Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/76B49988F82D11EF89A7B2A6762E951A.roa
File: 76B49988F82D11EF89A7B2A6762E951A.roa (raw, json)
Hash identifier: O8Wr6Hg3IXYj2fq9AI/0GDpTQBsnkmcAQqx0Vd8KOIM=
Subject key identifier: 91:41:24:83:A8:65:B9:B9:E1:46:B9:BB:6D:B6:7C:48:30:21:B9:D6
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0170A9
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/76B49988F82D11EF89A7B2A6762E951A.roa
Signing time: Mon 03 Mar 2025 12:46:02 +0000
ROA not before: Mon 03 Mar 2025 12:45:58 +0000
ROA not after: Wed 30 Apr 2025 12:45:58 +0000
asID: 63139
IP address blocks: 154.94.69.0/24 maxlen: 24
154.94.70.0/24 maxlen: 24
154.94.71.0/24 maxlen: 24
154.94.72.0/24 maxlen: 24
154.94.73.0/24 maxlen: 24
154.94.74.0/24 maxlen: 24
154.94.86.0/24 maxlen: 24
154.94.87.0/24 maxlen: 24
154.94.88.0/24 maxlen: 24
154.94.89.0/24 maxlen: 24
154.94.90.0/24 maxlen: 24
154.94.91.0/24 maxlen: 24
154.94.92.0/24 maxlen: 24
154.94.93.0/24 maxlen: 24
154.94.94.0/24 maxlen: 24
154.94.95.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 94377 (0x170a9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Mar 3 12:45:58 2025 GMT
Not After : Apr 30 12:45:58 2025 GMT
Subject: CN=67c5a48a-ae22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:11:12:71:62:bf:87:d6:05:ef:fe:a6:9d:35:
a7:91:b6:53:f8:c0:7d:6b:56:f9:d4:5e:27:49:2c:
2e:e6:9f:c8:a7:dd:6a:4e:ff:60:4c:bd:e0:76:4a:
65:91:c3:88:1b:28:94:1b:61:b7:3f:26:c2:b0:14:
c2:b1:9f:ff:fc:60:dc:ca:6f:41:48:f4:c2:17:b4:
e5:dd:16:a4:cf:5e:72:83:94:1d:91:3d:f8:fa:0d:
82:6e:e5:7a:98:15:26:01:b2:cc:91:d8:c0:0e:ea:
0c:4a:53:db:03:01:19:23:d6:86:64:36:cb:62:17:
ae:f5:30:9c:8a:fd:69:f9:67:14:c1:74:48:65:77:
49:d2:7c:6b:e6:ef:b9:92:27:fe:62:ec:d8:c2:36:
cc:66:f4:b4:12:75:71:3a:80:d3:e1:43:69:94:1a:
ad:eb:66:03:a5:2f:a2:74:04:38:f8:95:56:81:04:
80:c3:a8:d9:6e:a1:64:5c:7e:27:56:99:34:86:e1:
dd:f1:6c:16:b6:8e:85:8c:8f:bc:0a:ac:f5:28:02:
38:4b:85:0a:d1:52:ea:a2:aa:15:1f:a0:84:6b:f9:
b9:b3:e4:54:b0:e3:2a:05:ab:b4:b4:79:75:21:3b:
14:18:4b:b1:c2:a0:5b:7f:14:68:87:14:ce:cc:9f:
73:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:41:24:83:A8:65:B9:B9:E1:46:B9:BB:6D:B6:7C:48:30:21:B9:D6
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/76B49988F82D11EF89A7B2A6762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.69.0-154.94.74.255
154.94.86.0-154.94.95.255
Signature Algorithm: sha256WithRSAEncryption
86:f3:fd:50:bb:6b:a4:31:50:11:27:d0:cd:c2:0f:04:47:05:
59:90:f4:28:b7:db:49:be:0b:03:58:b1:ff:8e:88:3b:75:dc:
ea:10:7a:ee:46:3c:a1:09:89:49:24:13:7b:5d:82:16:e8:64:
d1:05:73:64:c3:c1:86:df:09:c0:67:64:ef:1c:67:13:6e:26:
44:c5:c0:af:06:2b:ab:bf:da:06:28:bd:5a:26:7d:79:8c:1d:
fd:e2:e2:ee:8a:84:fa:21:44:e1:c8:5e:a9:5b:ff:c1:f5:de:
16:83:9a:49:2b:38:a3:d5:8b:5f:00:a7:37:f6:c7:82:a9:bc:
44:0c:8c:0b:42:4d:57:45:75:a9:3d:4f:5d:f8:b9:89:7f:13:
06:88:25:13:2a:8f:3a:9d:41:18:43:cd:0e:d4:01:0c:39:65:
ca:54:3e:9b:7f:5d:f5:6a:18:da:9c:03:82:5e:73:6b:b9:c7:
80:fd:82:26:4b:84:e3:52:3a:af:9a:38:88:45:c8:c8:20:56:
6c:97:c2:7e:c6:8e:ca:1c:d8:46:e3:29:52:75:2a:3c:ea:c6:
bf:1d:21:f6:ad:b3:8a:82:f3:14:2b:9e:ac:09:51:85:6b:8f:
2d:c1:e5:90:ff:b2:fe:89:35:b2:7c:e3:5e:2a:14:42:eb:7e:
4c:3f:91:4c
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Fri Apr 4 11:08:06 2025 by rpki-client