Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/89E510B85D8611F1B24C54AACE1D38B0.roa
File: 89E510B85D8611F1B24C54AACE1D38B0.roa (raw, json)
Hash identifier: xQca0YSNfTohaLD5b5DytHyowFIOiiL/2TlXb2Rx2Ls=
Subject key identifier: 1E:E7:7D:86:D4:5A:17:C6:B8:6C:D9:29:70:A6:07:8C:36:DC:80:18
Certificate issuer: /CN=F36A44EAAR/serialNumber=F85BB49854392228FB8B30DB05D96AC664CE83AB
Certificate serial: 0C01
Authority key identifier: F8:5B:B4:98:54:39:22:28:FB:8B:30:DB:05:D9:6A:C6:64:CE:83:AB
Authority info access: rsync://rpki.afrinic.net/repository/arin/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/89E510B85D8611F1B24C54AACE1D38B0.roa
Signing time: Mon 01 Jun 2026 06:53:05 +0000
ROA not before: Mon 01 Jun 2026 06:53:00 +0000
ROA not after: Wed 31 Dec 2036 06:53:00 +0000
asID: 834
IP address blocks: 165.49.73.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.crl
rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.mft
rsync://rpki.afrinic.net/repository/arin/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 15 Jun 2026 00:26:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3073 (0xc01)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36A44EAAR, serialNumber=F85BB49854392228FB8B30DB05D96AC664CE83AB
Validity
Not Before: Jun 1 06:53:00 2026 GMT
Not After : Dec 31 06:53:00 2036 GMT
Subject: CN=6a1d2c51-be50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:f4:1e:47:df:41:46:db:64:56:67:01:4e:cb:
b9:f0:dc:e6:ef:54:7a:0e:f1:37:a8:6f:75:ea:83:
e2:e6:df:b9:f6:5b:b9:0b:cc:94:d2:ef:b4:93:11:
ae:ce:47:aa:6f:74:f2:e7:2f:c0:1f:00:21:21:5f:
c1:5d:f6:dd:c6:dd:dc:4a:59:22:33:ce:04:60:d3:
81:a7:6f:72:5f:36:89:45:1a:0d:d3:69:84:59:22:
b9:06:e0:f6:e0:55:d0:e9:58:4a:c4:b8:c4:26:b1:
6f:e1:f1:a6:d9:da:e0:96:27:a8:26:07:b2:fe:91:
f8:27:eb:b1:95:f8:fc:02:f8:20:d0:a1:06:4e:66:
ed:f8:ae:cc:d5:eb:81:14:77:0b:c0:b0:75:3a:f9:
61:06:70:9b:43:82:01:38:71:30:9c:2c:a4:63:42:
f1:01:29:57:1b:78:01:0c:d8:aa:d3:fd:af:33:59:
45:97:e9:4a:37:96:69:eb:4d:c4:91:b2:45:47:8a:
29:bd:13:24:81:76:8c:c3:69:ec:35:d3:1e:f1:47:
c8:7e:3e:6e:54:b1:11:12:52:e9:35:e3:96:c7:53:
ec:c4:c5:7f:09:15:67:2c:f1:5c:88:83:bf:9d:07:
e3:83:a9:3d:a7:b3:64:12:c9:68:8b:09:e0:17:26:
c2:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:E7:7D:86:D4:5A:17:C6:B8:6C:D9:29:70:A6:07:8C:36:DC:80:18
X509v3 Authority Key Identifier:
keyid:F8:5B:B4:98:54:39:22:28:FB:8B:30:DB:05:D9:6A:C6:64:CE:83:AB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/89E510B85D8611F1B24C54AACE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
165.49.73.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:fb:68:73:af:09:8a:c3:9f:b0:7a:bd:0c:11:ca:a1:2a:e5:
16:4f:48:b6:fb:9a:93:ab:6c:1b:70:98:64:07:db:ce:ea:4c:
7c:de:f1:b4:0b:d5:d1:56:28:6a:18:87:f2:57:94:33:6c:c5:
b5:97:0d:f7:ac:51:e0:fc:93:e2:8c:dd:3a:ae:a0:40:8c:9b:
b0:03:47:c8:70:41:45:95:e1:44:8e:79:f9:15:43:3f:3a:08:
60:3b:49:61:83:df:22:4e:de:14:03:60:f4:5b:4e:1b:cd:9c:
25:66:22:f4:ab:b1:bf:75:9d:24:92:0e:5c:6c:ad:f2:7d:d3:
6a:fd:fe:8e:b9:60:8a:24:c1:94:a7:f0:de:67:af:78:97:9e:
21:1e:7b:44:9b:14:41:a8:8a:50:05:e8:6b:bc:b0:d4:c3:e1:
16:a4:41:b9:bf:a7:e5:05:c2:8e:24:62:ed:a6:b0:c8:32:f8:
3e:d5:e8:01:a9:35:bb:e8:e5:7e:53:49:ad:64:09:f1:67:56:
b7:2a:d7:9b:5b:00:ab:80:a1:2c:0f:1c:5c:6b:94:70:43:8b:
d1:28:91:81:ff:25:4c:6e:9a:6e:81:55:33:d3:79:8f:eb:2a:
ab:64:86:97:f1:b2:8e:18:b0:b1:01:9c:99:bd:aa:71:bf:42:
d4:b8:c4:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 23:04:12 2026 by rpki-client