Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/580C23525BFF11F1ABCEE9DECE1D38B0.roa
File: 580C23525BFF11F1ABCEE9DECE1D38B0.roa (raw, json)
Hash identifier: oSVOuUnVlz9juIfduhs0a1mAzY4fhLlJ8vPo79p11eU=
Subject key identifier: F2:4E:55:1D:F6:09:E5:A6:5B:6F:C7:16:64:0F:E1:8F:74:A0:3B:30
Certificate issuer: /CN=F363BA19AR/serialNumber=600C6C9582E14F379FD5A5B2B18D822E3651AF2E
Certificate serial: 075A
Authority key identifier: 60:0C:6C:95:82:E1:4F:37:9F:D5:A5:B2:B1:8D:82:2E:36:51:AF:2E
Authority info access: rsync://rpki.afrinic.net/repository/arin/YAxslYLhTzef1aWysY2CLjZRry4.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/580C23525BFF11F1ABCEE9DECE1D38B0.roa
Signing time: Sat 30 May 2026 08:12:48 +0000
ROA not before: Sat 30 May 2026 08:12:44 +0000
ROA not after: Mon 31 May 2027 08:12:44 +0000
asID: 208317
IP address blocks: 45.221.65.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/YAxslYLhTzef1aWysY2CLjZRry4.crl
rsync://rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/YAxslYLhTzef1aWysY2CLjZRry4.mft
rsync://rpki.afrinic.net/repository/arin/YAxslYLhTzef1aWysY2CLjZRry4.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 05 Jun 2026 00:26:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1882 (0x75a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363BA19AR, serialNumber=600C6C9582E14F379FD5A5B2B18D822E3651AF2E
Validity
Not Before: May 30 08:12:44 2026 GMT
Not After : May 31 08:12:44 2027 GMT
Subject: CN=6a1a9c00-c768
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:54:5e:53:35:25:df:2e:2b:60:87:06:ba:e5:
ba:96:e8:d5:07:b2:01:aa:51:26:99:c0:b3:3e:5c:
cd:2b:0f:7c:fe:f7:31:e9:f4:a7:77:09:33:3c:5b:
e7:7a:d7:c8:f6:1d:01:f6:ed:23:4a:c7:10:16:91:
76:06:e1:0a:8f:9b:52:91:46:3c:9e:24:56:75:fe:
0a:81:f1:e1:a4:18:cf:55:89:ce:ed:a8:40:ae:8e:
95:8b:03:95:67:a4:18:f0:69:ce:8d:f3:c4:27:58:
b4:51:a0:5c:c5:0b:03:bb:5f:3c:32:9c:54:1c:86:
3b:7b:d1:2c:f6:d0:9a:a5:59:ee:74:cc:81:a8:8c:
a0:6a:2e:71:cb:80:91:ae:36:2c:ff:3d:aa:8d:54:
f9:92:d5:be:d8:5b:92:6f:e5:e2:1e:82:b0:9c:43:
ae:83:e2:ac:ea:7a:b0:32:d7:b6:ca:3f:c6:db:02:
a2:60:5f:d8:76:da:1c:48:0c:d7:8c:53:41:55:0e:
67:d0:e7:76:44:6d:87:a9:be:71:a0:e1:dc:19:5d:
97:75:fd:9f:ce:92:74:14:a3:c4:38:2a:cc:0a:3a:
c4:d4:e4:b2:5d:05:6f:c0:3e:79:80:6c:c0:f1:30:
21:e1:05:91:f2:d1:89:73:90:3f:29:45:41:90:f4:
9f:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:4E:55:1D:F6:09:E5:A6:5B:6F:C7:16:64:0F:E1:8F:74:A0:3B:30
X509v3 Authority Key Identifier:
keyid:60:0C:6C:95:82:E1:4F:37:9F:D5:A5:B2:B1:8D:82:2E:36:51:AF:2E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/YAxslYLhTzef1aWysY2CLjZRry4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/YAxslYLhTzef1aWysY2CLjZRry4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/580C23525BFF11F1ABCEE9DECE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.221.65.0/24
Signature Algorithm: sha256WithRSAEncryption
a9:52:6d:e0:ce:f5:aa:08:01:88:39:e1:84:98:53:b5:1c:eb:
b0:8d:8c:24:cf:88:c7:e9:74:ad:ec:ee:58:ea:ec:82:37:50:
9f:f1:09:a1:54:80:e8:3d:94:08:00:34:42:55:e7:1e:bb:e0:
d0:88:c1:2c:72:5d:89:2d:1f:33:8d:cd:44:ee:d7:f7:5b:42:
23:33:bb:8c:a7:ee:ce:44:70:d7:79:0d:50:ef:e0:4a:0c:64:
28:32:f9:0b:5d:5d:09:6b:4e:01:8a:f3:d6:e6:4d:93:ae:35:
45:6b:d5:30:8b:2a:82:73:6a:06:f5:54:b4:ac:81:18:43:c7:
6e:0b:77:6d:d1:ee:fc:25:c3:38:98:9a:e3:c0:bf:c2:ce:62:
d8:41:e0:d7:0a:9e:2c:ea:b5:71:12:1c:ec:76:6b:de:ff:5e:
89:53:c9:16:61:f2:bf:8a:a4:19:fa:9d:37:f9:a9:46:5b:a7:
72:ab:5f:a3:da:f6:d5:88:d4:cf:28:02:0a:86:0e:39:4a:c1:
af:01:a1:b1:0d:f2:3e:b3:0b:b5:54:a1:81:b9:dc:8e:6d:01:
f0:11:b1:48:6b:7e:bc:d3:c0:5e:51:f9:24:d9:6e:91:a8:cc:
59:e0:41:e3:19:ff:7f:53:38:1d:cb:6f:9c:7b:ad:99:5f:61:
65:4a:f4:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 3 09:14:49 2026 by rpki-client