Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/7E1DE6A4B4B911F099D47FC1DAE4EC9C.roa
File: 7E1DE6A4B4B911F099D47FC1DAE4EC9C.roa (raw, json)
Hash identifier: B5aEg70ObHVABncSYeSJICYmYg9ITCPw842Y5l1gss4=
Subject key identifier: D3:8D:AA:D4:E1:C3:6B:67:42:10:8D:86:89:B6:EF:23:AE:C2:81:0A
Certificate issuer: /CN=F363BA19AR/serialNumber=600C6C9582E14F379FD5A5B2B18D822E3651AF2E
Certificate serial: 0629
Authority key identifier: 60:0C:6C:95:82:E1:4F:37:9F:D5:A5:B2:B1:8D:82:2E:36:51:AF:2E
Authority info access: rsync://rpki.afrinic.net/repository/arin/YAxslYLhTzef1aWysY2CLjZRry4.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/7E1DE6A4B4B911F099D47FC1DAE4EC9C.roa
Signing time: Wed 29 Oct 2025 11:22:03 +0000
ROA not before: Wed 29 Oct 2025 11:21:58 +0000
ROA not after: Tue 27 Oct 2026 11:21:58 +0000
asID: 55154
IP address blocks: 45.221.67.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/YAxslYLhTzef1aWysY2CLjZRry4.crl
rsync://rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/YAxslYLhTzef1aWysY2CLjZRry4.mft
rsync://rpki.afrinic.net/repository/arin/YAxslYLhTzef1aWysY2CLjZRry4.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 06 Nov 2025 00:26:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1577 (0x629)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363BA19AR, serialNumber=600C6C9582E14F379FD5A5B2B18D822E3651AF2E
Validity
Not Before: Oct 29 11:21:58 2025 GMT
Not After : Oct 27 11:21:58 2026 GMT
Subject: CN=6901f8db-92c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:58:93:85:83:0b:7c:51:5f:2d:c8:8c:d5:a1:
fe:ca:38:77:87:3f:57:47:16:4a:85:7e:a4:b8:c7:
84:8c:24:41:1c:4f:90:d1:1a:02:14:5a:cf:f4:58:
83:37:34:05:dc:72:fe:a6:96:a4:90:67:82:0e:73:
3e:93:b4:70:ad:79:67:05:54:61:c2:ec:f0:be:e3:
f4:6a:51:55:ce:3c:25:e2:76:c4:d4:52:f1:93:2b:
2b:30:88:15:3f:fb:05:ea:a3:5b:6c:d5:41:97:d2:
ec:e0:73:fb:37:ce:07:c4:c9:e1:a2:53:91:4a:3d:
5a:d6:5f:9e:ca:76:7c:3a:b9:5a:b6:5f:5d:94:f5:
e0:db:b9:6a:6d:5a:96:58:bf:b5:50:e2:2e:3a:22:
15:d6:bb:cb:80:33:6a:1f:0d:16:6e:3a:31:b4:4a:
b4:20:74:f4:6c:5c:2f:6a:2c:5f:d6:62:9d:d4:22:
db:0a:b5:1a:d1:02:33:fa:93:ed:49:cf:9c:88:b1:
17:8b:b5:22:f3:e6:7f:64:be:e8:57:fd:82:9a:bc:
d3:92:98:e0:01:38:9d:0a:e8:90:85:12:8a:04:62:
a1:ea:83:5b:7f:94:d7:1c:10:8c:d6:78:cf:2a:63:
47:0f:b4:8d:9e:e6:c1:01:96:33:da:c8:00:15:3f:
5c:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:8D:AA:D4:E1:C3:6B:67:42:10:8D:86:89:B6:EF:23:AE:C2:81:0A
X509v3 Authority Key Identifier:
keyid:60:0C:6C:95:82:E1:4F:37:9F:D5:A5:B2:B1:8D:82:2E:36:51:AF:2E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/YAxslYLhTzef1aWysY2CLjZRry4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/YAxslYLhTzef1aWysY2CLjZRry4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/7E1DE6A4B4B911F099D47FC1DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.221.67.0/24
Signature Algorithm: sha256WithRSAEncryption
15:27:1b:1f:c2:a3:a1:44:6e:c1:3b:f5:89:62:d5:73:2f:87:
13:93:5b:5c:b6:fd:d8:20:dc:31:b8:b7:90:8d:2a:6a:4f:e8:
a6:8d:e5:f4:ab:d5:6b:ee:07:7e:29:b3:04:0c:28:2b:a0:f6:
72:8f:93:b6:a9:cc:2d:29:3a:f7:b8:c7:ed:1d:03:38:b2:25:
af:df:72:67:9a:bc:d9:98:7b:73:8b:ca:77:9a:b6:fa:87:ec:
61:f6:cd:4f:58:a7:c0:79:9c:ba:5f:7f:2c:ab:0e:56:0b:c8:
a1:ba:d6:64:7b:64:ca:58:77:d5:90:fa:c9:8f:5e:0c:4e:c6:
56:24:1f:7b:e4:98:f5:e3:e7:93:c6:af:74:bc:e2:10:a2:9a:
01:f8:07:1b:5f:22:0b:87:2e:bf:be:59:ee:d6:48:ff:d6:fc:
87:07:41:5f:00:c0:bf:a4:c3:ca:75:e7:08:73:2f:c1:b0:35:
32:41:05:4a:12:02:6c:c6:e5:d1:e8:5b:f7:ff:e6:d1:e3:df:
33:bc:47:2d:2f:d0:87:10:f9:87:60:3d:46:29:0f:84:db:b0:
08:bc:be:b3:ec:23:5a:a7:36:a0:dd:72:05:a2:e6:9e:45:7c:
37:a5:07:fb:62:cf:a2:fa:4b:26:2b:d7:5f:bb:31:93:9b:79:
65:91:39:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 00:49:58 2025 by rpki-client