Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/4D0004604EC611F1B59323DFCE1D38B0.roa
File: 4D0004604EC611F1B59323DFCE1D38B0.roa (raw, json)
Hash identifier: U0VofsfMDwCqWhxhMhSuNRIeJOYJcwoKSm/NLAXX8UY=
Subject key identifier: 69:C1:52:63:2F:12:92:7D:FD:BA:90:AB:5A:1C:4F:A6:B6:A2:B0:5A
Certificate issuer: /CN=F36A44EAAR/serialNumber=F85BB49854392228FB8B30DB05D96AC664CE83AB
Certificate serial: 0BCF
Authority key identifier: F8:5B:B4:98:54:39:22:28:FB:8B:30:DB:05:D9:6A:C6:64:CE:83:AB
Authority info access: rsync://rpki.afrinic.net/repository/arin/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/4D0004604EC611F1B59323DFCE1D38B0.roa
Signing time: Wed 13 May 2026 12:21:43 +0000
ROA not before: Wed 13 May 2026 12:21:38 +0000
ROA not after: Wed 31 Dec 2036 12:21:38 +0000
asID: 402487
IP address blocks: 165.49.73.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.crl
rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.mft
rsync://rpki.afrinic.net/repository/arin/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 26 May 2026 00:26:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3023 (0xbcf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36A44EAAR, serialNumber=F85BB49854392228FB8B30DB05D96AC664CE83AB
Validity
Not Before: May 13 12:21:38 2026 GMT
Not After : Dec 31 12:21:38 2036 GMT
Subject: CN=6a046cd7-5298
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:29:eb:04:27:9a:d2:30:99:c0:88:65:29:2b:
6e:62:cf:bb:36:87:28:92:2f:11:95:c1:f8:57:fe:
13:1f:10:8d:71:49:44:7f:1b:33:79:f9:b7:18:3f:
06:f8:56:12:e7:22:b1:60:e3:5a:c2:8f:07:6f:1b:
13:42:b0:54:05:80:33:23:db:39:cc:77:f6:ec:e8:
8a:26:28:9b:1d:b2:6e:54:51:f2:e9:8c:21:76:f9:
9d:d5:87:71:78:fa:ef:e7:f8:da:57:f7:78:59:96:
21:a6:55:21:46:37:11:02:aa:11:d5:bb:10:41:d4:
5e:bb:d9:30:f5:06:1c:3b:ea:95:03:05:67:79:8e:
40:1e:3b:c7:94:f8:25:91:6e:88:7e:5f:18:ea:19:
c2:65:0b:b4:73:23:71:49:39:f2:54:08:a1:01:ea:
97:21:86:39:0e:48:cb:a8:3d:9f:a5:e3:12:4d:1b:
03:0e:b7:48:ff:d6:8d:5d:51:3c:7a:3f:a2:28:18:
3c:2b:f3:fa:3f:f9:0e:75:5e:38:89:9c:52:8a:cd:
86:40:04:a9:51:67:e2:32:7c:2a:cd:d9:88:1b:7e:
71:ff:7b:9c:9c:95:1a:58:cd:0a:fd:47:ac:b8:48:
3e:cf:ff:d6:d4:55:d6:c8:9d:7e:65:35:20:dc:1e:
76:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:C1:52:63:2F:12:92:7D:FD:BA:90:AB:5A:1C:4F:A6:B6:A2:B0:5A
X509v3 Authority Key Identifier:
keyid:F8:5B:B4:98:54:39:22:28:FB:8B:30:DB:05:D9:6A:C6:64:CE:83:AB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/4D0004604EC611F1B59323DFCE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
165.49.73.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:7c:3d:59:dc:bf:5b:62:72:0b:a6:71:ee:53:3e:0b:71:41:
03:92:8e:3b:33:a3:32:84:a1:0c:7f:2c:cb:b1:ed:55:21:3f:
5e:af:8a:90:0a:59:17:96:d8:41:93:de:81:98:83:03:ff:ba:
75:5b:b7:4e:c9:11:76:4e:d8:20:35:87:1b:af:c2:71:cd:d2:
d0:06:fe:4d:33:b0:cd:af:fb:d7:d4:24:32:c9:49:c5:d5:f9:
c0:49:78:a5:a1:43:34:c0:24:f8:f1:7f:85:02:42:cb:d9:22:
3e:5c:a1:3f:9c:38:ef:77:3b:ca:64:e2:88:d4:24:79:28:48:
de:96:47:4a:ae:44:b8:19:b2:bc:79:ef:fc:46:fd:d1:f2:9a:
e2:7d:5a:78:d9:72:b9:a1:a8:84:83:99:f0:c5:fa:22:7c:80:
03:ed:0c:9b:e0:d5:a1:ba:18:6d:04:c3:98:1d:e3:e9:16:33:
6a:65:e8:44:e0:3f:f5:2b:45:14:97:89:5d:fb:00:6b:a0:8e:
e5:4f:77:82:50:78:1c:c6:b7:4f:16:e8:d7:7f:60:4e:2c:4a:
67:db:1d:99:86:02:de:d2:de:ec:77:ff:bc:28:5e:00:6e:7b:
d3:a1:3a:3d:2d:52:8b:05:5d:51:00:4f:f1:fa:c5:54:ab:a7:
46:40:9e:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 24 13:09:20 2026 by rpki-client