Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2B491C22FE4911EF8C1BFB6B762E951A.roa
File: 2B491C22FE4911EF8C1BFB6B762E951A.roa (raw, json)
Hash identifier: La4JsDFoJ9p/B2VWVDFev0GmSAhM3nX8wmSLc4/QQX8=
Subject key identifier: 5F:D2:64:26:54:C8:D2:B0:1D:31:CF:FB:5A:EF:CC:1E:6B:38:36:74
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0144CB
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2B491C22FE4911EF8C1BFB6B762E951A.roa
Signing time: Tue 11 Mar 2025 07:19:28 +0000
ROA not before: Tue 11 Mar 2025 07:19:25 +0000
ROA not after: Wed 09 Apr 2025 07:19:25 +0000
asID: 139646
IP address blocks: 156.240.0.0/19 maxlen: 24
156.240.32.0/20 maxlen: 24
156.240.48.0/21 maxlen: 24
156.242.10.0/23 maxlen: 24
156.242.12.0/22 maxlen: 24
156.246.0.0/20 maxlen: 24
156.246.16.0/23 maxlen: 24
156.249.28.0/22 maxlen: 24
156.255.0.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 83147 (0x144cb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Mar 11 07:19:25 2025 GMT
Not After : Apr 9 07:19:25 2025 GMT
Subject: CN=67cfe400-a5a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:f3:e6:ee:f2:48:4e:53:5b:70:af:98:b8:48:
84:6a:35:ae:f5:a7:b9:7d:11:5b:3a:c3:cd:34:89:
94:9b:ab:1e:2e:6e:51:7f:81:2d:d7:c5:f0:0e:5b:
0b:8d:1b:56:06:a4:84:79:f0:00:56:49:33:d9:51:
6f:b3:da:e4:49:8e:50:bb:34:f9:ca:fe:ac:a2:12:
e0:15:56:48:b5:45:e6:7c:7b:cb:5b:83:49:cc:32:
a3:97:7c:d4:01:5f:7a:3e:9b:4f:84:70:a3:e8:32:
06:74:5d:72:d8:54:e5:9b:98:de:cf:b4:01:0a:2d:
46:a4:67:eb:23:3d:d4:97:b9:99:37:dd:9b:af:16:
7f:e0:29:c8:41:8a:7a:ac:bb:29:d2:9c:01:ef:ec:
45:b2:6c:d9:aa:8d:56:71:4a:26:a7:27:ba:75:57:
21:a1:e4:ee:f0:78:34:c2:8d:f4:ca:f0:b0:30:06:
d5:09:a5:ee:6c:52:80:8f:89:fc:16:43:25:f7:7a:
fd:4f:11:5b:1c:5c:c9:0f:36:6e:db:1a:9c:9d:f5:
ef:cc:f3:f7:98:8d:ff:49:24:5d:11:28:3c:99:9f:
1f:47:43:1a:dc:d3:b1:79:8d:25:39:b7:d9:f3:c0:
d9:81:18:d5:bf:4f:2f:93:45:4a:32:cc:44:b1:0e:
d1:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:D2:64:26:54:C8:D2:B0:1D:31:CF:FB:5A:EF:CC:1E:6B:38:36:74
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2B491C22FE4911EF8C1BFB6B762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.240.0.0-156.240.55.255
156.242.10.0-156.242.15.255
156.246.0.0-156.246.17.255
156.249.28.0/22
156.255.0.0/24
Signature Algorithm: sha256WithRSAEncryption
62:e1:83:45:70:32:b2:82:32:6b:97:df:2b:2c:89:1d:6f:52:
ad:bf:43:87:e3:4b:69:d1:ae:c6:bd:18:05:c1:8a:59:ea:47:
a5:fc:12:74:a3:50:44:2e:ce:4e:2d:78:33:66:21:69:e9:6f:
53:b2:66:e3:db:aa:71:a4:90:12:c6:6f:31:b8:0a:0f:0e:76:
a0:c7:9d:87:97:30:23:c6:7f:fe:02:8a:e0:89:13:cc:6a:a9:
68:ed:d5:e1:ee:be:84:2c:22:7c:34:ac:aa:0d:7f:52:92:f4:
c0:d2:d9:ab:6a:c3:8f:14:8e:19:8b:f8:cd:68:4c:db:53:6a:
b6:e0:75:ec:a6:f8:bb:d8:01:a2:df:92:2d:6a:1f:84:c9:22:
f6:cb:12:ec:8d:cc:59:71:e6:75:ce:95:35:45:6a:1c:3b:3b:
c0:cb:66:5d:26:f6:b3:87:58:8c:af:cc:83:89:92:86:7e:22:
df:c7:ac:d1:12:dd:05:99:4d:51:f0:52:b8:3d:92:4a:8d:ad:
0d:64:ad:17:7d:a2:c8:6b:cf:8f:b3:c0:5e:c4:e6:e9:f8:8b:
94:23:e7:ad:cc:01:a3:39:3d:01:84:43:ee:03:71:7d:16:c2:
f9:c4:28:26:42:9e:5b:55:c8:4a:1b:fb:16:94:08:7a:db:7a:
b7:ce:57:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 09:06:26 2025 by rpki-client