Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/77F7BBA0121B11F1817A6DDFDAE4EC9C.roa
File: 77F7BBA0121B11F1817A6DDFDAE4EC9C.roa (raw, json)
Hash identifier: f9QYD0iEJU4di7jJNMZTb0r1OkHLJWsI4LcjrXm49/o=
Subject key identifier: 4E:2D:7E:54:60:F3:AD:DE:2C:CE:BE:B0:7F:7D:23:D9:F6:4B:40:8C
Certificate issuer: /CN=F363BA19AR/serialNumber=600C6C9582E14F379FD5A5B2B18D822E3651AF2E
Certificate serial: 06D6
Authority key identifier: 60:0C:6C:95:82:E1:4F:37:9F:D5:A5:B2:B1:8D:82:2E:36:51:AF:2E
Authority info access: rsync://rpki.afrinic.net/repository/arin/YAxslYLhTzef1aWysY2CLjZRry4.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/77F7BBA0121B11F1817A6DDFDAE4EC9C.roa
Signing time: Wed 25 Feb 2026 07:27:41 +0000
ROA not before: Wed 25 Feb 2026 07:27:37 +0000
ROA not after: Thu 25 Feb 2027 07:27:37 +0000
asID: 29802
IP address blocks: 45.221.71.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/YAxslYLhTzef1aWysY2CLjZRry4.crl
rsync://rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/YAxslYLhTzef1aWysY2CLjZRry4.mft
rsync://rpki.afrinic.net/repository/arin/YAxslYLhTzef1aWysY2CLjZRry4.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 03 Mar 2026 00:26:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1750 (0x6d6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363BA19AR, serialNumber=600C6C9582E14F379FD5A5B2B18D822E3651AF2E
Validity
Not Before: Feb 25 07:27:37 2026 GMT
Not After : Feb 25 07:27:37 2027 GMT
Subject: CN=699ea46d-44ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:5a:a1:66:6a:a6:df:59:62:a5:b8:94:6f:b7:
a3:b5:d2:f9:64:a2:c2:66:43:1e:a7:eb:14:b3:38:
a3:98:29:f0:3d:28:9e:bd:8d:62:18:ba:cd:57:79:
7b:21:e4:61:57:a9:d6:a4:01:4c:8e:8f:45:72:6c:
70:6e:2d:2b:c4:c4:65:24:5d:31:90:9e:8e:36:6f:
09:70:23:3a:56:be:70:41:a2:ce:99:1d:ec:b0:79:
9b:fb:0c:4c:e0:ad:26:17:71:2b:e9:e1:fb:cc:06:
ae:77:13:86:55:a4:17:15:b2:15:6c:30:6a:6a:0b:
23:82:cb:ce:cd:fb:78:59:d8:79:ba:2e:a4:b6:2f:
c1:14:7c:a0:30:2a:5b:cd:41:54:92:95:f8:46:73:
66:17:63:af:dc:61:54:08:f3:78:72:9e:ec:71:79:
e4:78:8b:c2:4e:b9:f8:32:69:75:70:aa:20:39:a2:
e9:47:64:5c:2e:b4:32:30:ce:86:42:14:ed:73:8c:
85:1c:03:92:02:80:71:46:2f:03:5d:33:c0:7b:45:
c0:4f:28:98:1f:94:aa:62:3a:93:f8:9d:c5:82:0b:
68:38:74:08:d6:c6:78:95:78:93:d3:77:89:b8:28:
3c:98:db:f3:67:84:c5:a1:dd:27:ab:89:22:6c:91:
cb:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:2D:7E:54:60:F3:AD:DE:2C:CE:BE:B0:7F:7D:23:D9:F6:4B:40:8C
X509v3 Authority Key Identifier:
keyid:60:0C:6C:95:82:E1:4F:37:9F:D5:A5:B2:B1:8D:82:2E:36:51:AF:2E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/YAxslYLhTzef1aWysY2CLjZRry4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/YAxslYLhTzef1aWysY2CLjZRry4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/77F7BBA0121B11F1817A6DDFDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.221.71.0/24
Signature Algorithm: sha256WithRSAEncryption
25:e9:66:7d:0e:03:79:3a:17:f3:80:bd:24:95:87:b2:7f:13:
b8:1f:02:f2:e4:34:b4:c0:ea:3e:6d:5a:bf:ac:72:d8:48:33:
6c:98:30:48:fc:31:09:c2:11:2f:15:3e:cb:44:42:8c:c0:ea:
fa:87:45:67:91:3f:2c:b4:93:f1:54:bd:c8:89:ec:23:45:8e:
aa:da:11:c8:fa:85:ba:20:9e:b6:94:c3:91:5e:60:3d:22:39:
56:03:5b:39:15:12:7d:05:db:df:71:5a:e9:2e:70:ed:de:6b:
58:ca:19:2f:2e:4a:65:54:e6:0c:21:ce:8f:a3:a9:da:3c:90:
26:81:6f:5d:74:7d:03:16:62:98:c5:f0:87:1f:c5:75:2e:90:
0a:76:24:3b:93:48:14:68:77:54:2c:a1:87:c0:29:f3:3b:bc:
b2:40:f5:75:f2:aa:84:0b:7b:4d:5b:51:e3:bf:06:a1:e2:7b:
53:fc:f0:3a:8a:63:49:7b:2a:a4:90:5f:dc:e6:bc:0f:c3:8f:
9f:bd:58:ca:71:bd:29:a6:17:fb:f3:89:3c:26:ba:0c:bc:07:
f4:7c:c6:c8:76:1e:68:30:db:6c:37:c3:36:05:3f:a7:87:c6:
29:00:51:40:ca:d7:56:bd:2a:bc:6d:6a:d2:f9:74:9a:a5:17:
7c:c7:e1:3a
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICBtYwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
M0JBMTlBUjExMC8GA1UEBRMoNjAwQzZDOTU4MkUxNEYzNzlGRDVBNUIyQjE4RDgy
MkUzNjUxQUYyRTAeFw0yNjAyMjUwNzI3MzdaFw0yNzAyMjUwNzI3MzdaMBgxFjAU
BgNVBAMTDTY5OWVhNDZkLTQ0YWIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDEWqFmaqbfWWKluJRvt6O10vlkosJmQx6n6xSzOKOYKfA9KJ69jWIYus1X
eXsh5GFXqdakAUyOj0VybHBuLSvExGUkXTGQno42bwlwIzpWvnBBos6ZHeyweZv7
DEzgrSYXcSvp4fvMBq53E4ZVpBcVshVsMGpqCyOCy87N+3hZ2Hm6LqS2L8EUfKAw
KlvNQVSSlfhGc2YXY6/cYVQI83hynuxxeeR4i8JOufgyaXVwqiA5oulHZFwutDIw
zoZCFO1zjIUcA5ICgHFGLwNdM8B7RcBPKJgflKpiOpP4ncWCC2g4dAjWxniVeJPT
d4m4KDyY2/NnhMWh3SeriSJskcuxAgMBAAGjggKiMIICnjAdBgNVHQ4EFgQUTi1+
VGDzrd4szr6wf30j2fZLQIwwHwYDVR0jBBgwFoAUYAxslYLhTzef1aWysY2CLjZR
ry4wDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjNCQTE5L0ZCQ0M3M0I2OTYyOTExRUM5NUI3QjFFMDVBNDBENTc3L1lBeHNs
WUxoVHplZjFhV3lzWTJDTGpaUnJ5NC5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
L1lBeHNsWUxoVHplZjFhV3lzWTJDTGpaUnJ5NC5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNjNCQTE5L0ZCQ0M3M0I2OTYyOTExRUM5NUI3QjFFMDVBNDBE
NTc3Lzc3RjdCQkEwMTIxQjExRjE4MTdBNkRERkRBRTRFQzlDLnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAt3UcwDQYJKoZIhvcNAQELBQAD
ggEBACXpZn0OA3k6F/OAvSSVh7J/E7gfAvLkNLTA6j5tWr+scthIM2yYMEj8MQnC
ES8VPstEQozA6vqHRWeRPyy0k/FUvciJ7CNFjqraEcj6hbognraUw5FeYD0iOVYD
WzkVEn0F299xWukucO3ea1jKGS8uSmVU5gwhzo+jqdo8kCaBb110fQMWYpjF8Icf
xXUukAp2JDuTSBRod1QsoYfAKfM7vLJA9XXyqoQLe01bUeO/BqHie1P88DqKY0l7
KqSQX9zmvA/Dj5+9WMpxvSmmF/vziTwmugy8B/R8xsh2Hmgw22w3wzYFP6eHxikA
UUDK11a9KrxtatL5dJqlF3zH4To=
-----END CERTIFICATE-----
Generated at Mon Mar 2 02:42:29 2026 by rpki-client