Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/02A5CB783A3311F081AE38C3DAE4EC9C.roa
File: 02A5CB783A3311F081AE38C3DAE4EC9C.roa (raw, json)
Hash identifier: NIMJYDvhrNQ5qKbe8izad68lKpaBMWdIKNqrQHso2iU=
Subject key identifier: 6A:D2:F3:C0:FE:67:6E:0F:B4:4F:AB:46:3B:CC:83:D9:93:1B:AB:B0
Certificate issuer: /CN=F363BA19AR/serialNumber=600C6C9582E14F379FD5A5B2B18D822E3651AF2E
Certificate serial: 0541
Authority key identifier: 60:0C:6C:95:82:E1:4F:37:9F:D5:A5:B2:B1:8D:82:2E:36:51:AF:2E
Authority info access: rsync://rpki.afrinic.net/repository/arin/YAxslYLhTzef1aWysY2CLjZRry4.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/02A5CB783A3311F081AE38C3DAE4EC9C.roa
Signing time: Mon 26 May 2025 13:12:01 +0000
ROA not before: Mon 26 May 2025 13:11:57 +0000
ROA not after: Sat 23 May 2026 13:11:57 +0000
asID: 329007
IP address blocks: 45.221.68.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/YAxslYLhTzef1aWysY2CLjZRry4.crl
rsync://rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/YAxslYLhTzef1aWysY2CLjZRry4.mft
rsync://rpki.afrinic.net/repository/arin/YAxslYLhTzef1aWysY2CLjZRry4.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 08 Jun 2025 00:26:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1345 (0x541)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363BA19AR, serialNumber=600C6C9582E14F379FD5A5B2B18D822E3651AF2E
Validity
Not Before: May 26 13:11:57 2025 GMT
Not After : May 23 13:11:57 2026 GMT
Subject: CN=683468a1-5efa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:71:42:10:a8:a7:cd:16:62:03:fc:a1:07:c2:
23:8e:d2:36:9c:73:d2:4d:c8:e4:e9:27:46:c7:60:
93:6e:5f:e9:b9:ba:fb:4b:30:47:7e:fb:9a:f9:04:
bb:35:a1:13:d5:57:42:87:2d:d7:26:5b:15:b1:3f:
56:2d:78:3a:45:80:f0:16:2c:59:94:e2:b9:5b:96:
c2:cf:dd:5e:8f:e5:4d:d2:19:c2:24:ec:fc:46:6c:
c1:b3:50:fd:6e:1b:e1:ce:f0:84:9a:f9:03:7c:07:
4f:cb:cf:2e:e2:88:44:23:c7:f7:43:09:89:57:25:
af:e0:d6:45:4b:06:18:4a:c2:cd:5d:26:44:f6:9a:
a1:5b:a5:e8:cc:aa:7e:48:b8:85:46:17:da:90:12:
bb:0a:bc:e1:dd:b1:ee:2e:4a:5a:af:c9:06:e7:17:
0a:fc:74:e6:3b:48:ff:a3:68:a3:0b:33:52:25:67:
60:c9:c9:07:85:54:85:ac:8c:50:21:a6:80:70:cf:
28:0c:1d:45:2d:c8:cd:a5:1c:58:1f:5f:a0:8b:d2:
05:ca:da:7e:71:13:be:ce:ae:ab:b8:3c:d1:06:69:
39:d0:b5:d3:b2:74:f7:cb:33:40:2c:5a:8e:0b:bb:
45:b0:bd:ab:6b:92:b1:b1:73:cb:2b:eb:26:70:9d:
c6:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:D2:F3:C0:FE:67:6E:0F:B4:4F:AB:46:3B:CC:83:D9:93:1B:AB:B0
X509v3 Authority Key Identifier:
keyid:60:0C:6C:95:82:E1:4F:37:9F:D5:A5:B2:B1:8D:82:2E:36:51:AF:2E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/YAxslYLhTzef1aWysY2CLjZRry4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/YAxslYLhTzef1aWysY2CLjZRry4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/02A5CB783A3311F081AE38C3DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.221.68.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:a8:a2:17:05:47:04:0b:64:78:fd:e4:37:56:37:93:38:32:
25:8e:4c:ea:0f:fa:d0:c6:bb:01:cd:78:bb:df:45:db:7d:ef:
4b:ad:0d:32:3e:d3:da:24:93:cb:ee:0f:d2:45:36:4f:16:fc:
32:ba:48:54:65:45:cf:03:f3:98:ac:ad:c8:41:1a:b5:6f:53:
4e:8c:9b:17:26:51:eb:74:5a:f8:b6:83:f9:a5:28:c5:02:da:
48:dd:d6:3c:c5:2a:36:e6:01:e0:e6:50:67:7c:6a:98:97:c6:
82:84:13:4d:9f:71:94:fa:6c:86:77:99:d3:7e:1c:84:1c:14:
91:a6:cb:f2:59:7a:1c:cc:5b:1d:e4:49:bc:ed:5f:b8:02:36:
57:9e:de:e4:06:ba:d4:0e:68:f6:81:d1:69:9d:1a:8a:01:c4:
ba:ba:bd:db:e0:04:78:26:04:49:bb:64:38:c9:fd:f6:6c:da:
c1:20:f1:c9:aa:32:06:b0:2a:86:e2:9a:8b:ad:69:8d:de:1c:
b6:cb:65:de:2f:da:0f:bb:cb:15:57:46:02:b5:94:51:38:d1:
68:c0:42:86:9d:2a:76:0e:13:a9:dd:4e:5c:40:0c:89:d4:21:
17:3f:55:4a:c6:68:48:bd:a5:4c:91:be:78:ae:b4:b5:8c:40:
93:9b:28:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 6 15:42:21 2025 by rpki-client