Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/7F8E05AA2A3A11F0A2875F86DAE4EC9C.roa
File: 7F8E05AA2A3A11F0A2875F86DAE4EC9C.roa (raw, json)
Hash identifier: DvA6U1LFCUDnfnRPzsKSGkuy0orNxVbFRzLxYjPBNbA=
Subject key identifier: D7:D4:44:65:C7:E8:C7:39:C0:8F:3A:C3:42:63:CA:8A:2D:CF:DC:B1
Certificate issuer: /CN=F363BA19AR/serialNumber=600C6C9582E14F379FD5A5B2B18D822E3651AF2E
Certificate serial: 051B
Authority key identifier: 60:0C:6C:95:82:E1:4F:37:9F:D5:A5:B2:B1:8D:82:2E:36:51:AF:2E
Authority info access: rsync://rpki.afrinic.net/repository/arin/YAxslYLhTzef1aWysY2CLjZRry4.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/7F8E05AA2A3A11F0A2875F86DAE4EC9C.roa
Signing time: Tue 06 May 2025 05:25:19 +0000
ROA not before: Tue 06 May 2025 05:25:14 +0000
ROA not after: Thu 01 Jan 2026 05:25:14 +0000
asID: 9009
IP address blocks: 45.221.70.0/24 maxlen: 24
45.221.71.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/YAxslYLhTzef1aWysY2CLjZRry4.crl
rsync://rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/YAxslYLhTzef1aWysY2CLjZRry4.mft
rsync://rpki.afrinic.net/repository/arin/YAxslYLhTzef1aWysY2CLjZRry4.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 12 May 2025 00:26:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1307 (0x51b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363BA19AR, serialNumber=600C6C9582E14F379FD5A5B2B18D822E3651AF2E
Validity
Not Before: May 6 05:25:14 2025 GMT
Not After : Jan 1 05:25:14 2026 GMT
Subject: CN=68199d3f-2b90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:fd:65:f6:d3:a9:9e:c2:7f:08:11:59:f1:f3:
82:33:9c:b5:fb:b4:8a:c8:93:96:75:91:91:97:98:
6c:27:12:f1:4d:9a:62:97:a2:b6:8a:71:a5:97:22:
2f:da:15:25:9a:65:8c:f4:91:e8:60:4d:86:6e:63:
92:73:c4:1e:92:5e:56:8b:11:bf:5e:9c:7d:8e:c5:
c1:f9:69:cb:06:82:53:45:85:bb:7a:4c:48:68:de:
c6:e4:36:4b:76:b8:ce:b9:74:a8:1c:35:95:e4:62:
21:ed:98:8c:05:45:75:81:01:e7:c4:e1:db:dc:2d:
cf:a4:96:7b:cd:8a:be:63:e5:9b:e3:36:68:14:d5:
64:b0:ea:8c:49:12:ef:55:ca:f0:f7:ce:f6:1c:47:
60:a0:70:71:47:31:3a:72:97:98:b1:72:dc:db:f7:
72:a6:72:c4:37:e1:df:99:dc:e1:ca:e0:70:76:7f:
6d:40:e0:7b:0e:1a:b5:cc:d0:05:c1:74:d0:bf:26:
21:04:1c:03:43:29:1d:e4:9f:07:62:5b:24:e8:cb:
a5:cb:25:f1:b2:cf:0a:17:a4:a9:e1:c1:33:bb:3b:
19:ce:99:0e:57:ae:92:02:88:31:a1:d3:f5:5a:a9:
91:63:7b:3d:8d:64:2a:0e:62:ff:c0:2a:9f:de:87:
94:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:D4:44:65:C7:E8:C7:39:C0:8F:3A:C3:42:63:CA:8A:2D:CF:DC:B1
X509v3 Authority Key Identifier:
keyid:60:0C:6C:95:82:E1:4F:37:9F:D5:A5:B2:B1:8D:82:2E:36:51:AF:2E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/YAxslYLhTzef1aWysY2CLjZRry4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/YAxslYLhTzef1aWysY2CLjZRry4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/7F8E05AA2A3A11F0A2875F86DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.221.70.0/23
Signature Algorithm: sha256WithRSAEncryption
56:88:f5:81:42:c5:90:a6:20:9c:19:fc:85:46:87:aa:0b:b8:
53:0c:ad:21:4d:a0:65:a1:a1:05:66:b8:f2:13:31:d0:e0:21:
bf:4a:d5:f7:b5:07:84:ac:f6:b9:9f:a3:e3:12:f7:fd:9f:57:
7f:cc:a8:c8:26:51:75:1c:3e:a7:58:ba:3e:2c:d9:51:61:25:
8a:85:06:4a:b2:fa:d8:3e:3d:78:ff:0d:2d:61:5e:d1:4c:97:
d9:6a:46:02:94:a7:09:d2:32:5e:ed:9c:37:1f:ae:59:ec:b7:
5f:63:99:b7:36:f7:cc:45:11:f5:2b:a5:c4:63:dc:5a:89:d7:
70:10:dd:95:bf:37:50:92:87:35:c9:47:91:79:aa:d3:64:6a:
4d:0a:7c:3e:9d:24:b2:fb:8c:3d:c4:f5:2a:cf:ad:30:7b:fb:
54:91:bb:df:45:84:ef:5b:4e:af:21:fc:02:4c:17:9a:82:74:
1e:77:fe:ea:98:f6:64:c6:a2:2e:de:c4:ed:83:1c:1b:41:f8:
d1:3e:f7:62:06:e1:fd:27:55:dc:2e:7f:18:66:e0:31:cd:12:
99:0a:da:37:4c:d1:bb:cf:df:8f:4f:bf:f6:bd:23:47:8d:25:
22:d0:99:02:62:41:35:0e:c7:ca:c8:f7:1f:4c:ad:5e:c6:60:
ec:fa:56:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 00:46:33 2025 by rpki-client