Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/52F1CB5A042211F08E38186A762E951A.roa
File: 52F1CB5A042211F08E38186A762E951A.roa (raw, json)
Hash identifier: /FLGYauuJxHgfCs6FJ/l1003Mv3zLGrOXC1ej/M4IBw=
Subject key identifier: 89:41:9C:BB:1E:A0:B8:C6:AB:4D:3B:26:E7:FB:88:B9:10:9F:73:31
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0174E2
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/52F1CB5A042211F08E38186A762E951A.roa
Signing time: Tue 18 Mar 2025 17:56:32 +0000
ROA not before: Tue 18 Mar 2025 17:56:28 +0000
ROA not after: Mon 05 May 2025 17:56:28 +0000
asID: 202656
IP address blocks: 154.218.25.0/24 maxlen: 24
154.218.26.0/24 maxlen: 24
154.218.27.0/24 maxlen: 24
154.218.31.0/24 maxlen: 24
154.222.200.0/24 maxlen: 24
154.222.201.0/24 maxlen: 24
154.222.202.0/24 maxlen: 24
154.222.203.0/24 maxlen: 24
154.222.204.0/24 maxlen: 24
154.222.205.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 95458 (0x174e2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Mar 18 17:56:28 2025 GMT
Not After : May 5 17:56:28 2025 GMT
Subject: CN=67d9b3cf-7039
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:7d:75:2b:64:96:e8:e7:36:65:ca:cc:e6:17:
0e:0a:11:70:c1:1c:95:f5:3a:81:dd:3a:73:68:58:
42:3e:1d:01:29:cf:1f:51:b3:4f:eb:df:4f:df:bf:
9a:f6:8b:ba:55:b4:3c:04:78:bb:05:c2:03:93:dc:
b5:7a:11:3a:59:d5:54:da:ce:44:6e:8a:71:c0:eb:
46:55:58:28:28:37:24:25:b4:a7:4f:5a:e0:41:70:
1e:aa:4e:d7:cc:69:4a:5c:94:a0:a9:0a:52:9d:90:
89:8b:b2:87:a7:3d:30:cd:1d:37:5c:28:48:a1:13:
1d:39:ef:78:a5:c6:0a:37:43:18:8b:b5:96:82:e6:
2c:65:ff:d2:f8:fd:99:4e:ab:47:ba:11:b2:a7:44:
05:20:f0:6c:d6:0a:cb:bc:58:25:1f:f2:c9:fd:b0:
0c:3b:f2:28:37:eb:b9:51:13:64:06:a7:4f:b6:f4:
70:68:df:1f:71:f6:1a:b5:c6:db:2d:95:06:1f:0f:
f7:7b:9f:4e:42:05:b3:eb:c6:9c:d7:8c:40:69:9c:
6d:c7:3e:27:57:c1:f8:60:97:50:36:79:25:04:56:
63:a9:cf:0e:97:cf:30:00:41:4e:93:2d:04:fa:ee:
6a:e8:77:aa:5d:ce:15:d2:c0:64:77:4b:23:06:53:
53:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:41:9C:BB:1E:A0:B8:C6:AB:4D:3B:26:E7:FB:88:B9:10:9F:73:31
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/52F1CB5A042211F08E38186A762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.218.25.0-154.218.27.255
154.218.31.0/24
154.222.200.0-154.222.205.255
Signature Algorithm: sha256WithRSAEncryption
18:ee:49:0d:9e:30:c2:61:b8:93:09:f4:d7:61:b9:31:44:e2:
0f:87:be:01:aa:90:f6:18:7e:e8:e5:3c:f2:44:fd:83:2f:13:
ea:f9:e7:f4:5a:4d:78:d5:aa:e9:c7:1b:aa:2e:ad:0c:de:36:
bc:b0:38:9b:f5:8e:34:0f:ac:1e:a3:71:16:0d:56:30:dd:3f:
20:94:23:d4:d0:e1:93:ea:1e:4f:35:7e:d4:8a:ab:a4:44:2f:
7f:57:9d:e0:35:1f:f7:9f:37:92:09:e4:9e:ab:f0:62:af:7d:
2b:51:be:62:61:95:f3:32:e3:a2:1c:b1:be:4e:e8:a7:0c:72:
7a:0e:c9:59:fd:4b:30:45:f2:1b:f1:1d:b0:75:ab:0b:b6:cb:
17:78:c4:ba:57:88:8d:58:7e:cb:c1:2b:26:37:06:be:4b:a2:
f8:60:04:8e:0e:65:63:de:c2:11:78:07:20:7e:11:06:2a:21:
b8:8e:a3:b0:d8:36:26:7a:6c:c1:ee:d1:42:1c:5d:e7:f4:09:
59:42:6b:98:03:b0:54:d3:a4:83:fb:80:8c:05:b5:be:f0:9f:
50:0a:6b:af:73:75:63:f2:ee:01:43:80:5d:cd:96:9a:3c:56:
61:7d:92:1c:2c:c0:5c:e5:2b:c5:48:86:6c:6b:67:71:b4:bb:
e5:59:49:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:55:02 2025 by rpki-client