Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/8BCCA240B4B911F0A7D988C1DAE4EC9C.roa
File: 8BCCA240B4B911F0A7D988C1DAE4EC9C.roa (raw, json)
Hash identifier: GD3FY6LBfrhqy6JQRpXnbKJieg14mYnMeOfxfmb4mH8=
Subject key identifier: B9:7E:80:BE:A4:9D:E6:2F:C0:F0:A6:51:42:DD:CE:2D:EE:9E:6E:7E
Certificate issuer: /CN=F363BA19AR/serialNumber=600C6C9582E14F379FD5A5B2B18D822E3651AF2E
Certificate serial: 062B
Authority key identifier: 60:0C:6C:95:82:E1:4F:37:9F:D5:A5:B2:B1:8D:82:2E:36:51:AF:2E
Authority info access: rsync://rpki.afrinic.net/repository/arin/YAxslYLhTzef1aWysY2CLjZRry4.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/8BCCA240B4B911F0A7D988C1DAE4EC9C.roa
Signing time: Wed 29 Oct 2025 11:22:26 +0000
ROA not before: Wed 29 Oct 2025 11:22:21 +0000
ROA not after: Tue 27 Oct 2026 11:22:21 +0000
asID: 55154
IP address blocks: 45.221.68.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/YAxslYLhTzef1aWysY2CLjZRry4.crl
rsync://rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/YAxslYLhTzef1aWysY2CLjZRry4.mft
rsync://rpki.afrinic.net/repository/arin/YAxslYLhTzef1aWysY2CLjZRry4.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 06 Nov 2025 03:56:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1579 (0x62b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363BA19AR, serialNumber=600C6C9582E14F379FD5A5B2B18D822E3651AF2E
Validity
Not Before: Oct 29 11:22:21 2025 GMT
Not After : Oct 27 11:22:21 2026 GMT
Subject: CN=6901f8f2-f39b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:17:85:25:63:a3:1f:67:f9:35:27:b6:2b:db:
f9:ad:7a:0a:31:c0:66:d9:e1:d1:a2:75:bc:51:a5:
45:6f:9d:da:1b:a4:9e:b5:9b:4e:65:21:17:d7:9f:
77:0d:ae:ba:87:69:be:a1:1a:7b:27:70:f6:31:0b:
33:67:0f:1b:1e:f0:7f:95:94:ef:2e:01:b9:e7:97:
b3:d1:c3:cd:8a:f0:3e:fa:62:2a:58:a0:0f:66:d1:
ff:e5:7e:c1:8a:86:0f:8b:2f:38:4e:65:24:12:51:
9b:9a:cd:7d:28:e0:2b:35:ad:49:82:ee:67:79:df:
51:3e:e5:74:55:57:66:74:6a:d4:8a:f2:c1:66:50:
29:ac:e1:d2:bf:4d:fc:8d:2b:d3:34:3d:ff:32:43:
30:d0:63:eb:cf:fe:be:21:48:4e:09:c9:a4:a8:c4:
4f:35:22:ca:52:90:ba:cf:ab:93:46:12:62:f7:ab:
e1:44:a9:ff:13:45:ef:ae:fa:5c:0c:34:cf:ed:07:
8b:b6:a5:9c:f8:39:7f:a9:fc:ea:ce:62:66:48:d5:
ee:7b:65:6c:08:8a:17:4b:ec:e7:ff:bf:7a:bf:3d:
df:f9:06:57:2e:77:9b:a5:0f:1f:96:91:d0:f0:6d:
a9:1e:e7:46:c4:39:61:72:6e:54:f5:d3:00:a3:fc:
30:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:7E:80:BE:A4:9D:E6:2F:C0:F0:A6:51:42:DD:CE:2D:EE:9E:6E:7E
X509v3 Authority Key Identifier:
keyid:60:0C:6C:95:82:E1:4F:37:9F:D5:A5:B2:B1:8D:82:2E:36:51:AF:2E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/YAxslYLhTzef1aWysY2CLjZRry4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/YAxslYLhTzef1aWysY2CLjZRry4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/8BCCA240B4B911F0A7D988C1DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.221.68.0/24
Signature Algorithm: sha256WithRSAEncryption
bc:63:81:17:e7:96:49:7b:a9:0e:7a:46:33:0f:b9:23:2b:7b:
fe:43:52:4b:cc:dd:0f:ab:55:9e:5b:e2:1f:d5:ca:e0:79:e2:
eb:e2:0a:6c:cc:59:ac:bc:ef:c7:cd:7b:bc:4e:6b:23:02:3c:
01:7f:1b:08:a8:05:8c:2e:2b:b2:39:f9:64:01:77:e5:12:1d:
06:58:27:de:e6:66:c1:55:ef:21:0b:04:39:24:21:78:3b:3a:
e2:6f:6b:28:67:07:54:78:b5:84:c1:04:37:c1:20:33:58:7d:
90:be:08:e9:fb:cf:f6:93:75:34:7f:ed:81:fd:ff:51:27:6a:
8e:8b:d8:de:36:4b:51:4c:f8:cb:68:c0:01:a8:86:54:2d:c5:
52:bf:f1:bf:50:38:fc:a1:cf:9b:c5:e0:7f:fd:f4:ab:ed:8b:
3b:b1:4d:0d:39:26:04:e3:7f:e2:3c:a7:34:a3:22:d0:e9:d9:
98:42:84:4b:c3:22:db:47:3b:08:68:e3:52:d0:65:48:a9:c0:
9d:6f:71:92:7a:db:ec:46:3c:ec:69:1c:5f:88:95:64:98:1e:
c2:e1:1a:6e:0b:52:97:48:f5:6f:93:bd:74:1b:a0:cd:93:ca:
57:32:3e:ca:e5:f6:06:d6:e6:b5:e4:ae:4f:3f:19:5b:5d:02:
25:e2:6b:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 02:37:39 2025 by rpki-client