Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/21FC0018637311F191EEBC1ECF1D38B0.roa
File: 21FC0018637311F191EEBC1ECF1D38B0.roa (raw, json)
Hash identifier: bL/fFjgvCTT63PTu4UF/b1rz2TivwkWguXbhK5HlI2E=
Subject key identifier: AB:BD:63:A0:F8:C8:7A:DD:06:86:8C:39:E9:A9:28:EB:13:8F:87:D4
Certificate issuer: /CN=F36A44EAAR/serialNumber=F85BB49854392228FB8B30DB05D96AC664CE83AB
Certificate serial: 0C13
Authority key identifier: F8:5B:B4:98:54:39:22:28:FB:8B:30:DB:05:D9:6A:C6:64:CE:83:AB
Authority info access: rsync://rpki.afrinic.net/repository/arin/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/21FC0018637311F191EEBC1ECF1D38B0.roa
Signing time: Mon 08 Jun 2026 19:49:17 +0000
ROA not before: Mon 08 Jun 2026 19:49:12 +0000
ROA not after: Wed 31 Dec 2036 19:49:12 +0000
asID: 202036
IP address blocks: 165.49.245.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.crl
rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.mft
rsync://rpki.afrinic.net/repository/arin/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 11 Jun 2026 00:26:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3091 (0xc13)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36A44EAAR, serialNumber=F85BB49854392228FB8B30DB05D96AC664CE83AB
Validity
Not Before: Jun 8 19:49:12 2026 GMT
Not After : Dec 31 19:49:12 2036 GMT
Subject: CN=6a271cbd-15eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:3c:17:c1:ab:95:54:f4:46:2c:d8:6c:76:3f:
16:80:a1:bc:07:9e:42:f9:14:08:87:6d:8c:33:a0:
24:f0:68:c7:e8:61:e2:60:8a:2f:a8:1b:61:da:2d:
f1:78:2a:5d:74:04:98:93:b1:3f:27:36:b7:04:57:
c1:df:f0:66:84:e3:13:bb:cf:9e:8a:67:37:d4:8b:
f5:06:13:fc:52:f1:56:4e:5b:a2:3d:ba:56:75:c0:
fe:6e:69:4c:a0:65:a7:ef:8e:d4:a1:f3:be:a4:45:
e2:d5:eb:c9:f3:b1:ba:21:69:1b:0a:db:68:29:21:
bc:f4:13:6d:22:b9:22:26:08:55:2a:9a:92:53:fa:
18:5d:32:12:77:c7:fe:7a:c0:1b:6d:26:9a:b7:21:
03:c3:b1:87:0f:f5:a6:9b:2d:15:3d:71:db:cc:68:
97:ed:ba:72:24:a5:76:55:4a:6d:08:50:87:f4:5d:
87:a7:54:e3:0e:d2:53:50:50:bc:88:f5:25:1d:11:
81:a7:3c:98:15:94:0b:bc:0e:cb:b3:aa:af:9b:15:
55:06:b7:4c:aa:dc:f5:3f:8d:ae:a9:bc:53:7b:32:
1d:41:43:54:c0:6e:92:fe:b3:db:43:23:47:21:89:
67:e4:45:82:dc:ea:0f:0f:2b:c5:48:2d:50:9d:9b:
57:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:BD:63:A0:F8:C8:7A:DD:06:86:8C:39:E9:A9:28:EB:13:8F:87:D4
X509v3 Authority Key Identifier:
keyid:F8:5B:B4:98:54:39:22:28:FB:8B:30:DB:05:D9:6A:C6:64:CE:83:AB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/21FC0018637311F191EEBC1ECF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
165.49.245.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:0c:f2:16:c3:5c:d2:0d:77:6e:0e:c9:f8:49:e6:89:38:d5:
36:9b:9e:4e:2d:69:5b:14:61:f0:e2:69:f1:e9:5c:c9:fe:f5:
a6:b1:81:bd:13:03:85:b0:b3:ac:f4:b4:64:a8:64:c5:ff:89:
b9:44:1c:ef:cf:99:15:2f:2c:45:bd:fa:85:d9:eb:4a:04:76:
f2:00:98:e2:2c:eb:94:0c:37:91:79:6e:c6:e8:ba:6b:cb:35:
d1:bf:d1:07:59:28:6e:5b:b6:2b:b0:5d:46:ad:a8:32:fb:85:
82:fb:c5:d3:25:7f:e3:57:58:7f:85:44:c9:98:c1:06:17:37:
8d:80:26:99:6e:7c:cb:3c:2e:eb:f3:2c:e4:b8:e9:b9:60:ab:
d1:13:01:c2:34:92:62:d7:c2:33:d2:9d:77:d3:14:fe:40:4f:
52:58:27:56:1d:16:b4:1b:2f:88:0f:26:1d:17:1f:b6:a3:de:
88:d4:62:f5:58:c4:51:3f:39:10:76:7e:59:5a:52:85:a2:c4:
96:96:af:17:5f:52:22:b1:04:74:a4:86:90:30:d1:4c:1b:76:
5c:bb:e6:e9:ef:5f:55:1a:53:e6:65:28:ab:cd:fc:79:0a:47:
b2:95:c9:ee:80:4f:98:fa:72:e9:a4:d9:df:bb:fb:ce:fa:6b:
38:0a:0a:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 9 13:00:07 2026 by rpki-client