Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/5EF1F05EB4B911F0ADDA6EC1DAE4EC9C.roa
File: 5EF1F05EB4B911F0ADDA6EC1DAE4EC9C.roa (raw, json)
Hash identifier: Ou0YjQn+7QAdghBuzmfWSgrZxr+lPZXRk73LPiPreDE=
Subject key identifier: 55:1E:6F:18:12:2A:01:18:59:72:D6:78:71:D6:17:2D:8A:B1:74:74
Certificate issuer: /CN=F363BA19AR/serialNumber=600C6C9582E14F379FD5A5B2B18D822E3651AF2E
Certificate serial: 0625
Authority key identifier: 60:0C:6C:95:82:E1:4F:37:9F:D5:A5:B2:B1:8D:82:2E:36:51:AF:2E
Authority info access: rsync://rpki.afrinic.net/repository/arin/YAxslYLhTzef1aWysY2CLjZRry4.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/5EF1F05EB4B911F0ADDA6EC1DAE4EC9C.roa
Signing time: Wed 29 Oct 2025 11:21:11 +0000
ROA not before: Wed 29 Oct 2025 11:21:06 +0000
ROA not after: Tue 27 Oct 2026 11:21:06 +0000
asID: 55154
IP address blocks: 45.221.64.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/YAxslYLhTzef1aWysY2CLjZRry4.crl
rsync://rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/YAxslYLhTzef1aWysY2CLjZRry4.mft
rsync://rpki.afrinic.net/repository/arin/YAxslYLhTzef1aWysY2CLjZRry4.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Nov 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1573 (0x625)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363BA19AR, serialNumber=600C6C9582E14F379FD5A5B2B18D822E3651AF2E
Validity
Not Before: Oct 29 11:21:06 2025 GMT
Not After : Oct 27 11:21:06 2026 GMT
Subject: CN=6901f8a7-1da4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:32:1f:0c:d3:de:d4:f5:69:b8:d0:99:22:4c:
02:e8:92:c3:32:68:25:11:75:5b:0b:73:c3:b3:cc:
7f:25:ea:56:c1:e2:f7:94:c5:2e:01:22:66:da:fd:
74:2e:8f:23:20:62:4f:bb:61:62:49:b0:ae:ef:59:
eb:8c:6e:56:f6:8a:7e:04:7c:c2:51:77:08:a3:f1:
72:f9:a3:72:4d:bd:42:e3:74:92:94:2c:97:08:0f:
68:90:8a:bc:f2:07:a5:a6:c9:98:74:6c:4b:78:d7:
89:ba:aa:a8:39:00:b7:99:4e:35:77:df:b9:da:52:
d4:0c:b8:4f:ae:21:35:b1:3c:29:60:0a:5d:4b:a9:
97:ff:23:09:26:4f:93:86:0c:25:0b:fe:d9:ba:d0:
6c:50:f5:f9:4c:c1:e3:37:c2:1c:a2:6f:c9:93:39:
86:ab:09:ee:00:0c:c1:aa:43:2a:76:f5:0b:08:5a:
c9:09:a2:f5:5a:a6:a0:6f:60:74:8c:92:18:69:3a:
28:0e:7b:f7:f8:69:84:3c:34:2a:81:d4:9e:6b:39:
87:d1:1f:08:72:63:99:22:3f:df:aa:46:7b:fc:68:
b2:ab:80:18:e9:43:f5:64:df:b3:78:12:05:5e:3b:
89:2d:98:b7:0a:5d:84:6f:e7:32:0b:4f:be:e4:7a:
33:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:1E:6F:18:12:2A:01:18:59:72:D6:78:71:D6:17:2D:8A:B1:74:74
X509v3 Authority Key Identifier:
keyid:60:0C:6C:95:82:E1:4F:37:9F:D5:A5:B2:B1:8D:82:2E:36:51:AF:2E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/YAxslYLhTzef1aWysY2CLjZRry4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/YAxslYLhTzef1aWysY2CLjZRry4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/5EF1F05EB4B911F0ADDA6EC1DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.221.64.0/24
Signature Algorithm: sha256WithRSAEncryption
af:43:be:5e:14:3d:37:83:24:79:f4:4e:34:a9:00:14:68:99:
52:cd:2a:b0:f3:96:26:dd:7d:54:29:8e:e0:48:c5:80:b4:93:
dd:1d:9a:fe:01:42:d8:50:71:45:0f:b0:f0:62:2f:c4:f0:50:
fc:12:b7:cd:ec:cc:a9:d5:f6:0c:08:9b:73:80:0f:83:c4:77:
7c:f8:1f:3d:47:08:33:32:55:ff:f0:36:14:7a:73:fe:54:36:
5a:6b:0f:71:0d:8a:2e:bc:dd:17:8b:07:2f:85:0e:89:09:52:
71:da:31:51:12:a9:3e:2c:c8:27:99:e6:58:60:98:2f:4b:7a:
31:16:3e:48:1f:eb:35:2d:ac:62:ef:55:f6:34:11:14:f0:bc:
15:b6:ab:07:ab:66:6e:41:47:0d:84:fb:40:38:08:ea:42:1c:
47:41:4c:4c:7d:2a:e7:73:03:11:63:0e:db:29:53:0c:af:eb:
4b:ae:9a:f0:f4:0c:37:4b:3b:c8:4a:99:b6:73:df:74:d4:92:
9d:fd:24:4c:a6:94:c0:23:fd:98:65:98:48:a3:06:eb:58:f3:
e6:df:45:d1:80:54:ea:20:48:bf:71:4e:41:7d:97:49:52:77:
ac:e2:c2:02:86:59:61:e3:e6:35:2d:ae:01:6e:91:ab:18:ce:
78:e1:0c:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 08:11:50 2025 by rpki-client