Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/1945B89A692011F095ECF2A1DAE4EC9C.roa
File: 1945B89A692011F095ECF2A1DAE4EC9C.roa (raw, json)
Hash identifier: lTrdNi859zkZ4V5T3F03wlTtIBTQdsdT3/2IciahtfQ=
Subject key identifier: EB:FA:2C:E5:CD:57:07:D5:95:C7:BA:C4:B0:93:7F:16:2F:92:0E:C5
Certificate issuer: /CN=F363BA19AR/serialNumber=600C6C9582E14F379FD5A5B2B18D822E3651AF2E
Certificate serial: 05AF
Authority key identifier: 60:0C:6C:95:82:E1:4F:37:9F:D5:A5:B2:B1:8D:82:2E:36:51:AF:2E
Authority info access: rsync://rpki.afrinic.net/repository/arin/YAxslYLhTzef1aWysY2CLjZRry4.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/1945B89A692011F095ECF2A1DAE4EC9C.roa
Signing time: Fri 25 Jul 2025 06:25:04 +0000
ROA not before: Fri 25 Jul 2025 06:24:59 +0000
ROA not after: Tue 16 Jun 2026 06:24:59 +0000
asID: 207184
IP address blocks: 45.221.65.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/YAxslYLhTzef1aWysY2CLjZRry4.crl
rsync://rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/YAxslYLhTzef1aWysY2CLjZRry4.mft
rsync://rpki.afrinic.net/repository/arin/YAxslYLhTzef1aWysY2CLjZRry4.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 28 Jul 2025 00:26:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1455 (0x5af)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363BA19AR, serialNumber=600C6C9582E14F379FD5A5B2B18D822E3651AF2E
Validity
Not Before: Jul 25 06:24:59 2025 GMT
Not After : Jun 16 06:24:59 2026 GMT
Subject: CN=68832340-0f00
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:e5:af:f0:eb:e9:46:0f:43:e1:42:8c:22:0b:
c5:3b:53:85:6a:e5:d4:68:bd:d1:23:11:62:6a:75:
7e:e0:ff:15:e6:a3:a1:60:62:1b:ac:8b:e3:83:66:
2b:4e:f9:9a:f3:3a:d7:51:47:c1:65:ac:bd:0a:f6:
15:27:26:f2:4e:9e:63:de:30:3c:9a:a8:4e:17:9b:
0d:fe:88:d0:2f:43:c2:a2:68:58:71:7a:57:01:11:
ef:db:d5:fe:bb:44:76:f3:a2:f3:21:60:7b:2e:cc:
2f:84:df:58:2f:2d:9f:20:1d:4e:c6:eb:52:d9:b2:
8d:dc:fc:85:5e:3d:5b:f5:f5:55:87:b7:be:5c:0e:
dc:7c:4f:63:17:d5:34:d0:c1:6e:35:36:36:8e:99:
13:32:04:15:b6:e3:09:0b:d9:e0:d9:7c:b5:84:10:
7e:82:78:45:56:3d:9c:1b:71:e9:2c:e8:60:2e:9a:
21:e7:96:a5:cf:2a:91:c9:44:30:b8:54:70:d2:1f:
4b:ff:00:2d:8e:55:28:cf:65:ac:4d:d1:21:ec:96:
34:bd:70:9b:cc:40:c0:fd:91:c1:06:21:26:f1:de:
69:de:4a:a7:f3:ec:7e:b0:2a:3b:45:e4:bb:aa:77:
9d:f3:90:40:fc:5b:d7:ca:e1:37:03:8d:ce:2f:ea:
02:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:FA:2C:E5:CD:57:07:D5:95:C7:BA:C4:B0:93:7F:16:2F:92:0E:C5
X509v3 Authority Key Identifier:
keyid:60:0C:6C:95:82:E1:4F:37:9F:D5:A5:B2:B1:8D:82:2E:36:51:AF:2E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/YAxslYLhTzef1aWysY2CLjZRry4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/YAxslYLhTzef1aWysY2CLjZRry4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/1945B89A692011F095ECF2A1DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.221.65.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:46:4f:4e:6f:4d:2d:08:86:db:e6:c7:00:33:5c:41:3f:cb:
42:ad:e1:d8:78:9b:9c:3b:e0:79:93:3a:aa:29:27:c4:35:94:
06:b0:ae:10:f6:51:15:b8:32:e2:b3:8d:6b:b8:21:48:b7:2a:
28:7e:b2:82:24:54:a6:ac:71:a2:2e:0a:05:44:bc:ff:c3:92:
dc:7a:cd:20:07:e0:5c:a3:43:67:af:ab:ed:fb:7c:57:d0:1c:
ae:17:8d:98:d0:2e:ca:1c:fa:41:e5:0f:ee:81:4a:f3:60:32:
0d:ed:a0:14:b3:6b:16:df:b2:4b:92:f1:00:7e:a3:6f:bb:74:
12:a2:93:cd:9d:3b:44:3f:25:bb:ad:8c:64:e7:10:4c:0f:98:
72:cf:f4:7b:5d:03:fa:01:c5:54:e8:5b:53:de:64:63:22:c7:
95:8b:59:36:28:52:a2:9e:4e:ab:19:fb:41:13:60:f5:77:aa:
37:5e:05:b4:3f:50:78:eb:a8:9a:3b:af:55:17:af:f8:be:2d:
49:d9:35:1f:54:0d:9f:f0:18:39:28:94:28:c8:db:6c:48:63:
cb:5c:65:ef:18:17:20:85:f1:f3:e2:b2:c8:cc:df:46:30:a4:
31:78:86:1a:f5:28:77:fa:e8:07:89:4c:15:e3:61:c1:51:7d:
90:a7:3e:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 26 14:52:32 2025 by rpki-client