Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/DF6D4D362B1711F080FD97CADAE4EC9C.roa
File: DF6D4D362B1711F080FD97CADAE4EC9C.roa (raw, json)
Hash identifier: Tkuw6WcGadNu9PimFZc8+yJ1a03KOPaiIexaDqdzMPo=
Subject key identifier: 40:CF:B4:C0:CB:02:1B:58:3D:E4:D5:58:67:87:71:8B:62:23:43:3A
Certificate issuer: /CN=F363BA19AR/serialNumber=600C6C9582E14F379FD5A5B2B18D822E3651AF2E
Certificate serial: 0521
Authority key identifier: 60:0C:6C:95:82:E1:4F:37:9F:D5:A5:B2:B1:8D:82:2E:36:51:AF:2E
Authority info access: rsync://rpki.afrinic.net/repository/arin/YAxslYLhTzef1aWysY2CLjZRry4.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/DF6D4D362B1711F080FD97CADAE4EC9C.roa
Signing time: Wed 07 May 2025 07:49:58 +0000
ROA not before: Wed 07 May 2025 07:49:54 +0000
ROA not after: Thu 01 Jan 2026 07:49:54 +0000
asID: 213659
IP address blocks: 45.221.64.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/YAxslYLhTzef1aWysY2CLjZRry4.crl
rsync://rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/YAxslYLhTzef1aWysY2CLjZRry4.mft
rsync://rpki.afrinic.net/repository/arin/YAxslYLhTzef1aWysY2CLjZRry4.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 07 Jun 2025 00:26:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1313 (0x521)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363BA19AR, serialNumber=600C6C9582E14F379FD5A5B2B18D822E3651AF2E
Validity
Not Before: May 7 07:49:54 2025 GMT
Not After : Jan 1 07:49:54 2026 GMT
Subject: CN=681b10a6-311d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:85:f3:a6:e5:19:ad:77:4c:c2:ab:79:c3:18:
f6:4e:8b:32:44:09:89:f6:fd:61:c8:d1:fd:cb:b3:
08:b2:f9:25:ae:c3:36:30:a9:7e:d5:af:17:de:7b:
fc:f4:94:65:94:47:26:52:7f:e7:c2:08:2b:b8:7a:
1f:d1:32:2f:9d:05:49:c2:8d:61:66:79:80:1f:3e:
40:3e:5e:11:cd:de:03:ba:05:22:7b:67:fb:52:1d:
07:ce:2f:1e:fc:41:97:3c:7d:4c:c4:ad:c4:7e:16:
b5:32:a9:84:f5:68:e7:7a:55:61:a2:36:12:75:8b:
45:c3:cc:ac:f5:f5:3b:b1:1f:77:34:26:8e:21:c4:
ce:ee:64:cc:36:5e:c0:11:33:52:dc:11:d5:00:4c:
80:43:b5:85:53:a4:f7:cd:bf:ec:e3:29:fd:c4:37:
cd:77:07:82:8b:0c:bf:02:b9:54:fc:b1:ef:7e:d2:
e5:45:58:c5:5c:47:6d:ff:dd:ff:49:b6:dd:e4:15:
dd:7d:11:18:7b:c6:32:39:d2:43:60:88:14:03:c2:
f2:c1:57:01:7d:af:f3:1a:19:de:10:01:12:08:77:
dd:d9:fd:71:96:a8:00:19:96:f0:fb:9a:e1:bb:ad:
ba:cf:8c:79:b3:ad:7d:fc:4d:92:fe:e4:09:6d:8b:
9b:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:CF:B4:C0:CB:02:1B:58:3D:E4:D5:58:67:87:71:8B:62:23:43:3A
X509v3 Authority Key Identifier:
keyid:60:0C:6C:95:82:E1:4F:37:9F:D5:A5:B2:B1:8D:82:2E:36:51:AF:2E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/YAxslYLhTzef1aWysY2CLjZRry4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/YAxslYLhTzef1aWysY2CLjZRry4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/DF6D4D362B1711F080FD97CADAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.221.64.0/24
Signature Algorithm: sha256WithRSAEncryption
a6:b4:b9:52:2f:ef:eb:a5:04:c9:88:1c:eb:2a:5d:83:83:87:
f9:19:ba:b2:13:ad:2e:76:c2:70:a5:06:22:19:e2:cd:27:38:
0e:ac:08:e8:67:e3:18:ed:8f:95:6a:fa:24:cc:6e:78:b4:62:
33:6e:f1:be:52:66:b8:9b:42:25:f7:14:61:3c:be:65:d9:ab:
2e:52:7e:39:b1:bf:04:2a:e0:e4:6a:91:49:2c:db:ba:93:aa:
a3:45:2c:47:17:8e:5f:f5:cd:ec:88:82:0c:62:bb:61:7d:85:
67:ef:ee:85:06:96:9a:69:02:f5:e4:3d:42:4a:8f:84:15:6c:
44:20:e8:92:93:8a:29:a8:cd:21:d0:fe:82:25:72:43:17:4b:
b3:6d:39:68:70:cf:b4:7a:4e:23:e9:e7:ca:dd:9a:e2:de:6f:
c3:7d:94:93:20:b0:8e:0b:18:86:d7:cb:ff:0e:92:c5:f7:fc:
11:4e:4f:b7:03:d5:f7:6d:0f:7c:91:19:65:c5:28:29:74:79:
5f:ff:13:7d:c0:43:87:45:e4:4d:c2:57:e9:0a:61:de:37:97:
6a:1d:fe:03:17:24:a1:d5:8a:6d:ad:40:f2:ea:bc:6a:de:68:
5e:b7:5a:26:46:8e:31:5b:62:aa:6f:80:6c:66:9b:20:5a:be:
48:4b:fe:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 5 18:11:15 2025 by rpki-client