Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B2066FE403FD11F08AE4C287762E951A.roa
File: B2066FE403FD11F08AE4C287762E951A.roa (raw, json)
Hash identifier: i41mVZPuwzcgPnRpRCP/B3Fab4zI4eyIG5OogZqLdvE=
Subject key identifier: ED:5B:CF:5F:8F:B8:64:60:24:9A:2E:9E:58:C0:47:10:A4:42:4A:E9
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 017498
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B2066FE403FD11F08AE4C287762E951A.roa
Signing time: Tue 18 Mar 2025 13:34:20 +0000
ROA not before: Tue 18 Mar 2025 13:34:16 +0000
ROA not after: Wed 30 Apr 2025 13:34:16 +0000
asID: 62240
IP address blocks: 154.194.112.0/24 maxlen: 24
154.194.113.0/24 maxlen: 24
154.194.114.0/24 maxlen: 24
154.194.115.0/24 maxlen: 24
154.194.116.0/24 maxlen: 24
154.196.82.0/24 maxlen: 24
154.196.83.0/24 maxlen: 24
154.196.84.0/24 maxlen: 24
154.196.85.0/24 maxlen: 24
154.196.86.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 95384 (0x17498)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Mar 18 13:34:16 2025 GMT
Not After : Apr 30 13:34:16 2025 GMT
Subject: CN=67d9765c-0e5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:35:24:21:1d:95:b7:95:2c:dc:b9:e7:87:5f:
97:39:65:6f:57:81:a2:82:3d:e1:fa:e1:0f:bd:bf:
90:17:9f:c2:c8:c6:a9:0e:ff:cb:0e:99:ed:b8:40:
ac:4f:92:96:ca:d1:04:9f:8e:f0:d2:f8:e5:f8:c1:
95:dd:c8:bf:03:2a:91:41:b6:74:47:22:b0:a8:dd:
e8:c5:8a:5d:4e:ba:c7:a5:c8:35:e9:24:e8:42:96:
ba:7d:c1:d2:af:23:9f:2f:4e:c0:59:06:57:97:03:
45:71:8c:c8:76:c3:7e:7f:73:3f:ac:dd:52:3f:de:
ab:7f:a9:3d:ce:f9:38:72:56:57:4a:06:86:90:36:
37:a3:90:be:97:68:0f:df:bd:61:86:58:2a:d5:51:
a3:cb:19:9c:cf:59:ed:29:fa:22:23:5b:0d:aa:10:
e7:b2:28:2b:80:47:9d:22:94:00:c9:ed:3e:1a:3c:
fe:a9:a6:3b:81:57:8f:ca:57:f8:a5:7d:5d:bd:4a:
74:17:53:f6:0e:58:bd:84:7e:3f:f1:0d:87:3b:3e:
3d:5d:0b:8e:f8:57:ae:17:4a:ff:45:54:18:2e:d4:
41:71:8c:33:8e:09:38:2c:49:3a:7e:db:b6:1b:95:
a2:4b:76:98:a5:22:cb:c1:1b:39:bf:e0:2f:78:30:
d5:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:5B:CF:5F:8F:B8:64:60:24:9A:2E:9E:58:C0:47:10:A4:42:4A:E9
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B2066FE403FD11F08AE4C287762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.112.0-154.194.116.255
154.196.82.0-154.196.86.255
Signature Algorithm: sha256WithRSAEncryption
bc:38:70:19:89:18:5c:64:68:07:93:6f:be:94:d5:eb:17:a7:
09:dc:6f:54:22:01:3a:72:c5:a8:3f:bc:7b:a1:d5:a8:91:cd:
04:8c:c7:d8:f5:40:2f:b0:32:e4:30:5b:c9:90:2e:13:d5:11:
81:47:70:6b:10:93:f0:fa:76:e7:c4:02:8e:e1:92:3a:6e:1d:
bf:62:9c:c7:9d:7a:30:c4:df:1a:72:a2:b3:a5:e0:a3:3f:59:
84:e6:32:ed:4b:42:c1:bc:3e:20:ad:e6:f7:d9:35:f2:db:b9:
0a:21:de:ac:e9:0f:05:55:fe:aa:57:18:6a:04:1e:a4:90:c3:
59:8f:31:c2:43:0e:a6:b6:57:63:b6:a5:e0:a4:0e:dd:df:6b:
13:55:ba:e0:4e:82:59:d0:40:82:c1:9c:8c:8b:59:e3:d8:a7:
60:68:62:54:a5:59:49:11:3a:fa:3f:50:5e:d5:40:f1:f0:42:
d1:dc:06:24:a7:34:3f:d7:d0:84:1a:3a:3b:a2:03:cd:7a:42:
00:8d:24:69:e0:80:09:8f:ae:94:4f:24:20:aa:76:2d:c0:01:
8c:44:7f:67:f1:5c:19:55:9b:7e:25:50:b9:82:21:70:f7:92:
89:6b:3a:ce:c1:15:e2:6d:17:8a:fd:4f:07:16:49:2b:fb:c4:
12:44:36:04
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Apr 3 22:29:42 2025 by rpki-client