Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B446601EF5A911EFB89D3A8A762E951A.roa
File: B446601EF5A911EFB89D3A8A762E951A.roa (raw, json)
Hash identifier: t0dSR9JrGsWbSHqOv/7gxrvZR7/78U/fMvp98yc2LX8=
Subject key identifier: D9:ED:0B:41:60:7C:8C:DC:CD:27:E3:3C:A5:FB:04:0E:5E:DF:BF:68
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 013C70
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B446601EF5A911EFB89D3A8A762E951A.roa
Signing time: Fri 28 Feb 2025 07:57:49 +0000
ROA not before: Fri 28 Feb 2025 07:57:46 +0000
ROA not after: Thu 19 Feb 2026 07:57:46 +0000
asID: 984
IP address blocks: 156.239.203.0/24 maxlen: 24
156.239.204.0/24 maxlen: 24
156.239.205.0/24 maxlen: 24
156.239.206.0/24 maxlen: 24
156.239.207.0/24 maxlen: 24
156.239.208.0/24 maxlen: 24
156.239.209.0/24 maxlen: 24
156.239.210.0/24 maxlen: 24
156.239.211.0/24 maxlen: 24
156.239.212.0/24 maxlen: 24
156.239.213.0/24 maxlen: 24
156.239.214.0/24 maxlen: 24
156.239.215.0/24 maxlen: 24
156.239.216.0/24 maxlen: 24
156.239.217.0/24 maxlen: 24
156.239.218.0/24 maxlen: 24
156.239.219.0/24 maxlen: 24
156.239.220.0/24 maxlen: 24
156.239.221.0/24 maxlen: 24
156.239.222.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 81008 (0x13c70)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Feb 28 07:57:46 2025 GMT
Not After : Feb 19 07:57:46 2026 GMT
Subject: CN=67c16c7d-b08f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:49:8d:78:21:43:eb:66:54:1c:d1:8c:61:a9:
12:f1:0d:3b:25:de:bc:e1:7c:fc:d9:aa:f7:b6:1c:
e9:e2:c0:32:c4:36:f8:8e:ed:a5:19:7c:d9:15:da:
f4:df:b2:1d:db:25:10:13:57:73:6d:1c:54:7f:1b:
45:31:c4:64:95:74:ad:5b:de:eb:ac:e5:cf:22:54:
68:10:50:1c:f1:49:f3:1b:be:5f:f6:29:56:1b:e1:
8a:e8:de:7a:e0:fb:9f:23:9b:91:b4:2c:9c:18:73:
f0:7e:f2:e7:be:40:b5:ff:75:d8:be:01:35:b0:78:
c2:59:ed:02:fd:e3:17:65:13:b6:f6:8d:39:f4:4f:
ea:71:b7:52:2a:5f:6c:84:3f:38:ff:28:db:50:7a:
3a:5d:84:15:e2:97:55:13:7a:59:d2:95:1f:23:d7:
a0:65:bc:58:35:c6:5d:7d:d3:d6:86:aa:6b:e5:de:
07:ed:53:db:d6:a8:7b:a6:74:f0:cb:98:f0:7f:33:
85:8f:f8:b0:43:bf:ac:1a:07:a8:60:3a:73:5c:47:
4d:22:de:a1:d9:7e:eb:a9:68:1e:de:69:c8:b8:e5:
79:61:b0:2e:bd:e0:b0:78:ef:67:cf:09:26:98:35:
23:69:a6:62:3c:07:f9:f9:43:51:03:a1:e0:85:60:
c3:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:ED:0B:41:60:7C:8C:DC:CD:27:E3:3C:A5:FB:04:0E:5E:DF:BF:68
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B446601EF5A911EFB89D3A8A762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.239.203.0-156.239.222.255
Signature Algorithm: sha256WithRSAEncryption
0c:96:d8:81:cc:ab:9f:70:ae:80:f8:88:fd:82:33:20:4a:6c:
10:d2:0a:c4:94:51:f3:f4:5f:d0:17:da:ef:a9:1e:df:7e:3a:
45:ff:1a:6c:be:cb:63:a9:53:3e:ca:db:48:00:3f:0f:48:af:
e7:4c:48:60:a0:ff:a5:ba:18:f0:bb:32:60:b2:b4:23:55:57:
6a:f5:0f:eb:49:d4:75:84:f6:b8:93:0d:3f:d5:24:db:53:31:
db:2b:b0:d3:07:e1:98:3f:01:92:68:c5:1a:e0:ac:78:eb:a8:
2e:e7:a4:c3:60:89:3a:56:a3:51:8a:cc:12:f2:2e:a1:73:ce:
0f:0b:79:d0:3b:d0:b0:2e:0d:94:c1:d9:48:9c:b1:da:5e:2a:
a9:af:d3:3d:4b:62:db:b2:fc:5d:93:4a:23:cb:c4:d9:a1:8a:
05:82:ec:3d:d1:6b:1e:68:56:92:6a:ae:cd:6a:6e:9f:b3:48:
cc:73:a2:8c:be:2a:e6:a8:ec:40:65:62:b7:a4:83:62:e4:cb:
5f:eb:ca:53:5a:6a:e3:33:3f:42:91:3c:ab:16:09:58:d1:79:
da:17:75:68:6d:46:3c:d3:0c:35:e3:9c:fd:2d:f7:92:fb:89:
a3:9a:9b:1d:35:4c:48:c5:22:c9:36:50:a1:1a:d3:a4:9b:37:
24:cb:a9:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 09:06:22 2025 by rpki-client