Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/0DCD1D360C6F11F0B5B6B54C762E951A.roa
File: 0DCD1D360C6F11F0B5B6B54C762E951A.roa (raw, json)
Hash identifier: gC7yG1h/hDdpGE1Rf0MsKLgVfzEsC4WrBGH03rs1oXY=
Subject key identifier: CB:5C:99:4A:06:C2:86:43:C3:F3:A8:0F:6D:1B:0E:0E:4E:B6:4C:3C
Certificate issuer: /CN=F363BA19AR/serialNumber=600C6C9582E14F379FD5A5B2B18D822E3651AF2E
Certificate serial: 04D9
Authority key identifier: 60:0C:6C:95:82:E1:4F:37:9F:D5:A5:B2:B1:8D:82:2E:36:51:AF:2E
Authority info access: rsync://rpki.afrinic.net/repository/arin/YAxslYLhTzef1aWysY2CLjZRry4.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/0DCD1D360C6F11F0B5B6B54C762E951A.roa
Signing time: Sat 29 Mar 2025 07:25:56 +0000
ROA not before: Sat 29 Mar 2025 07:25:52 +0000
ROA not after: Sun 29 Mar 2026 07:25:52 +0000
asID: 54339
IP address blocks: 45.221.69.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/YAxslYLhTzef1aWysY2CLjZRry4.crl
rsync://rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/YAxslYLhTzef1aWysY2CLjZRry4.mft
rsync://rpki.afrinic.net/repository/arin/YAxslYLhTzef1aWysY2CLjZRry4.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 08 Apr 2025 00:26:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1241 (0x4d9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363BA19AR
Validity
Not Before: Mar 29 07:25:52 2025 GMT
Not After : Mar 29 07:25:52 2026 GMT
Subject: CN=67e7a084-6732
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:41:05:e8:25:38:54:e7:fe:b3:a9:bd:14:cf:
16:fc:a3:f4:7a:5b:6a:1e:56:61:a6:16:6f:05:b2:
95:87:f4:55:e8:ce:75:47:81:9e:d2:41:3f:69:90:
3e:a0:cd:13:e9:51:76:00:bb:93:e9:28:65:3f:5e:
42:76:24:c9:d8:c3:46:86:ac:4c:87:f9:3c:44:7b:
de:89:63:4c:84:7b:d5:81:68:07:1a:c9:ab:07:44:
59:71:c3:85:4a:17:61:7d:73:50:7a:a9:b3:2f:a7:
ef:dc:96:f5:8a:17:64:0b:89:e7:ae:9a:d0:eb:67:
10:bb:5e:57:55:18:aa:20:8e:af:66:3c:8f:15:76:
01:b2:5c:30:6f:82:ef:27:c2:4c:1c:e2:5d:11:b8:
40:cd:ff:47:ab:94:c8:3b:17:59:46:ec:80:c9:e4:
42:09:3b:6f:be:40:e1:4b:19:81:44:96:e6:ff:63:
18:64:3c:e4:55:f5:15:80:ff:6e:32:39:0a:9e:0e:
66:88:e6:62:e5:dc:60:97:2d:87:9e:4c:8e:7f:55:
2d:e9:e7:5a:b5:d1:70:ec:58:a3:c3:85:7e:df:7c:
fa:38:c2:2b:6f:d7:dc:43:1d:d5:63:52:ad:1d:45:
b0:2f:73:95:d0:1f:a2:cd:fe:20:53:c3:94:39:8a:
62:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:5C:99:4A:06:C2:86:43:C3:F3:A8:0F:6D:1B:0E:0E:4E:B6:4C:3C
X509v3 Authority Key Identifier:
keyid:60:0C:6C:95:82:E1:4F:37:9F:D5:A5:B2:B1:8D:82:2E:36:51:AF:2E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/YAxslYLhTzef1aWysY2CLjZRry4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/YAxslYLhTzef1aWysY2CLjZRry4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/0DCD1D360C6F11F0B5B6B54C762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.221.69.0/24
Signature Algorithm: sha256WithRSAEncryption
30:33:2c:ba:40:a0:35:f8:1a:b2:b6:b6:a2:e5:a3:84:39:b8:
99:9b:c3:dd:06:c7:89:28:57:dd:fe:2b:ba:8f:34:e8:8c:f5:
30:14:88:73:ff:21:5e:af:58:88:1a:f0:ae:27:f5:7a:3f:24:
fd:16:ca:6f:33:bc:df:b2:fa:55:72:eb:8e:57:01:84:8d:f3:
a6:33:7f:39:f6:31:84:79:51:ac:82:1c:d0:07:ed:69:8f:5e:
e0:d1:49:39:c9:6e:d4:00:a1:50:b4:2a:c0:7c:52:d9:ed:c2:
e9:37:15:07:f9:12:48:ab:80:dd:aa:61:64:bc:96:94:dd:39:
39:bb:7a:5a:48:ac:8b:ad:ea:3a:20:6a:a6:57:52:53:97:0d:
9a:77:f7:66:61:3f:7b:59:8c:e5:86:9b:5a:40:c8:7c:8a:85:
49:df:47:e3:92:64:08:80:f0:00:7e:53:5c:85:be:c7:f6:31:
d8:77:b0:73:70:7d:db:ac:78:98:70:62:1f:ba:f5:d8:e6:ec:
92:0f:45:c5:9b:d8:fa:73:54:e0:dd:d6:d5:d3:f7:ae:29:1d:
75:43:55:1f:b2:71:1e:f8:c7:f6:14:ab:46:bc:2b:35:92:2d:
97:47:c0:4f:fe:3b:f5:70:92:91:58:7a:16:61:2e:a6:2f:62:
67:7f:47:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 01:15:29 2025 by rpki-client