Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/7019D6F8B4B911F0941075C1DAE4EC9C.roa
File: 7019D6F8B4B911F0941075C1DAE4EC9C.roa (raw, json)
Hash identifier: fp5Wg7R8e/jtSPxAbw3SaILbW3yr79zcXruNimCFOpU=
Subject key identifier: BB:B4:3D:97:77:1D:03:5C:6C:8E:61:10:5F:21:77:F3:5C:E3:F7:2A
Certificate issuer: /CN=F363BA19AR/serialNumber=600C6C9582E14F379FD5A5B2B18D822E3651AF2E
Certificate serial: 0627
Authority key identifier: 60:0C:6C:95:82:E1:4F:37:9F:D5:A5:B2:B1:8D:82:2E:36:51:AF:2E
Authority info access: rsync://rpki.afrinic.net/repository/arin/YAxslYLhTzef1aWysY2CLjZRry4.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/7019D6F8B4B911F0941075C1DAE4EC9C.roa
Signing time: Wed 29 Oct 2025 11:21:39 +0000
ROA not before: Wed 29 Oct 2025 11:21:35 +0000
ROA not after: Tue 27 Oct 2026 11:21:35 +0000
asID: 55154
IP address blocks: 45.221.65.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/YAxslYLhTzef1aWysY2CLjZRry4.crl
rsync://rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/YAxslYLhTzef1aWysY2CLjZRry4.mft
rsync://rpki.afrinic.net/repository/arin/YAxslYLhTzef1aWysY2CLjZRry4.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 06 Nov 2025 03:56:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1575 (0x627)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363BA19AR, serialNumber=600C6C9582E14F379FD5A5B2B18D822E3651AF2E
Validity
Not Before: Oct 29 11:21:35 2025 GMT
Not After : Oct 27 11:21:35 2026 GMT
Subject: CN=6901f8c3-19d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:d3:89:56:91:64:43:c9:4a:96:aa:56:c2:77:
2a:b2:d5:05:eb:4e:fe:14:83:9a:6c:d2:3b:38:ed:
2c:ac:82:94:21:13:b1:82:8d:01:78:c1:a0:75:92:
66:90:1c:84:ee:e8:05:02:fa:b3:c7:40:6b:9b:c7:
e4:b1:6c:72:83:a1:21:04:9a:7a:48:26:0f:f2:a5:
1f:ee:4f:b1:d6:c8:07:59:fc:6d:39:26:ee:7a:27:
91:9e:23:68:fa:5b:07:47:29:7f:e4:d6:2e:2b:c7:
5a:61:fc:a5:0a:f6:dc:d1:e8:6f:a0:57:27:a0:23:
88:db:87:df:15:ee:a2:e6:ab:92:72:b0:e8:fd:5e:
e5:46:83:90:ae:15:3e:6f:41:7c:cc:20:21:73:ca:
1d:4c:75:44:bf:cd:ab:20:da:d4:a8:b0:40:04:6c:
18:90:cb:e8:3d:cb:59:2f:d9:6f:32:1e:1e:6f:c8:
ef:38:0d:51:2e:43:39:c9:0c:25:12:e9:96:fa:b0:
61:6e:dc:7b:98:c8:98:14:f2:cc:5e:e7:18:d4:36:
fc:a5:35:9a:93:7e:cd:eb:fe:ef:06:e0:49:a5:b4:
0d:9f:55:18:47:82:65:a6:c8:40:21:3c:56:4d:45:
b2:20:c9:cf:c8:6f:e0:2b:a7:dd:28:86:26:e5:ee:
8b:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:B4:3D:97:77:1D:03:5C:6C:8E:61:10:5F:21:77:F3:5C:E3:F7:2A
X509v3 Authority Key Identifier:
keyid:60:0C:6C:95:82:E1:4F:37:9F:D5:A5:B2:B1:8D:82:2E:36:51:AF:2E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/YAxslYLhTzef1aWysY2CLjZRry4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/YAxslYLhTzef1aWysY2CLjZRry4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/7019D6F8B4B911F0941075C1DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.221.65.0/24
Signature Algorithm: sha256WithRSAEncryption
24:af:5b:75:cc:23:2d:de:bf:10:08:ef:17:7b:1a:53:d8:bd:
0e:9d:be:b0:c8:fa:c5:38:4b:eb:a8:f5:9d:b1:cd:47:6e:8f:
66:91:47:56:b4:21:ca:fa:14:d4:d4:78:bf:af:d9:cc:45:04:
4a:ef:de:75:65:27:d9:0b:1e:75:6a:3e:ef:4b:b0:da:15:eb:
63:bd:a0:70:a1:97:2f:3d:92:72:bc:07:6c:cf:f7:6c:64:a9:
33:e4:94:63:e0:11:d6:83:57:f0:1f:0a:e0:9c:9d:b6:4d:74:
8c:20:82:a5:bb:89:f3:fd:8a:09:c9:a8:ab:89:ec:13:e1:c1:
05:99:1d:54:97:1a:8d:9c:9c:4d:4a:41:0b:11:ec:84:ad:20:
11:c7:2a:70:a2:ce:d9:d3:0e:d4:f8:ac:26:a7:c6:de:4c:9e:
f8:27:cf:0e:37:1a:57:95:0f:71:e9:a8:b9:c4:8b:37:cb:22:
eb:bb:87:61:01:c4:4b:fc:05:f8:44:0c:7f:32:62:7a:92:ad:
f4:10:26:90:65:f5:11:1e:24:58:03:07:20:d7:1e:3c:80:36:
20:e5:12:26:22:d5:d2:15:df:a1:2e:f8:5a:2a:86:5a:e7:f9:
04:29:58:fb:c9:f9:0a:bc:d7:fe:62:93:43:34:a2:cd:8c:2f:
13:58:39:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 02:37:50 2025 by rpki-client