Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/071B6426692011F0A0F0EDA1DAE4EC9C.roa
File: 071B6426692011F0A0F0EDA1DAE4EC9C.roa (raw, json)
Hash identifier: URMDvnckeOmT1grf/AJCH+UxvKNjBD5RF2bPd5MlWjg=
Subject key identifier: CC:B6:93:E6:F5:C3:1C:10:27:6D:95:C3:67:A8:F8:61:B7:53:66:CD
Certificate issuer: /CN=F363BA19AR/serialNumber=600C6C9582E14F379FD5A5B2B18D822E3651AF2E
Certificate serial: 05AD
Authority key identifier: 60:0C:6C:95:82:E1:4F:37:9F:D5:A5:B2:B1:8D:82:2E:36:51:AF:2E
Authority info access: rsync://rpki.afrinic.net/repository/arin/YAxslYLhTzef1aWysY2CLjZRry4.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/071B6426692011F0A0F0EDA1DAE4EC9C.roa
Signing time: Fri 25 Jul 2025 06:24:33 +0000
ROA not before: Fri 25 Jul 2025 06:24:28 +0000
ROA not after: Wed 24 Dec 2025 06:24:28 +0000
asID: 207184
IP address blocks: 45.221.64.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/YAxslYLhTzef1aWysY2CLjZRry4.crl
rsync://rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/YAxslYLhTzef1aWysY2CLjZRry4.mft
rsync://rpki.afrinic.net/repository/arin/YAxslYLhTzef1aWysY2CLjZRry4.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 28 Jul 2025 00:26:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1453 (0x5ad)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363BA19AR, serialNumber=600C6C9582E14F379FD5A5B2B18D822E3651AF2E
Validity
Not Before: Jul 25 06:24:28 2025 GMT
Not After : Dec 24 06:24:28 2025 GMT
Subject: CN=68832321-431c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:fc:cb:48:1a:4a:5c:89:05:c3:fe:f4:98:b2:
d0:53:db:be:7e:f7:7f:d5:73:f9:6d:4f:f2:49:52:
8d:ba:af:51:e0:cd:fa:62:fa:9d:a7:be:d0:8e:b0:
00:fb:5c:a0:a8:bd:54:d9:be:02:ac:b0:39:1e:11:
d4:74:46:f9:73:35:56:98:c0:3b:29:35:f9:f6:b9:
f9:f4:44:c1:f2:27:2e:c3:3a:c7:14:8c:31:b0:fe:
a6:50:0c:a5:d1:1b:34:a2:b3:e3:65:1d:fb:f9:51:
ab:f5:ae:7b:38:2e:63:09:b8:75:2e:c2:87:b1:17:
bc:6c:ea:d6:72:c7:f6:8b:2c:a8:85:3b:c6:7c:dd:
a6:0f:ed:b3:08:a2:d1:cc:33:2f:97:07:e5:a8:cd:
7c:3c:c6:a3:af:95:60:fc:68:a1:27:1c:60:53:9b:
c5:d5:79:36:03:fb:f8:29:49:a3:86:5b:1c:73:4a:
af:e7:5c:2b:49:02:39:c2:da:17:b2:80:9b:4f:ea:
1b:53:01:f7:8b:76:3e:33:82:53:01:35:77:7a:40:
0a:ff:a8:02:48:bb:a3:62:4e:37:0f:5e:4e:04:e9:
c8:46:81:2b:9c:23:22:bc:9e:fe:b2:b7:54:9f:e8:
08:b9:3b:12:24:50:fe:fa:ea:97:fe:46:2e:8e:83:
1e:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:B6:93:E6:F5:C3:1C:10:27:6D:95:C3:67:A8:F8:61:B7:53:66:CD
X509v3 Authority Key Identifier:
keyid:60:0C:6C:95:82:E1:4F:37:9F:D5:A5:B2:B1:8D:82:2E:36:51:AF:2E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/YAxslYLhTzef1aWysY2CLjZRry4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/YAxslYLhTzef1aWysY2CLjZRry4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/071B6426692011F0A0F0EDA1DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.221.64.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:81:2c:63:9c:46:cd:95:f7:11:c1:b2:fb:73:13:03:ee:b3:
c7:07:64:94:a3:f7:7f:c7:15:66:d1:f2:9c:f7:35:55:28:a5:
01:9b:66:c8:19:d9:b3:f6:d9:15:44:18:85:c9:99:84:aa:c2:
6a:9a:1f:e0:40:76:69:9c:42:e1:4d:c4:c1:3d:b4:d4:a2:17:
1c:eb:ea:dc:cc:5b:b8:4f:31:d3:ad:e7:52:6a:ec:69:70:0f:
e9:13:d0:9c:e5:26:e1:3e:47:df:c7:61:be:23:90:46:a3:a8:
ae:7f:6f:b4:96:e2:1e:1b:86:ef:08:2f:61:5f:2f:cd:61:1e:
d2:d4:8b:47:eb:d8:a0:dc:54:34:11:c9:44:70:28:98:61:f0:
1b:49:cd:8b:0d:b1:dc:8d:ca:96:ec:13:d7:ca:51:e0:69:09:
33:9d:cf:dd:e3:a8:51:67:37:99:c6:e4:e0:82:5d:b5:36:89:
e0:0a:52:8b:29:1d:58:c9:3a:fc:0c:6e:14:81:81:bd:64:80:
57:9a:ed:b9:fa:72:1b:1a:09:35:92:c1:55:0c:ef:c3:e1:05:
62:a6:aa:24:fc:2c:3a:5b:91:9c:8e:80:cf:39:44:35:09:12:
6b:bf:f9:ad:f7:32:3a:a9:c2:0e:dc:b7:ce:ab:7d:a1:09:e4:
a4:7c:bd:45
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICBa0wDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
M0JBMTlBUjExMC8GA1UEBRMoNjAwQzZDOTU4MkUxNEYzNzlGRDVBNUIyQjE4RDgy
MkUzNjUxQUYyRTAeFw0yNTA3MjUwNjI0MjhaFw0yNTEyMjQwNjI0MjhaMBgxFjAU
BgNVBAMTDTY4ODMyMzIxLTQzMWMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQCn/MtIGkpciQXD/vSYstBT275+93/Vc/ltT/JJUo26r1Hgzfpi+p2nvtCO
sAD7XKCovVTZvgKssDkeEdR0RvlzNVaYwDspNfn2ufn0RMHyJy7DOscUjDGw/qZQ
DKXRGzSis+NlHfv5Uav1rns4LmMJuHUuwoexF7xs6tZyx/aLLKiFO8Z83aYP7bMI
otHMMy+XB+WozXw8xqOvlWD8aKEnHGBTm8XVeTYD+/gpSaOGWxxzSq/nXCtJAjnC
2heygJtP6htTAfeLdj4zglMBNXd6QAr/qAJIu6NiTjcPXk4E6chGgSucIyK8nv6y
t1Sf6Ai5OxIkUP766pf+Ri6Ogx5JAgMBAAGjggKiMIICnjAdBgNVHQ4EFgQUzLaT
5vXDHBAnbZXDZ6j4YbdTZs0wHwYDVR0jBBgwFoAUYAxslYLhTzef1aWysY2CLjZR
ry4wDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjNCQTE5L0ZCQ0M3M0I2OTYyOTExRUM5NUI3QjFFMDVBNDBENTc3L1lBeHNs
WUxoVHplZjFhV3lzWTJDTGpaUnJ5NC5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
L1lBeHNsWUxoVHplZjFhV3lzWTJDTGpaUnJ5NC5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNjNCQTE5L0ZCQ0M3M0I2OTYyOTExRUM5NUI3QjFFMDVBNDBE
NTc3LzA3MUI2NDI2NjkyMDExRjBBMEYwRURBMURBRTRFQzlDLnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAt3UAwDQYJKoZIhvcNAQELBQAD
ggEBAA+BLGOcRs2V9xHBsvtzEwPus8cHZJSj93/HFWbR8pz3NVUopQGbZsgZ2bP2
2RVEGIXJmYSqwmqaH+BAdmmcQuFNxME9tNSiFxzr6tzMW7hPMdOt51Jq7GlwD+kT
0JzlJuE+R9/HYb4jkEajqK5/b7SW4h4bhu8IL2FfL81hHtLUi0fr2KDcVDQRyURw
KJhh8BtJzYsNsdyNypbsE9fKUeBpCTOdz93jqFFnN5nG5OCCXbU2ieAKUospHVjJ
OvwMbhSBgb1kgFea7bn6chsaCTWSwVUM78PhBWKmqiT8LDpbkZyOgM85RDUJEmu/
+a33Mjqpwg7ct86rfaEJ5KR8vUU=
-----END CERTIFICATE-----
Generated at Sat Jul 26 14:47:11 2025 by rpki-client