Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/0DB0DB384C4011F09A5C6FC4DAE4EC9C.roa
File: 0DB0DB384C4011F09A5C6FC4DAE4EC9C.roa (raw, json)
Hash identifier: SCXP25TMlrB+BtIxCHu2LDf2ZF5SNNAsW/pnjTuTXDQ=
Subject key identifier: 28:4E:79:7E:31:F2:F2:DE:05:08:3D:EE:59:E4:02:68:5A:B7:7C:F1
Certificate issuer: /CN=F363BA19AR/serialNumber=600C6C9582E14F379FD5A5B2B18D822E3651AF2E
Certificate serial: 056E
Authority key identifier: 60:0C:6C:95:82:E1:4F:37:9F:D5:A5:B2:B1:8D:82:2E:36:51:AF:2E
Authority info access: rsync://rpki.afrinic.net/repository/arin/YAxslYLhTzef1aWysY2CLjZRry4.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/0DB0DB384C4011F09A5C6FC4DAE4EC9C.roa
Signing time: Wed 18 Jun 2025 12:30:44 +0000
ROA not before: Wed 18 Jun 2025 12:30:40 +0000
ROA not after: Tue 16 Jun 2026 12:30:40 +0000
asID: 29802
IP address blocks: 45.221.64.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/YAxslYLhTzef1aWysY2CLjZRry4.crl
rsync://rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/YAxslYLhTzef1aWysY2CLjZRry4.mft
rsync://rpki.afrinic.net/repository/arin/YAxslYLhTzef1aWysY2CLjZRry4.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 30 Jun 2025 00:26:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1390 (0x56e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363BA19AR, serialNumber=600C6C9582E14F379FD5A5B2B18D822E3651AF2E
Validity
Not Before: Jun 18 12:30:40 2025 GMT
Not After : Jun 16 12:30:40 2026 GMT
Subject: CN=6852b174-6938
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:a7:c2:cf:6e:34:28:ef:18:66:72:14:04:c6:
aa:67:ab:d9:43:e0:b2:af:dd:ff:8d:8c:75:aa:e6:
90:9f:99:1a:0c:67:77:04:04:03:52:89:c4:12:f1:
60:af:55:de:a1:a4:ea:93:a3:31:5b:d6:84:d3:86:
48:e6:e4:31:52:1e:7c:0d:a7:79:e2:62:6a:ea:2c:
2a:3b:a5:9a:e5:12:1b:90:b1:87:b8:fc:f1:c8:d9:
cc:6b:a9:5b:d3:01:5f:4f:89:f5:9f:41:af:5d:1e:
84:a2:96:22:11:4f:25:14:9f:ef:fe:7a:78:10:02:
69:b0:58:50:ed:43:f7:b6:97:e6:16:53:33:8f:e0:
16:3d:27:8c:d1:2c:e5:0b:49:63:1e:37:df:35:40:
43:3b:36:ab:f0:3f:dd:59:76:58:1d:e8:7f:94:95:
27:a1:43:93:73:49:49:2d:0a:61:ff:cf:86:c7:1e:
8f:c2:39:2a:e2:4e:1f:d7:15:cf:13:8f:10:a5:5f:
b6:8b:1c:d1:3a:bd:a3:6b:96:92:f4:e7:60:36:07:
9b:f9:a3:da:ff:80:d6:1a:d0:68:1b:71:0c:97:71:
32:6d:e7:d5:e0:dc:ea:a5:1a:9f:50:48:71:7c:6c:
05:50:64:96:31:84:d0:f0:af:97:78:05:66:a7:bd:
0f:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:4E:79:7E:31:F2:F2:DE:05:08:3D:EE:59:E4:02:68:5A:B7:7C:F1
X509v3 Authority Key Identifier:
keyid:60:0C:6C:95:82:E1:4F:37:9F:D5:A5:B2:B1:8D:82:2E:36:51:AF:2E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/YAxslYLhTzef1aWysY2CLjZRry4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/YAxslYLhTzef1aWysY2CLjZRry4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/0DB0DB384C4011F09A5C6FC4DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.221.64.0/24
Signature Algorithm: sha256WithRSAEncryption
32:61:8b:67:c2:86:8f:5b:75:15:ba:c6:02:c0:30:e1:8b:23:
99:bb:2f:4c:42:d3:27:24:e8:46:1b:5e:7e:43:87:04:38:12:
75:33:f3:3c:e8:5b:1c:54:e6:96:94:18:64:f0:e9:23:c0:cb:
90:b7:36:ce:94:28:08:98:02:18:01:c8:36:14:02:b9:94:68:
3b:bf:6e:3b:ad:80:73:4b:40:f0:7a:9e:41:00:f9:56:a4:47:
79:65:53:b1:ea:5d:d8:f4:ad:6f:aa:0f:78:9b:09:83:f0:04:
d5:67:28:21:98:8c:57:0f:97:ce:3c:f5:96:7f:74:d6:a1:06:
7a:ad:89:2a:a4:86:f1:95:e0:06:83:20:42:e8:ca:e9:76:09:
6c:08:a4:0a:e5:fb:01:b0:d8:84:dd:ef:ce:48:aa:20:b6:a3:
cf:b4:cc:e0:a0:25:15:8b:e6:1e:c7:2a:b6:a9:8a:66:2e:48:
6c:af:19:1a:ac:ed:6a:21:54:39:74:e0:c5:2d:5f:3f:72:ef:
1b:1c:b3:0c:95:b6:e9:02:c0:a9:cb:4f:82:23:82:35:bd:39:
36:49:3d:14:c8:96:da:36:d3:9c:5f:8a:5a:05:c1:b8:ae:6e:
20:5d:df:ec:fb:b3:55:ff:7b:82:fa:9c:21:24:8b:74:cb:fe:
ee:6c:09:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 01:35:45 2025 by rpki-client