Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1859AA420A1411F0BB68BD4F762E951A.roa
File: 1859AA420A1411F0BB68BD4F762E951A.roa (raw, json)
Hash identifier: fqlJG7R3zLHk+yQuipFQTJGdviYoiBL1fmOu0+KYDNs=
Subject key identifier: DE:9F:97:CA:86:47:D8:BC:44:5C:90:D4:EE:B3:AB:F0:00:2E:C0:0E
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01482F
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1859AA420A1411F0BB68BD4F762E951A.roa
Signing time: Wed 26 Mar 2025 07:29:47 +0000
ROA not before: Wed 26 Mar 2025 07:29:42 +0000
ROA not after: Thu 16 Apr 2026 07:29:42 +0000
asID: 984
IP address blocks: 156.227.132.0/24 maxlen: 24
156.227.154.0/24 maxlen: 24
156.228.130.0/24 maxlen: 24
156.233.68.0/24 maxlen: 24
156.242.123.0/24 maxlen: 24
156.242.124.0/24 maxlen: 24
156.242.127.0/24 maxlen: 24
156.245.197.0/24 maxlen: 24
156.249.139.0/24 maxlen: 24
156.253.131.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 84015 (0x1482f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Mar 26 07:29:42 2025 GMT
Not After : Apr 16 07:29:42 2026 GMT
Subject: CN=67e3aceb-e561
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:e2:16:71:aa:aa:f4:8b:6b:31:40:04:ee:58:
5f:4d:af:be:32:97:b6:0a:64:f0:d7:aa:7b:7d:c2:
4e:49:19:d9:6d:75:2a:a8:ee:10:8d:cb:95:1f:5f:
30:d8:c1:f7:05:84:37:03:d8:9c:a5:74:21:3c:d4:
72:a4:43:17:9d:ee:e4:5b:cb:0c:56:30:24:ad:55:
3a:9c:fa:81:38:68:69:7f:54:ce:ad:98:90:c6:84:
f0:b0:d0:50:9b:d0:b1:94:a1:a9:6a:83:35:89:ff:
79:b4:fb:1d:a7:f3:10:07:a2:7d:8f:f1:26:2c:c2:
33:f8:11:25:cd:87:f2:98:4c:2b:05:12:fc:b4:c9:
7e:6e:53:de:cc:5c:13:c8:e1:ce:07:9c:bc:6f:01:
cf:26:0b:44:cc:22:4e:1c:ca:d2:0d:cb:b0:1e:f8:
64:55:5d:16:38:f3:ae:ff:03:39:63:a6:54:09:4a:
0d:60:64:f3:59:c1:b0:01:2a:dd:e3:f5:81:75:f3:
41:65:87:1f:a2:78:3c:d4:4f:f5:8a:62:80:6b:8c:
d7:57:e4:ea:20:da:90:5c:12:86:1f:10:04:7e:3a:
6d:71:83:a0:5c:51:a5:d0:2d:a6:f1:31:23:55:b1:
0b:e8:da:76:1b:8c:eb:cf:eb:d6:86:72:24:90:8e:
7c:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:9F:97:CA:86:47:D8:BC:44:5C:90:D4:EE:B3:AB:F0:00:2E:C0:0E
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1859AA420A1411F0BB68BD4F762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.227.132.0/24
156.227.154.0/24
156.228.130.0/24
156.233.68.0/24
156.242.123.0-156.242.124.255
156.242.127.0/24
156.245.197.0/24
156.249.139.0/24
156.253.131.0/24
Signature Algorithm: sha256WithRSAEncryption
95:79:f8:9f:98:51:a8:17:bd:a1:35:a5:a1:31:d0:06:0b:e4:
37:3c:7d:92:8c:af:9d:29:e2:f0:af:e6:6c:8f:dc:57:d0:3f:
9b:ff:7f:38:13:71:4b:89:9d:0a:41:e0:80:fc:ca:e8:77:6f:
81:e8:d2:3b:0c:3b:b7:cb:53:cc:6c:95:fb:7e:54:71:ae:af:
17:bf:86:19:a3:58:3e:64:ff:d5:c7:8e:6c:45:74:3c:ba:a4:
9b:5c:6b:55:91:80:d5:db:db:bc:cf:01:27:90:70:8a:66:08:
8d:6d:a3:aa:16:13:ac:50:3f:6a:53:27:7f:17:02:ca:31:a7:
66:03:a1:d9:48:36:75:70:88:fb:13:15:18:b8:06:dd:0a:cd:
81:07:de:1c:29:5b:40:99:1c:87:1e:2a:08:57:98:61:61:3e:
14:1b:b0:b4:5e:50:89:be:6a:dc:89:ec:60:6c:17:a8:5d:13:
72:db:c2:1c:b8:29:a9:86:e5:6f:61:e9:81:63:82:12:0b:a4:
d3:c0:5d:f4:5e:4e:c0:78:63:04:53:1b:24:5e:94:b8:e2:7c:
81:01:41:8a:d8:d7:45:c3:dd:a5:1d:be:2b:c7:66:50:4f:82:
cd:bd:78:4c:25:aa:a3:71:33:9e:09:ab:20:5c:d0:63:79:19:
6b:35:df:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 09:27:19 2025 by rpki-client