f3:
a0:c9:4a:5b:33:78:e2:6f:a0:b9:3b:5a:7a:b9:5b:3f:60:b7:
3c:f8:e1:8d:f9:ec:75:9e:09:8f:7e:be:d9:f2:4a:d4:1a:5f:
bc:55:7b:18:64:44:0f:2b:ba:d8:5c:ad:08:6d:5e:7c:35:8d:
db:83:99:10:95:13:78:19:e1:82:7b:4c:e8:c8:f1:4a:5f:49:
9a:7e:a5:55:5f:3c:cc:72:ef:a5:74:01:a8:24:45:1e:51:9a:
0c:4e:5e:85:e2:59:2e:15:4d:e8:2a:fd:79:fe:55:24:01:77:
36:3c:f5:7a:b2:08:09:fb:4c:78:85:29:88:f8:69:4a:cc:c1:
f3:0b:6a:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 19:42:38 2026 by rpki-client