Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A390EDECF66311EF8CBC4788762E951A.roa
File: A390EDECF66311EF8CBC4788762E951A.roa (raw, json)
Hash identifier: H3f1XmdfeUvpuk8ieHA3TCNAFjcP1MYAk3fXdNeJCYw=
Subject key identifier: 69:3D:55:1B:0A:A5:61:C4:E0:50:C1:F9:CE:9C:A7:78:CD:A6:4D:81
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 013F90
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A390EDECF66311EF8CBC4788762E951A.roa
Signing time: Sat 01 Mar 2025 06:08:48 +0000
ROA not before: Sat 01 Mar 2025 06:08:44 +0000
ROA not after: Sun 20 Feb 2028 06:08:44 +0000
asID: 17561
IP address blocks: 45.196.12.0/24 maxlen: 24
45.197.3.0/24 maxlen: 24
45.198.32.0/24 maxlen: 24
45.198.247.0/24 maxlen: 24
45.198.254.0/24 maxlen: 24
45.199.128.0/24 maxlen: 24
45.202.36.0/24 maxlen: 24
45.202.37.0/24 maxlen: 24
45.202.38.0/24 maxlen: 24
45.202.39.0/24 maxlen: 24
45.202.40.0/24 maxlen: 24
45.202.41.0/24 maxlen: 24
45.202.42.0/24 maxlen: 24
45.202.43.0/24 maxlen: 24
45.202.44.0/24 maxlen: 24
45.202.45.0/24 maxlen: 24
45.202.46.0/24 maxlen: 24
45.202.108.0/24 maxlen: 24
45.202.117.0/24 maxlen: 24
45.202.124.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 81808 (0x13f90)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Mar 1 06:08:44 2025 GMT
Not After : Feb 20 06:08:44 2028 GMT
Subject: CN=67c2a470-7baf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:61:50:e7:90:3d:c0:f7:16:ba:03:50:17:c9:
44:00:76:b5:59:df:fc:91:a5:59:7f:ed:06:b8:18:
db:84:60:14:bc:b3:16:59:50:58:eb:a8:ac:25:f6:
29:26:db:06:e7:51:95:ff:0e:69:bf:89:dc:d9:c4:
8c:7a:79:1b:64:90:c2:6c:dc:36:f3:3a:22:59:8e:
ec:90:b2:a5:b2:e7:9d:4e:bb:ef:75:88:ca:a5:8e:
fe:37:f6:2c:71:27:bc:54:b9:6f:eb:b3:c7:e1:89:
3f:ed:8b:22:d8:30:c0:4e:1f:98:22:68:43:bf:04:
ee:de:bb:f7:ea:e8:b0:9a:3e:e8:8a:fb:98:6a:cc:
b8:5b:a5:ac:cc:a2:d9:48:5c:91:96:d5:d4:27:33:
0a:10:9a:22:a5:8a:2e:2d:39:d8:79:f8:4b:82:73:
57:cd:8e:0b:12:da:6a:90:79:8c:6e:6b:70:d9:a8:
0c:16:24:58:39:5e:c7:45:68:c7:4c:f0:c2:3e:c2:
5d:1d:62:68:2e:6a:05:55:1f:c0:5a:59:5d:63:84:
70:51:53:08:9a:75:c0:18:e6:38:90:87:e4:02:0d:
98:18:5c:74:0c:25:9c:9b:f2:2e:22:55:7f:eb:72:
3c:a0:d4:51:f4:79:78:e0:c1:d9:74:1d:62:c8:6c:
f5:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:3D:55:1B:0A:A5:61:C4:E0:50:C1:F9:CE:9C:A7:78:CD:A6:4D:81
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A390EDECF66311EF8CBC4788762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.196.12.0/24
45.197.3.0/24
45.198.32.0/24
45.198.247.0/24
45.198.254.0/24
45.199.128.0/24
45.202.36.0-45.202.46.255
45.202.108.0/24
45.202.117.0/24
45.202.124.0/24
Signature Algorithm: sha256WithRSAEncryption
68:59:38:db:c6:aa:c8:33:17:d7:29:a4:e6:75:74:9f:90:45:
2b:a5:a0:56:7d:5c:d5:4d:32:66:67:aa:d7:fa:d0:d3:84:11:
63:ef:4f:47:ac:37:b4:f0:a4:12:bb:74:ff:d5:01:59:cf:7d:
18:6c:8a:1a:7a:ef:a8:b9:cc:ab:35:3e:65:e2:11:99:f5:ad:
ee:b2:fa:92:70:9f:b6:96:ab:4b:f3:4a:56:ad:19:75:4c:9b:
96:58:7a:d7:6b:0b:b3:64:8a:de:c2:e9:aa:e3:2d:ef:44:82:
74:21:54:fb:dd:18:41:12:17:5a:d4:64:73:ab:78:59:79:39:
d2:dd:e7:67:84:f0:3d:6e:52:26:d4:a5:95:ca:b8:ba:1f:96:
db:3c:0f:76:41:8d:64:82:b9:ce:9b:bd:17:d4:1f:09:32:74:
b4:6e:00:84:27:91:b2:5f:ab:07:d4:23:49:6c:9a:c5:27:ce:
48:56:de:27:df:67:da:13:54:35:fa:1a:62:61:89:44:0e:17:
84:5a:8f:53:e7:d6:9c:fa:ac:0e:b7:cb:cd:50:3c:dc:7b:6a:
3c:93:11:f7:ab:1e:c2:ff:05:b2:cc:fb:24:e1:b6:ae:07:48:
f6:67:66:82:44:c0:eb:64:cd:98:ae:e0:1f:57:59:72:3d:99:
f0:0c:e6:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 09:18:56 2025 by rpki-client