Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36180A1/393C4C903F5A11EF92994170762E951A/73F502E22D0A11F1984F2EA6DAE4EC9C.roa
File: 73F502E22D0A11F1984F2EA6DAE4EC9C.roa (raw, json)
Hash identifier: 4k+reHjQ2qKzbqLfzomf/zDmUieo6Evhc7Pv9095Np4=
Subject key identifier: 16:90:7A:46:87:14:C3:F2:19:4C:02:15:49:3B:DC:64:77:4C:DA:69
Certificate issuer: /CN=F36180A1AR/serialNumber=EEB8452014A7AA0B47F2A80E36354127EBB0400D
Certificate serial: 0286
Authority key identifier: EE:B8:45:20:14:A7:AA:0B:47:F2:A8:0E:36:35:41:27:EB:B0:40:0D
Authority info access: rsync://rpki.afrinic.net/repository/arin/7rhFIBSnqgtH8qgONjVBJ-uwQA0.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36180A1/393C4C903F5A11EF92994170762E951A/73F502E22D0A11F1984F2EA6DAE4EC9C.roa
Signing time: Tue 31 Mar 2026 14:03:55 +0000
ROA not before: Tue 31 Mar 2026 14:03:50 +0000
ROA not after: Sun 30 Mar 2036 14:03:50 +0000
asID: 37153
IP address blocks: 160.115.0.0/16 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36180A1/393C4C903F5A11EF92994170762E951A/7rhFIBSnqgtH8qgONjVBJ-uwQA0.crl
rsync://rpki.afrinic.net/repository/member_repository/F36180A1/393C4C903F5A11EF92994170762E951A/7rhFIBSnqgtH8qgONjVBJ-uwQA0.mft
rsync://rpki.afrinic.net/repository/arin/7rhFIBSnqgtH8qgONjVBJ-uwQA0.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 04:16:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 646 (0x286)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36180A1AR, serialNumber=EEB8452014A7AA0B47F2A80E36354127EBB0400D
Validity
Not Before: Mar 31 14:03:50 2026 GMT
Not After : Mar 30 14:03:50 2036 GMT
Subject: CN=69cbd44b-3957
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:b1:f5:b3:86:db:e6:dd:39:f3:4c:04:b9:36:
d6:57:a6:75:17:60:7e:0c:9d:0d:76:5e:5c:90:a3:
fa:62:29:ca:d5:f4:25:6d:ec:6d:ed:e7:fc:2c:4f:
5a:2d:90:ee:6f:b2:e3:28:ba:a6:0b:a9:9f:f3:4f:
ca:66:81:1e:ee:e4:07:21:ee:51:3c:1c:e1:4e:23:
a4:ce:ba:51:39:3b:67:ba:cc:55:d4:57:91:19:76:
0f:57:48:54:ef:4a:b0:7c:be:5e:5e:9f:24:c2:85:
d2:e9:e8:d2:ba:f4:f3:05:90:df:dd:65:81:dc:bb:
c8:1b:6e:09:6f:2c:48:d0:59:f1:d3:5d:aa:88:54:
fd:a0:49:7c:5b:92:a1:92:de:57:74:d4:27:9f:52:
b5:dc:1e:c7:e5:ba:35:7b:e5:bf:83:00:0c:f2:21:
75:04:42:f7:c4:42:7c:de:22:b0:d6:0d:45:31:df:
99:73:b7:e6:0d:ba:68:f7:12:ac:f4:77:6b:67:68:
e4:f3:bf:52:f9:c6:2d:40:ed:2d:60:0d:e5:cb:48:
bb:30:e6:3e:f3:df:d0:29:46:70:99:96:8f:e8:53:
dd:da:cf:77:a1:37:1a:f7:71:88:b6:23:1f:8b:a7:
29:da:41:53:25:ec:b8:a6:19:dc:e4:ce:d7:ad:bd:
d6:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:90:7A:46:87:14:C3:F2:19:4C:02:15:49:3B:DC:64:77:4C:DA:69
X509v3 Authority Key Identifier:
keyid:EE:B8:45:20:14:A7:AA:0B:47:F2:A8:0E:36:35:41:27:EB:B0:40:0D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36180A1/393C4C903F5A11EF92994170762E951A/7rhFIBSnqgtH8qgONjVBJ-uwQA0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/7rhFIBSnqgtH8qgONjVBJ-uwQA0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36180A1/393C4C903F5A11EF92994170762E951A/73F502E22D0A11F1984F2EA6DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.115.0.0/16
Signature Algorithm: sha256WithRSAEncryption
7a:cd:b3:da:ec:07:71:ac:31:5b:28:47:3a:73:ae:8c:7f:68:
6b:dc:5c:53:27:47:f9:d0:4a:15:1a:b5:06:84:ad:1f:4f:22:
2b:63:bd:eb:33:4a:d5:34:4b:84:c5:24:db:96:2c:16:3b:16:
33:2f:17:b6:b7:8d:99:a9:c2:db:2a:ee:53:f9:eb:16:60:3f:
c1:c7:b9:7d:94:66:dc:6a:3e:84:f0:cd:0d:49:d6:51:f6:66:
5e:23:d9:7b:4a:62:97:69:66:72:e0:1c:3a:db:3f:89:a2:46:
2a:6c:68:c1:2d:65:37:a7:9a:49:a6:f5:49:55:96:35:ab:07:
22:95:60:95:4a:5a:eb:53:b3:61:5d:27:7e:24:66:b4:6f:b4:
ce:53:73:13:63:d2:2a:15:72:4c:3f:19:18:af:61:41:e5:7d:
6f:88:c0:6f:8b:65:4c:5f:90:83:b4:78:e6:14:c0:ff:bf:e3:
44:31:82:d3:b7:71:6d:a2:79:e6:b4:02:42:76:20:b5:85:87:
26:67:e1:9f:e1:e7:b9:1f:7f:8a:1d:de:ef:ee:4c:8b:40:92:
93:22:cf:9d:62:35:6f:a4:5f:4e:f7:5d:0c:94:2f:72:f3:fa:
8b:40:0c:34:a0:9b:05:2b:61:bf:f2:20:dc:26:dc:43:f8:89:
af:4d:61:e1
-----BEGIN CERTIFICATE-----
MIIFfzCCBGegAwIBAgICAoYwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
MTgwQTFBUjExMC8GA1UEBRMoRUVCODQ1MjAxNEE3QUEwQjQ3RjJBODBFMzYzNTQx
MjdFQkIwNDAwRDAeFw0yNjAzMzExNDAzNTBaFw0zNjAzMzAxNDAzNTBaMBgxFjAU
BgNVBAMTDTY5Y2JkNDRiLTM5NTcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDKsfWzhtvm3TnzTAS5NtZXpnUXYH4MnQ12XlyQo/piKcrV9CVt7G3t5/ws
T1otkO5vsuMouqYLqZ/zT8pmgR7u5Ach7lE8HOFOI6TOulE5O2e6zFXUV5EZdg9X
SFTvSrB8vl5enyTChdLp6NK69PMFkN/dZYHcu8gbbglvLEjQWfHTXaqIVP2gSXxb
kqGS3ld01CefUrXcHsflujV75b+DAAzyIXUEQvfEQnzeIrDWDUUx35lzt+YNumj3
Eqz0d2tnaOTzv1L5xi1A7S1gDeXLSLsw5j7z39ApRnCZlo/oU93az3ehNxr3cYi2
Ix+LpynaQVMl7LimGdzkztetvdahAgMBAAGjggKhMIICnTAdBgNVHQ4EFgQUFpB6
RocUw/IZTAIVSTvcZHdM2mkwHwYDVR0jBBgwFoAU7rhFIBSnqgtH8qgONjVBJ+uw
QA0wDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjE4MEExLzM5M0M0QzkwM0Y1QTExRUY5Mjk5NDE3MDc2MkU5NTFBLzdyaEZJ
QlNucWd0SDhxZ09OalZCSi11d1FBMC5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
LzdyaEZJQlNucWd0SDhxZ09OalZCSi11d1FBMC5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNjE4MEExLzM5M0M0QzkwM0Y1QTExRUY5Mjk5NDE3MDc2MkU5
NTFBLzczRjUwMkUyMkQwQTExRjE5ODRGMkVBNkRBRTRFQzlDLnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUDAwCgczANBgkqhkiG9w0BAQsFAAOC
AQEAes2z2uwHcawxWyhHOnOujH9oa9xcUydH+dBKFRq1BoStH08iK2O96zNK1TRL
hMUk25YsFjsWMy8XtreNmanC2yruU/nrFmA/wce5fZRm3Go+hPDNDUnWUfZmXiPZ
e0pil2lmcuAcOts/iaJGKmxowS1lN6eaSab1SVWWNasHIpVglUpa61OzYV0nfiRm
tG+0zlNzE2PSKhVyTD8ZGK9hQeV9b4jAb4tlTF+Qg7R45hTA/7/jRDGC07dxbaJ5
5rQCQnYgtYWHJmfhn+HnuR9/ih3e7+5Mi0CSkyLPnWI1b6RfTvddDJQvcvP6i0AM
NKCbBSthv/Ig3CbcQ/iJr01h4Q==
-----END CERTIFICATE-----
Generated at Fri Apr 17 21:12:34 2026 by rpki-client