Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/9B28BFB45CA611F088CDAD80DAE4EC9C.roa
File: 9B28BFB45CA611F088CDAD80DAE4EC9C.roa (raw, json)
Hash identifier: W+YDDjhXVEA+/5LflfbBe6EjZ2F3T4npM1ANRsreQhY=
Subject key identifier: 0D:B9:45:54:52:85:E0:52:B0:6C:B9:DD:B2:6F:7E:7D:F8:99:BD:33
Certificate issuer: /CN=F363BA19AR/serialNumber=600C6C9582E14F379FD5A5B2B18D822E3651AF2E
Certificate serial: 059B
Authority key identifier: 60:0C:6C:95:82:E1:4F:37:9F:D5:A5:B2:B1:8D:82:2E:36:51:AF:2E
Authority info access: rsync://rpki.afrinic.net/repository/arin/YAxslYLhTzef1aWysY2CLjZRry4.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/9B28BFB45CA611F088CDAD80DAE4EC9C.roa
Signing time: Wed 09 Jul 2025 09:25:09 +0000
ROA not before: Wed 09 Jul 2025 09:25:04 +0000
ROA not after: Tue 16 Jun 2026 09:25:04 +0000
asID: 329007
IP address blocks: 45.221.70.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/YAxslYLhTzef1aWysY2CLjZRry4.crl
rsync://rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/YAxslYLhTzef1aWysY2CLjZRry4.mft
rsync://rpki.afrinic.net/repository/arin/YAxslYLhTzef1aWysY2CLjZRry4.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 22 Jul 2025 02:48:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1435 (0x59b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363BA19AR, serialNumber=600C6C9582E14F379FD5A5B2B18D822E3651AF2E
Validity
Not Before: Jul 9 09:25:04 2025 GMT
Not After : Jun 16 09:25:04 2026 GMT
Subject: CN=686e3575-6707
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:b7:1b:d8:7d:c6:8e:87:7f:78:92:70:fa:72:
31:ee:c7:f8:0d:73:e6:c7:4e:f5:c2:d5:bf:39:24:
09:6f:91:79:ad:aa:19:be:d3:e9:71:22:5f:cb:8b:
e8:2b:06:08:59:6f:ce:7b:db:ba:25:23:3d:a1:46:
98:25:c9:0e:23:54:8f:30:7a:40:cf:23:c6:35:9d:
e0:47:c2:93:8c:43:94:61:ad:b6:83:80:7e:44:19:
15:31:ad:11:45:bb:af:d2:e5:6e:74:4b:86:c1:1f:
97:78:a2:58:45:4e:17:33:71:a4:be:cc:1c:46:de:
b5:d5:7c:79:cd:4a:66:d8:fd:75:1d:a3:43:49:64:
9c:a8:28:de:8a:4e:e4:07:47:a9:b5:45:2d:55:2b:
77:a3:76:79:d1:f0:5e:02:f6:46:3c:c0:75:34:4f:
f8:e3:31:25:2e:ce:1d:f1:54:d9:c3:6d:d0:33:c7:
d8:8a:7a:a7:a1:f4:e2:df:53:e1:e6:00:51:47:13:
fe:4b:ee:4b:27:f9:97:a9:ba:46:18:59:18:71:7e:
09:d4:e2:c6:60:2e:29:cd:91:3c:6d:c2:39:76:76:
d4:a5:2c:83:72:fc:56:a4:cb:59:0a:3c:74:f4:98:
79:11:33:c0:62:55:09:0a:30:78:73:b2:74:56:a0:
52:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:B9:45:54:52:85:E0:52:B0:6C:B9:DD:B2:6F:7E:7D:F8:99:BD:33
X509v3 Authority Key Identifier:
keyid:60:0C:6C:95:82:E1:4F:37:9F:D5:A5:B2:B1:8D:82:2E:36:51:AF:2E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/YAxslYLhTzef1aWysY2CLjZRry4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/YAxslYLhTzef1aWysY2CLjZRry4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/9B28BFB45CA611F088CDAD80DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.221.70.0/24
Signature Algorithm: sha256WithRSAEncryption
05:36:26:b7:ee:81:48:5f:25:31:fe:bb:1e:c6:b8:a0:f9:28:
60:88:6a:b3:ac:c3:cb:0b:fc:85:4e:a7:93:74:eb:8c:86:d4:
b6:ae:a3:6c:6f:af:f0:8b:d9:26:71:e5:b1:b5:ff:89:f1:cd:
3a:37:9a:19:71:c7:b6:54:d1:42:e2:78:43:0a:dc:64:32:42:
7f:37:57:39:bf:f3:23:37:c2:17:cd:5b:9d:29:74:83:51:d0:
cf:b4:6a:35:f1:a8:1a:8f:66:78:0b:5b:d7:13:52:9c:81:f1:
bd:aa:bf:f6:cf:c8:50:36:f5:cd:b5:99:e0:8d:0d:57:97:ce:
69:5b:c6:22:7c:e6:c3:0a:6e:06:d5:cc:de:42:0c:0e:b7:c5:
d5:58:ed:94:7d:b3:e4:f3:ac:0d:8b:23:19:75:6c:b4:7f:2d:
d5:f5:88:f6:1e:48:48:1b:69:fa:15:36:aa:c2:3d:ed:1b:4a:
7c:4f:e7:57:5a:fb:c2:e8:3e:c6:1b:0b:04:14:93:65:fe:22:
a1:b0:89:26:e4:40:1a:36:58:2d:ef:57:41:9f:fb:61:df:29:
f1:67:07:2b:f5:8e:a2:81:19:0e:27:81:7e:b7:8d:a4:9e:6c:
37:be:11:bc:a6:41:03:0f:57:cb:bb:c5:45:2f:ac:31:08:04:
8d:ed:91:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 21 02:06:26 2025 by rpki-client