Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/3C75A54423F311F19A28F6DBDAE4EC9C.roa
File: 3C75A54423F311F19A28F6DBDAE4EC9C.roa (raw, json)
Hash identifier: eBZ1wdxvI/1zG8ebYFu4ns6Ly1q/bJwudAr02Fzt284=
Subject key identifier: 88:69:86:E5:87:D5:A2:6A:49:8D:DF:4C:90:01:D2:2D:DE:D1:E4:28
Certificate issuer: /CN=F363BA19AR/serialNumber=600C6C9582E14F379FD5A5B2B18D822E3651AF2E
Certificate serial: 06F7
Authority key identifier: 60:0C:6C:95:82:E1:4F:37:9F:D5:A5:B2:B1:8D:82:2E:36:51:AF:2E
Authority info access: rsync://rpki.afrinic.net/repository/arin/YAxslYLhTzef1aWysY2CLjZRry4.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/3C75A54423F311F19A28F6DBDAE4EC9C.roa
Signing time: Fri 20 Mar 2026 00:25:03 +0000
ROA not before: Fri 20 Mar 2026 00:00:58 +0000
ROA not after: Wed 31 Mar 2027 00:00:58 +0000
asID: 208185
IP address blocks: 45.221.65.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/YAxslYLhTzef1aWysY2CLjZRry4.crl
rsync://rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/YAxslYLhTzef1aWysY2CLjZRry4.mft
rsync://rpki.afrinic.net/repository/arin/YAxslYLhTzef1aWysY2CLjZRry4.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 23 Mar 2026 00:26:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1783 (0x6f7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363BA19AR, serialNumber=600C6C9582E14F379FD5A5B2B18D822E3651AF2E
Validity
Not Before: Mar 20 00:00:58 2026 GMT
Not After : Mar 31 00:00:58 2027 GMT
Subject: CN=69bc93df-596f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:85:be:d9:b4:f5:f5:97:ed:5b:8c:ab:c5:4f:
60:44:24:33:02:92:1e:89:48:94:31:08:cd:49:4a:
a4:72:03:5b:a1:7f:a3:d7:1e:07:03:e5:71:b1:2f:
53:29:57:c7:0e:3a:8c:6f:ec:c8:9f:0a:64:a2:4e:
cb:ec:f6:58:9e:19:ba:d5:0b:27:9b:a7:30:63:c5:
46:74:87:0c:e3:26:ca:f1:0f:ab:0f:74:16:2f:98:
6f:18:5a:a4:2b:5a:a4:c5:cb:43:24:b3:a9:55:3f:
7e:de:fc:6d:4d:cb:f5:be:28:12:93:25:39:7a:0c:
30:6a:e8:b3:d8:ea:cc:af:19:fc:b7:70:16:6b:12:
d3:6a:1c:e1:1c:a2:31:f9:8a:98:3c:94:9c:64:69:
66:5c:34:2d:a8:86:2f:b5:17:5a:ac:6d:39:9a:71:
13:e7:f9:47:38:c2:36:f5:de:07:15:21:d9:59:40:
3b:b7:11:9b:b8:9e:c4:a6:ba:ca:f8:7f:6a:2f:16:
28:89:eb:70:3a:14:0e:46:bd:f0:f3:a9:67:dd:03:
31:35:43:e0:bd:5c:7b:eb:6f:51:d5:7c:e8:c3:b0:
03:58:d8:61:e4:f2:a8:33:3d:af:8e:0b:90:06:a1:
69:ee:ad:7e:ac:d3:6b:11:31:0a:2e:0c:7c:36:d1:
04:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:69:86:E5:87:D5:A2:6A:49:8D:DF:4C:90:01:D2:2D:DE:D1:E4:28
X509v3 Authority Key Identifier:
keyid:60:0C:6C:95:82:E1:4F:37:9F:D5:A5:B2:B1:8D:82:2E:36:51:AF:2E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/YAxslYLhTzef1aWysY2CLjZRry4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/YAxslYLhTzef1aWysY2CLjZRry4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/3C75A54423F311F19A28F6DBDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.221.65.0/24
Signature Algorithm: sha256WithRSAEncryption
21:7c:ec:9c:53:27:3f:0c:a9:c1:ae:70:01:9b:4b:45:d3:79:
fc:d8:36:fa:6c:e6:ee:9d:34:1a:82:92:7f:9e:43:0f:a0:d1:
04:10:f4:e8:ba:d0:2e:42:ec:b2:8f:5b:d5:26:7b:3d:81:97:
22:63:19:1d:0a:1f:82:cb:3a:eb:44:c9:fb:63:c1:05:f8:98:
f9:8d:1b:d4:1d:28:96:4c:e4:eb:6d:36:16:23:32:db:ed:d9:
9f:86:e3:41:4b:4e:e5:e7:05:6e:0e:79:a3:c3:49:be:91:3b:
e3:71:c3:c7:9a:89:0b:b7:09:0b:e9:86:ac:3e:c6:c4:69:3b:
10:c0:2a:00:e5:bc:f8:8d:46:c4:10:4f:3e:d7:e8:d2:24:4f:
68:7e:4f:6b:8a:f6:75:ab:32:d5:13:11:16:a8:94:d8:51:ab:
11:20:47:77:e9:eb:51:cf:d9:eb:84:8d:f3:0a:20:3b:a3:0a:
87:4f:7b:6f:aa:39:2c:10:a7:84:af:7f:8e:8e:1d:6a:88:32:
e2:e2:bd:d0:89:8e:c1:53:51:b4:96:ec:c1:ba:7d:cc:ac:bb:
66:d7:f4:be:56:51:bd:0a:00:6c:cb:86:8d:6b:1e:1c:b7:24:
0b:e3:ee:21:d9:88:68:24:5f:1c:70:a5:cb:a1:38:d3:8e:fa:
41:ce:fd:f6
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICBvcwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
M0JBMTlBUjExMC8GA1UEBRMoNjAwQzZDOTU4MkUxNEYzNzlGRDVBNUIyQjE4RDgy
MkUzNjUxQUYyRTAeFw0yNjAzMjAwMDAwNThaFw0yNzAzMzEwMDAwNThaMBgxFjAU
BgNVBAMTDTY5YmM5M2RmLTU5NmYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQCnhb7ZtPX1l+1bjKvFT2BEJDMCkh6JSJQxCM1JSqRyA1uhf6PXHgcD5XGx
L1MpV8cOOoxv7MifCmSiTsvs9lieGbrVCyebpzBjxUZ0hwzjJsrxD6sPdBYvmG8Y
WqQrWqTFy0Mks6lVP37e/G1Ny/W+KBKTJTl6DDBq6LPY6syvGfy3cBZrEtNqHOEc
ojH5ipg8lJxkaWZcNC2ohi+1F1qsbTmacRPn+Uc4wjb13gcVIdlZQDu3EZu4nsSm
usr4f2ovFiiJ63A6FA5GvfDzqWfdAzE1Q+C9XHvrb1HVfOjDsANY2GHk8qgzPa+O
C5AGoWnurX6s02sRMQouDHw20QTZAgMBAAGjggKiMIICnjAdBgNVHQ4EFgQUiGmG
5YfVompJjd9MkAHSLd7R5CgwHwYDVR0jBBgwFoAUYAxslYLhTzef1aWysY2CLjZR
ry4wDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjNCQTE5L0ZCQ0M3M0I2OTYyOTExRUM5NUI3QjFFMDVBNDBENTc3L1lBeHNs
WUxoVHplZjFhV3lzWTJDTGpaUnJ5NC5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
L1lBeHNsWUxoVHplZjFhV3lzWTJDTGpaUnJ5NC5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNjNCQTE5L0ZCQ0M3M0I2OTYyOTExRUM5NUI3QjFFMDVBNDBE
NTc3LzNDNzVBNTQ0MjNGMzExRjE5QTI4RjZEQkRBRTRFQzlDLnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAt3UEwDQYJKoZIhvcNAQELBQAD
ggEBACF87JxTJz8MqcGucAGbS0XTefzYNvps5u6dNBqCkn+eQw+g0QQQ9Oi60C5C
7LKPW9Umez2BlyJjGR0KH4LLOutEyftjwQX4mPmNG9QdKJZM5OttNhYjMtvt2Z+G
40FLTuXnBW4OeaPDSb6RO+Nxw8eaiQu3CQvphqw+xsRpOxDAKgDlvPiNRsQQTz7X
6NIkT2h+T2uK9nWrMtUTERaolNhRqxEgR3fp61HP2euEjfMKIDujCodPe2+qOSwQ
p4Svf46OHWqIMuLivdCJjsFTUbSW7MG6fcysu2bX9L5WUb0KAGzLho1rHhy3JAvj
7iHZiGgkXxxwpcuhONOO+kHO/fY=
-----END CERTIFICATE-----
Generated at Sat Mar 21 12:17:08 2026 by rpki-client