Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/76355076776511F09EF35E93DAE4EC9C.roa
File: 76355076776511F09EF35E93DAE4EC9C.roa (raw, json)
Hash identifier: HMF0hYHieFYgtVev5BEo4r/iJ1Rnuz3KBNJtXkFpqEU=
Subject key identifier: 8E:96:F2:98:85:DE:71:F4:ED:22:DA:47:52:B9:EC:27:8F:35:AA:4A
Certificate issuer: /CN=F363BA19AR/serialNumber=600C6C9582E14F379FD5A5B2B18D822E3651AF2E
Certificate serial: 05CE
Authority key identifier: 60:0C:6C:95:82:E1:4F:37:9F:D5:A5:B2:B1:8D:82:2E:36:51:AF:2E
Authority info access: rsync://rpki.afrinic.net/repository/arin/YAxslYLhTzef1aWysY2CLjZRry4.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/76355076776511F09EF35E93DAE4EC9C.roa
Signing time: Tue 12 Aug 2025 10:16:51 +0000
ROA not before: Tue 12 Aug 2025 10:16:46 +0000
ROA not after: Wed 24 Dec 2025 10:16:46 +0000
asID: 19148
IP address blocks: 45.221.67.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/YAxslYLhTzef1aWysY2CLjZRry4.crl
rsync://rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/YAxslYLhTzef1aWysY2CLjZRry4.mft
rsync://rpki.afrinic.net/repository/arin/YAxslYLhTzef1aWysY2CLjZRry4.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Aug 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1486 (0x5ce)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363BA19AR, serialNumber=600C6C9582E14F379FD5A5B2B18D822E3651AF2E
Validity
Not Before: Aug 12 10:16:46 2025 GMT
Not After : Dec 24 10:16:46 2025 GMT
Subject: CN=689b1493-ca1c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:b8:ab:11:c0:d2:01:38:25:d6:de:ad:85:e9:
a7:22:30:e9:d5:72:b4:aa:b6:e4:f7:62:46:d0:f2:
b2:b8:9f:37:e0:40:f9:28:f7:b0:b3:7a:c2:d9:cf:
17:68:a4:83:23:95:52:b9:fa:79:f3:63:c6:2e:61:
d6:03:db:c6:92:32:fa:97:e6:32:af:d6:9e:c3:25:
bc:90:a2:69:d4:e8:0c:a1:7a:a8:67:95:bb:0f:bb:
7b:f9:db:00:fb:d7:95:57:f8:7d:b0:fb:c9:f5:7b:
84:9c:f4:be:d4:b5:eb:d0:ec:22:80:f5:dd:3d:af:
d6:3c:48:9f:f1:dd:e3:2e:bd:57:c4:ca:eb:39:b4:
3f:6e:4f:90:e2:6a:37:72:52:b8:d6:21:72:c1:6a:
bf:b4:7f:f7:a3:5d:f3:d6:ac:a2:8f:b7:03:26:f7:
b0:e5:4f:5b:3a:10:5f:b8:f4:40:b3:09:c1:3d:6d:
92:2e:5e:16:eb:58:4c:34:80:d3:97:ca:50:77:3a:
97:70:78:77:6d:80:dc:0e:02:99:e4:ee:1f:5e:eb:
8a:bc:d4:49:f3:c6:93:bd:03:6e:63:9a:d6:1a:a0:
52:5c:66:98:bd:f2:0a:70:a8:ee:e5:31:01:12:17:
79:c4:76:74:68:64:db:81:81:63:79:ef:10:43:37:
ee:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:96:F2:98:85:DE:71:F4:ED:22:DA:47:52:B9:EC:27:8F:35:AA:4A
X509v3 Authority Key Identifier:
keyid:60:0C:6C:95:82:E1:4F:37:9F:D5:A5:B2:B1:8D:82:2E:36:51:AF:2E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/YAxslYLhTzef1aWysY2CLjZRry4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/YAxslYLhTzef1aWysY2CLjZRry4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/76355076776511F09EF35E93DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.221.67.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:ab:23:68:02:cc:3b:dc:66:44:05:7c:c5:06:ce:2a:6e:42:
fc:59:e6:f7:88:a5:ef:3a:dd:5b:9f:2b:a9:bd:48:95:3b:0c:
2d:8f:0c:cc:67:20:23:fa:40:a6:c3:8b:c1:a0:1c:57:69:88:
e9:29:2d:dc:fb:64:ba:e9:15:bc:e8:1b:28:12:e4:13:e4:4f:
f3:24:bd:8a:77:37:d8:78:df:56:21:ba:f8:a9:fc:cf:54:8e:
a6:84:b1:2d:b9:eb:03:bd:14:bb:5d:ce:ce:21:4a:75:bc:ea:
4b:5a:8c:56:4f:2d:2b:36:bf:9c:fe:8e:2f:c4:a3:f4:64:10:
fc:14:a9:b1:d5:ff:82:09:d8:47:0c:4f:db:53:09:20:db:a1:
73:52:ba:8d:39:61:2d:b5:2d:dd:ed:63:47:0e:b1:93:bf:9c:
cc:3b:96:8e:52:ed:17:19:6c:1f:3d:36:24:a7:d0:f7:97:3e:
20:65:f0:01:4e:65:7f:e1:a7:62:1d:49:ba:28:48:f8:37:69:
02:f6:ed:07:54:1d:b6:54:9c:e1:30:3a:e4:26:cc:f1:d9:42:
1d:96:e5:ac:7e:1d:2a:62:74:7f:0b:d0:c5:ad:a4:8c:b8:c3:
9d:f8:b3:34:37:70:5b:2c:ca:cd:cd:f4:9b:0b:ef:98:3f:8e:
85:23:7e:53
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICBc4wDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
M0JBMTlBUjExMC8GA1UEBRMoNjAwQzZDOTU4MkUxNEYzNzlGRDVBNUIyQjE4RDgy
MkUzNjUxQUYyRTAeFw0yNTA4MTIxMDE2NDZaFw0yNTEyMjQxMDE2NDZaMBgxFjAU
BgNVBAMTDTY4OWIxNDkzLWNhMWMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDhuKsRwNIBOCXW3q2F6aciMOnVcrSqtuT3YkbQ8rK4nzfgQPko97CzesLZ
zxdopIMjlVK5+nnzY8YuYdYD28aSMvqX5jKv1p7DJbyQomnU6AyheqhnlbsPu3v5
2wD715VX+H2w+8n1e4Sc9L7UtevQ7CKA9d09r9Y8SJ/x3eMuvVfEyus5tD9uT5Di
ajdyUrjWIXLBar+0f/ejXfPWrKKPtwMm97DlT1s6EF+49ECzCcE9bZIuXhbrWEw0
gNOXylB3OpdweHdtgNwOApnk7h9e64q81EnzxpO9A25jmtYaoFJcZpi98gpwqO7l
MQESF3nEdnRoZNuBgWN57xBDN+6lAgMBAAGjggKiMIICnjAdBgNVHQ4EFgQUjpby
mIXecfTtItpHUrnsJ481qkowHwYDVR0jBBgwFoAUYAxslYLhTzef1aWysY2CLjZR
ry4wDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjNCQTE5L0ZCQ0M3M0I2OTYyOTExRUM5NUI3QjFFMDVBNDBENTc3L1lBeHNs
WUxoVHplZjFhV3lzWTJDTGpaUnJ5NC5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
L1lBeHNsWUxoVHplZjFhV3lzWTJDTGpaUnJ5NC5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNjNCQTE5L0ZCQ0M3M0I2OTYyOTExRUM5NUI3QjFFMDVBNDBE
NTc3Lzc2MzU1MDc2Nzc2NTExRjA5RUYzNUU5M0RBRTRFQzlDLnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAt3UMwDQYJKoZIhvcNAQELBQAD
ggEBAF6rI2gCzDvcZkQFfMUGzipuQvxZ5veIpe863VufK6m9SJU7DC2PDMxnICP6
QKbDi8GgHFdpiOkpLdz7ZLrpFbzoGygS5BPkT/MkvYp3N9h431Yhuvip/M9UjqaE
sS256wO9FLtdzs4hSnW86ktajFZPLSs2v5z+ji/Eo/RkEPwUqbHV/4IJ2EcMT9tT
CSDboXNSuo05YS21Ld3tY0cOsZO/nMw7lo5S7RcZbB89NiSn0PeXPiBl8AFOZX/h
p2IdSbooSPg3aQL27QdUHbZUnOEwOuQmzPHZQh2W5ax+HSpidH8L0MWtpIy4w534
szQ3cFssys3N9JsL75g/joUjflM=
-----END CERTIFICATE-----
Generated at Sat Aug 23 17:54:27 2025 by rpki-client