Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/CC27949C127611F189FA6886DAE4EC9C.roa
File: CC27949C127611F189FA6886DAE4EC9C.roa (raw, json)
Hash identifier: 84++U2uPithYVStz2KNieocaHqt6h5Uigc5a/d8j1RE=
Subject key identifier: B0:5D:58:61:27:F3:CE:1F:51:72:1B:BA:19:F4:9F:E2:29:A5:45:3E
Certificate issuer: /CN=F363BA19AR/serialNumber=600C6C9582E14F379FD5A5B2B18D822E3651AF2E
Certificate serial: 06DA
Authority key identifier: 60:0C:6C:95:82:E1:4F:37:9F:D5:A5:B2:B1:8D:82:2E:36:51:AF:2E
Authority info access: rsync://rpki.afrinic.net/repository/arin/YAxslYLhTzef1aWysY2CLjZRry4.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/CC27949C127611F189FA6886DAE4EC9C.roa
Signing time: Wed 25 Feb 2026 18:21:27 +0000
ROA not before: Wed 25 Feb 2026 18:21:23 +0000
ROA not after: Thu 25 Feb 2027 18:21:23 +0000
asID: 996
IP address blocks: 45.221.69.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/YAxslYLhTzef1aWysY2CLjZRry4.crl
rsync://rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/YAxslYLhTzef1aWysY2CLjZRry4.mft
rsync://rpki.afrinic.net/repository/arin/YAxslYLhTzef1aWysY2CLjZRry4.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 03 Mar 2026 00:26:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1754 (0x6da)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363BA19AR, serialNumber=600C6C9582E14F379FD5A5B2B18D822E3651AF2E
Validity
Not Before: Feb 25 18:21:23 2026 GMT
Not After : Feb 25 18:21:23 2027 GMT
Subject: CN=699f3da6-6d40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:9b:3d:20:43:f2:73:31:f4:bc:90:22:7f:92:
80:c7:db:8c:64:1b:4e:e7:03:d5:78:7c:0f:30:00:
dc:56:cd:73:2c:27:fc:e6:3b:1a:a8:12:47:a1:a5:
71:47:2e:5d:66:ba:a1:95:e0:48:fa:97:74:d0:46:
d9:bd:87:8a:04:4e:62:ea:09:b0:c7:1f:0c:b0:2b:
42:70:fd:a2:b5:c2:2f:32:40:a9:53:17:7e:48:fa:
92:04:b2:5c:3b:a8:4c:ea:50:2a:90:60:cb:d5:be:
1f:6c:63:05:fd:1c:52:19:ff:b0:1d:26:3a:e4:6d:
e1:84:7b:a9:ec:7e:c4:ff:91:81:ac:9c:f6:a4:cc:
27:af:c4:3a:3c:aa:08:a3:a3:64:bc:50:15:9b:d1:
3a:6f:b4:c7:9b:09:0b:70:36:9f:4e:82:f0:e5:20:
69:fd:d7:5f:4d:df:58:65:26:a7:6f:d9:fa:bc:66:
7d:07:51:bf:34:32:16:a5:14:13:75:40:50:2d:c0:
d4:47:a7:0d:16:e1:59:de:4f:22:09:a1:d9:ec:02:
5c:12:f3:08:54:cd:45:e2:00:c2:34:1c:31:51:b1:
b5:60:55:31:31:33:86:c6:7d:8a:0e:98:b0:85:08:
94:d3:bf:11:fc:0b:33:1e:4b:f2:16:92:ad:81:93:
99:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:5D:58:61:27:F3:CE:1F:51:72:1B:BA:19:F4:9F:E2:29:A5:45:3E
X509v3 Authority Key Identifier:
keyid:60:0C:6C:95:82:E1:4F:37:9F:D5:A5:B2:B1:8D:82:2E:36:51:AF:2E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/YAxslYLhTzef1aWysY2CLjZRry4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/YAxslYLhTzef1aWysY2CLjZRry4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/CC27949C127611F189FA6886DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.221.69.0/24
Signature Algorithm: sha256WithRSAEncryption
82:29:f8:5d:93:e4:d2:c4:9d:03:29:bd:15:85:ef:8c:ed:4a:
af:58:9a:e4:84:b7:89:d4:6f:fb:6c:df:5a:a8:f2:04:05:0a:
27:9c:76:d6:15:a4:53:78:c1:76:15:27:e8:83:d0:54:b8:1c:
54:0d:28:d6:05:f2:a7:2b:a5:71:a1:c3:e3:dd:b4:3f:5e:c7:
2d:13:a5:5c:93:08:1e:48:a4:ed:cb:d5:eb:40:28:29:e3:01:
12:d0:ee:97:8c:33:14:98:18:50:36:e1:7d:37:a7:1f:9d:4b:
b5:24:c2:68:1b:67:9f:5d:1b:57:18:96:fb:20:91:f3:f9:ca:
82:09:51:75:6d:3c:4a:0b:36:db:21:85:d8:18:6a:5d:02:1a:
84:44:4d:3d:30:10:f1:76:3e:24:bd:cf:7a:8f:2f:a1:27:7c:
ea:19:1d:0e:e2:ae:18:91:62:ba:c2:bc:3e:7b:c6:e7:5a:08:
c3:d8:e7:2f:5b:96:44:d6:0b:cc:6b:79:ff:19:3a:4a:b2:66:
e3:7e:fe:6d:10:a3:ad:f1:d2:bd:04:75:ab:45:41:01:ee:25:
e6:72:8d:6d:78:01:e8:76:f4:95:b7:5c:ef:18:3b:c6:62:e6:
9b:51:5d:b5:bd:de:bc:a4:a6:79:43:f2:7d:f0:12:1b:a3:99:
05:7f:f8:e2
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICBtowDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
M0JBMTlBUjExMC8GA1UEBRMoNjAwQzZDOTU4MkUxNEYzNzlGRDVBNUIyQjE4RDgy
MkUzNjUxQUYyRTAeFw0yNjAyMjUxODIxMjNaFw0yNzAyMjUxODIxMjNaMBgxFjAU
BgNVBAMTDTY5OWYzZGE2LTZkNDAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQC2mz0gQ/JzMfS8kCJ/koDH24xkG07nA9V4fA8wANxWzXMsJ/zmOxqoEkeh
pXFHLl1muqGV4Ej6l3TQRtm9h4oETmLqCbDHHwywK0Jw/aK1wi8yQKlTF35I+pIE
slw7qEzqUCqQYMvVvh9sYwX9HFIZ/7AdJjrkbeGEe6nsfsT/kYGsnPakzCevxDo8
qgijo2S8UBWb0TpvtMebCQtwNp9OgvDlIGn9119N31hlJqdv2fq8Zn0HUb80Mhal
FBN1QFAtwNRHpw0W4VneTyIJodnsAlwS8whUzUXiAMI0HDFRsbVgVTExM4bGfYoO
mLCFCJTTvxH8CzMeS/IWkq2Bk5l/AgMBAAGjggKiMIICnjAdBgNVHQ4EFgQUsF1Y
YSfzzh9Rchu6GfSf4imlRT4wHwYDVR0jBBgwFoAUYAxslYLhTzef1aWysY2CLjZR
ry4wDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjNCQTE5L0ZCQ0M3M0I2OTYyOTExRUM5NUI3QjFFMDVBNDBENTc3L1lBeHNs
WUxoVHplZjFhV3lzWTJDTGpaUnJ5NC5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
L1lBeHNsWUxoVHplZjFhV3lzWTJDTGpaUnJ5NC5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNjNCQTE5L0ZCQ0M3M0I2OTYyOTExRUM5NUI3QjFFMDVBNDBE
NTc3L0NDMjc5NDlDMTI3NjExRjE4OUZBNjg4NkRBRTRFQzlDLnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAt3UUwDQYJKoZIhvcNAQELBQAD
ggEBAIIp+F2T5NLEnQMpvRWF74ztSq9YmuSEt4nUb/ts31qo8gQFCiecdtYVpFN4
wXYVJ+iD0FS4HFQNKNYF8qcrpXGhw+PdtD9exy0TpVyTCB5IpO3L1etAKCnjARLQ
7peMMxSYGFA24X03px+dS7UkwmgbZ59dG1cYlvsgkfP5yoIJUXVtPEoLNtshhdgY
al0CGoRETT0wEPF2PiS9z3qPL6EnfOoZHQ7irhiRYrrCvD57xudaCMPY5y9blkTW
C8xref8ZOkqyZuN+/m0Qo63x0r0EdatFQQHuJeZyjW14Aeh29JW3XO8YO8Zi5ptR
XbW93rykpnlD8n3wEhujmQV/+OI=
-----END CERTIFICATE-----
Generated at Sun Mar 1 23:19:21 2026 by rpki-client