Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/559B92EA5DA511F1A43E8FE1CE1D38B0.roa
File: 559B92EA5DA511F1A43E8FE1CE1D38B0.roa (raw, json)
Hash identifier: OPHl1DoHJN8tgjmklmEeEWPM7ypC79OHGkNZ6Gxu1pA=
Subject key identifier: 42:AB:FA:24:25:70:E3:89:B9:31:E5:0B:75:89:1E:2B:0F:3B:AE:A5
Certificate issuer: /CN=F363BA19AR/serialNumber=600C6C9582E14F379FD5A5B2B18D822E3651AF2E
Certificate serial: 0761
Authority key identifier: 60:0C:6C:95:82:E1:4F:37:9F:D5:A5:B2:B1:8D:82:2E:36:51:AF:2E
Authority info access: rsync://rpki.afrinic.net/repository/arin/YAxslYLhTzef1aWysY2CLjZRry4.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/559B92EA5DA511F1A43E8FE1CE1D38B0.roa
Signing time: Mon 01 Jun 2026 10:33:31 +0000
ROA not before: Mon 01 Jun 2026 10:33:27 +0000
ROA not after: Mon 31 May 2027 10:33:27 +0000
asID: 209396
IP address blocks: 45.221.68.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/YAxslYLhTzef1aWysY2CLjZRry4.crl
rsync://rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/YAxslYLhTzef1aWysY2CLjZRry4.mft
rsync://rpki.afrinic.net/repository/arin/YAxslYLhTzef1aWysY2CLjZRry4.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 07 Jun 2026 02:37:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1889 (0x761)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363BA19AR, serialNumber=600C6C9582E14F379FD5A5B2B18D822E3651AF2E
Validity
Not Before: Jun 1 10:33:27 2026 GMT
Not After : May 31 10:33:27 2027 GMT
Subject: CN=6a1d5ffb-de36
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:d3:39:d5:bb:28:f7:59:a0:b6:42:48:5c:68:
09:c6:c3:54:7a:7e:f3:b3:3c:8f:4f:51:c0:98:d0:
77:a6:55:40:9d:42:e7:5e:c5:ee:fd:f0:b9:fe:13:
e5:e4:a4:fe:34:c5:cf:33:90:54:c4:f9:29:02:3a:
43:f9:bf:b7:72:98:60:d1:e7:20:ff:a9:2d:24:aa:
36:b2:50:1f:4f:23:d5:e9:e7:c4:54:36:49:31:04:
8a:18:c0:16:87:c9:83:72:65:05:1d:33:1e:6c:20:
bc:83:2c:52:53:08:49:f5:93:a7:2c:54:23:0b:bb:
b2:dc:e1:6e:2a:f1:a8:bc:8a:9e:fb:e3:97:08:76:
9b:eb:1d:3f:f9:94:4a:b2:fa:9c:dd:66:2d:60:6f:
d8:a8:53:78:32:8f:66:2f:3e:49:3b:44:27:12:d0:
ce:48:37:84:8e:54:41:1b:52:a5:00:8c:44:cd:c3:
81:a4:c2:93:6f:05:8a:79:90:d3:93:c3:5e:e5:01:
a4:b6:0e:a4:8f:3c:cd:0b:c1:c8:87:fc:e1:5e:ec:
9d:de:e5:15:75:de:18:fe:7f:5d:bf:7d:02:92:37:
3e:59:cb:6a:8f:2e:60:45:4a:9c:6a:1c:a1:f4:65:
a2:d4:69:21:75:f1:58:71:20:9f:67:9d:0c:59:22:
c3:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:AB:FA:24:25:70:E3:89:B9:31:E5:0B:75:89:1E:2B:0F:3B:AE:A5
X509v3 Authority Key Identifier:
keyid:60:0C:6C:95:82:E1:4F:37:9F:D5:A5:B2:B1:8D:82:2E:36:51:AF:2E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/YAxslYLhTzef1aWysY2CLjZRry4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/YAxslYLhTzef1aWysY2CLjZRry4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/559B92EA5DA511F1A43E8FE1CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.221.68.0/24
Signature Algorithm: sha256WithRSAEncryption
08:30:e5:58:f8:34:5f:7d:de:f1:c0:84:d5:9b:ac:6c:9b:72:
5d:64:b3:9a:e4:fa:4e:70:e9:91:e8:1f:59:17:8c:31:d8:7f:
30:41:f2:d0:00:9b:1c:ed:91:9d:5d:a8:74:14:90:31:e4:f9:
7d:57:8f:75:95:d0:bd:20:7c:91:bf:c4:5e:10:e8:5b:f7:f8:
e9:48:de:2f:ac:0c:51:c3:e4:ec:34:de:a9:c6:84:ff:f8:3b:
85:ba:8d:74:69:bd:f6:0d:25:bb:df:f5:31:df:b6:d1:0a:26:
b9:ac:73:61:b5:6d:c7:e7:62:04:7f:be:48:8c:7c:64:c2:67:
c1:53:6e:b8:0a:9c:9f:60:a5:db:52:86:7d:62:cf:2f:3c:8a:
81:28:75:0e:e5:f5:bb:d5:9d:a2:60:86:45:e4:a3:3b:ae:0c:
5f:39:fd:31:2f:be:51:7e:27:4f:84:78:1b:b6:69:d0:f1:c7:
d4:63:c2:4f:ac:2f:bf:d5:c8:b5:25:20:ca:23:47:90:ca:59:
ea:48:f7:03:d4:82:36:a5:a1:32:60:8d:2a:b9:96:3c:41:5d:
6c:5b:cf:a1:2e:6c:56:93:e2:bf:f2:5b:3c:f0:ce:ac:18:40:
55:f9:6c:47:88:e4:21:09:05:70:33:7d:6a:5a:11:16:6e:b5:
45:68:93:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 6 02:28:28 2026 by rpki-client