Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/E9F885384C3F11F0B8930FC4DAE4EC9C.roa
File: E9F885384C3F11F0B8930FC4DAE4EC9C.roa (raw, json)
Hash identifier: oZcv/veL+bD/4wa03snpKn/Sd0fxZtPhp5aqRdk2pR8=
Subject key identifier: 26:FB:C9:D4:26:4E:76:43:0C:8F:62:81:58:EE:7E:2C:D3:67:00:94
Certificate issuer: /CN=F363BA19AR/serialNumber=600C6C9582E14F379FD5A5B2B18D822E3651AF2E
Certificate serial: 056A
Authority key identifier: 60:0C:6C:95:82:E1:4F:37:9F:D5:A5:B2:B1:8D:82:2E:36:51:AF:2E
Authority info access: rsync://rpki.afrinic.net/repository/arin/YAxslYLhTzef1aWysY2CLjZRry4.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/E9F885384C3F11F0B8930FC4DAE4EC9C.roa
Signing time: Wed 18 Jun 2025 12:29:44 +0000
ROA not before: Wed 18 Jun 2025 12:29:39 +0000
ROA not after: Tue 16 Jun 2026 12:29:39 +0000
asID: 29802
IP address blocks: 45.221.67.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/YAxslYLhTzef1aWysY2CLjZRry4.crl
rsync://rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/YAxslYLhTzef1aWysY2CLjZRry4.mft
rsync://rpki.afrinic.net/repository/arin/YAxslYLhTzef1aWysY2CLjZRry4.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 01 Jul 2025 00:26:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1386 (0x56a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363BA19AR, serialNumber=600C6C9582E14F379FD5A5B2B18D822E3651AF2E
Validity
Not Before: Jun 18 12:29:39 2025 GMT
Not After : Jun 16 12:29:39 2026 GMT
Subject: CN=6852b138-0bde
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:1b:55:c3:aa:f1:b6:35:7f:d4:61:c7:9c:79:
b3:72:9e:52:d2:be:ab:7f:aa:c6:eb:04:67:cf:90:
68:2a:f4:cf:6d:6b:1f:23:09:13:88:6a:84:a4:d1:
45:67:48:8a:97:e0:0b:da:d8:d4:9e:b1:66:58:58:
8c:d8:8f:fc:f9:a7:f0:26:f8:1d:bb:66:18:b7:f7:
64:dc:b7:f7:a2:1f:62:1c:97:24:27:05:ea:05:a2:
af:b7:b8:b8:f4:9c:10:c9:2a:2c:33:f9:a1:70:61:
7a:2f:5b:5b:91:0e:d9:ed:7b:63:88:cb:9d:1a:f8:
f7:15:19:b0:58:0b:94:80:22:32:b0:e1:b5:ee:8f:
4f:b5:f4:25:6e:2e:cf:0e:d6:29:8a:cc:d3:7c:14:
a3:36:31:4d:67:41:6f:eb:5c:e0:b5:ea:25:49:1b:
96:46:95:f8:22:a7:f4:bd:5e:87:f4:45:7c:c3:7f:
a9:93:32:5a:70:98:c2:cf:fb:8a:96:17:b5:64:cf:
4f:95:3f:49:71:7a:aa:92:3e:0e:e2:ae:6e:0d:b2:
a8:e0:58:4a:b9:96:d4:ba:2b:9c:b8:e0:74:77:c4:
71:84:73:47:e1:71:aa:c0:54:8d:8d:2d:e4:e2:ab:
25:d8:19:9f:da:e3:ae:a2:84:e5:5a:35:01:75:50:
92:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:FB:C9:D4:26:4E:76:43:0C:8F:62:81:58:EE:7E:2C:D3:67:00:94
X509v3 Authority Key Identifier:
keyid:60:0C:6C:95:82:E1:4F:37:9F:D5:A5:B2:B1:8D:82:2E:36:51:AF:2E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/YAxslYLhTzef1aWysY2CLjZRry4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/YAxslYLhTzef1aWysY2CLjZRry4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/E9F885384C3F11F0B8930FC4DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.221.67.0/24
Signature Algorithm: sha256WithRSAEncryption
a0:55:09:08:7a:f6:b1:48:d5:fc:67:d1:60:9a:ac:de:72:a4:
37:88:74:90:99:5a:60:a8:b7:cc:f7:ee:15:4f:31:8d:84:e1:
6a:35:b9:f5:fb:07:c5:b4:1b:f1:98:94:fb:08:bf:0a:e8:8e:
a5:39:11:95:07:81:6e:9a:f9:7c:a8:bf:bb:ac:18:c2:5a:a6:
7b:aa:38:de:a2:72:5c:ad:12:6c:ad:47:c8:ad:58:ca:47:2f:
59:df:63:87:41:ef:49:42:55:01:b8:18:fc:d1:23:c3:50:b1:
25:1e:e8:90:35:32:06:a7:88:76:8f:5a:99:4d:2f:c3:d0:ab:
df:43:cf:75:ed:72:00:3f:fe:b6:4f:f6:5f:9e:38:15:2c:8d:
d3:9e:27:b8:95:01:43:12:3b:49:7a:85:f2:02:80:4a:17:c1:
b3:ea:56:8b:81:99:14:c6:07:d1:6d:49:11:f1:0d:bf:f4:22:
93:cf:90:be:7a:c1:41:a0:06:64:4a:83:01:68:b4:09:97:5d:
0c:3b:9d:b1:1c:c9:5b:ec:ae:02:ee:8a:97:05:22:82:24:20:
78:3a:17:9f:43:d9:90:42:45:2f:94:bf:0e:6a:61:98:dc:72:
55:ad:43:8c:5d:b3:67:94:5b:56:3f:45:25:76:3a:5b:dd:2c:
c2:ac:63:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 10:25:02 2025 by rpki-client