Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F3D6E150F4FE11EF937C6F74762E951A.roa
File: F3D6E150F4FE11EF937C6F74762E951A.roa (raw, json)
Hash identifier: FFnLqlXVauoAhmnaxfFl4+Nt26O9Hth5+YeHFLvYynQ=
Subject key identifier: 1D:5D:58:FD:B1:EA:54:B7:AF:9A:A2:73:2C:F3:FD:B5:F8:29:96:CC
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 013A1E
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F3D6E150F4FE11EF937C6F74762E951A.roa
Signing time: Thu 27 Feb 2025 11:35:32 +0000
ROA not before: Thu 27 Feb 2025 11:35:28 +0000
ROA not after: Sat 19 Feb 2028 11:35:28 +0000
asID: 17561
IP address blocks: 45.192.64.0/24 maxlen: 24
45.192.65.0/24 maxlen: 24
45.192.66.0/24 maxlen: 24
45.192.67.0/24 maxlen: 24
45.192.68.0/24 maxlen: 24
45.192.69.0/24 maxlen: 24
45.192.70.0/24 maxlen: 24
45.192.71.0/24 maxlen: 24
45.192.72.0/24 maxlen: 24
45.192.73.0/24 maxlen: 24
45.192.74.0/24 maxlen: 24
45.192.75.0/24 maxlen: 24
45.192.76.0/24 maxlen: 24
45.192.77.0/24 maxlen: 24
45.192.78.0/24 maxlen: 24
45.192.79.0/24 maxlen: 24
45.192.80.0/24 maxlen: 24
45.192.81.0/24 maxlen: 24
45.192.82.0/24 maxlen: 24
45.195.252.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 80414 (0x13a1e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Feb 27 11:35:28 2025 GMT
Not After : Feb 19 11:35:28 2028 GMT
Subject: CN=67c04e04-cf79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:ba:f5:4b:15:58:ec:29:02:ea:ce:bb:39:6e:
79:6a:36:89:72:67:e6:21:b9:cc:c2:63:10:58:e3:
69:53:3e:15:99:6a:46:60:bf:10:67:a3:95:ab:dc:
a8:74:71:58:10:52:21:df:d8:e7:74:f3:04:64:ca:
b3:4e:fa:7f:3e:e2:42:80:8b:6b:30:f3:b7:ba:78:
ac:4b:0d:60:1f:6a:10:4e:7d:7a:67:4d:a7:a1:fb:
c2:36:0d:af:c3:69:2a:e9:14:36:55:14:a9:d0:32:
18:50:10:e8:c1:fc:e5:03:cc:49:dc:94:a6:75:10:
c6:64:ca:84:41:f4:7e:ef:d6:1d:e3:35:4c:34:52:
53:f1:ba:73:bd:9b:79:85:9b:f0:f4:bf:f3:4a:e6:
04:6b:1c:b3:36:7d:62:ae:10:65:1e:96:fd:28:1a:
ab:f5:85:d7:c3:56:e2:bc:a2:13:57:5f:65:52:34:
77:ff:51:e6:21:19:70:77:46:ae:7e:71:9b:fb:e0:
bc:f7:b6:f5:1e:8f:bb:20:b9:97:47:32:03:15:02:
28:d5:68:0b:16:7e:50:84:0b:f1:af:f8:5c:e0:9d:
54:ea:d5:fa:28:89:1b:78:96:e6:80:21:0e:04:41:
ed:64:3f:85:b5:c3:e0:0b:d8:35:ba:93:66:3c:bf:
ce:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:5D:58:FD:B1:EA:54:B7:AF:9A:A2:73:2C:F3:FD:B5:F8:29:96:CC
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F3D6E150F4FE11EF937C6F74762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.192.64.0-45.192.82.255
45.195.252.0/24
Signature Algorithm: sha256WithRSAEncryption
b8:e8:f0:0a:86:62:fa:ed:31:0f:dc:99:24:aa:93:f6:77:e2:
23:9f:7e:70:2a:c1:84:8c:3b:51:c4:f6:b4:77:ea:00:42:5b:
65:ee:f8:67:1a:b5:6f:f7:4b:e4:95:1c:f1:c7:a2:84:e9:cd:
9a:90:e7:38:c2:4f:93:5a:8d:00:2f:14:87:85:12:7b:6c:4e:
a5:7c:11:83:6a:7e:50:dc:6c:9a:76:16:96:e9:8a:d3:bd:2c:
c6:88:33:8e:4e:b6:87:ff:c5:c4:5b:51:da:b2:12:d2:eb:d4:
e8:de:ee:19:57:41:7c:2c:f0:76:10:c7:a0:60:8a:d3:30:59:
9f:ba:37:ca:df:7e:46:55:6c:dc:18:bc:b3:c1:d9:f8:ba:4a:
93:49:57:ee:39:38:82:4b:39:cc:7a:28:0d:1f:30:de:b7:3d:
c8:21:89:48:dd:fe:8e:8f:a5:0f:bc:9e:fc:f1:fb:ed:9f:64:
1d:ce:18:ca:55:ba:7c:ae:72:10:41:b3:4c:41:f6:c0:52:ae:
04:5d:b4:6e:5f:df:be:59:cd:5a:d5:68:c3:41:b6:64:3c:fd:
77:87:29:f0:fe:20:92:52:3b:69:00:59:8e:7f:9c:c3:b6:a2:
ff:9e:22:d3:14:ee:e1:d7:e9:85:80:f4:3e:d7:f7:1f:4e:8e:
3c:68:03:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 09:28:27 2025 by rpki-client