Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/FC4A8096FFE211EF9DB3E3B8762E951A.roa
File: FC4A8096FFE211EF9DB3E3B8762E951A.roa (raw, json)
Hash identifier: OtdZATzimkv1Zwi+g+MZPu9eYVj0UWPalwo2DXuMEsU=
Subject key identifier: 45:85:DD:13:4C:A2:45:6D:D4:5A:21:6A:00:2D:9F:FF:32:07:AC:B1
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 014596
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/FC4A8096FFE211EF9DB3E3B8762E951A.roa
Signing time: Thu 13 Mar 2025 08:13:03 +0000
ROA not before: Thu 13 Mar 2025 08:12:59 +0000
ROA not after: Sun 20 Apr 2025 08:12:59 +0000
asID: 214413
IP address blocks: 156.226.131.0/24 maxlen: 24
156.226.132.0/24 maxlen: 24
156.226.218.0/23 maxlen: 24
156.226.243.0/24 maxlen: 24
156.226.244.0/24 maxlen: 24
156.243.113.0/24 maxlen: 24
156.243.114.0/24 maxlen: 24
156.252.30.0/23 maxlen: 24
156.255.59.0/24 maxlen: 24
156.255.60.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 83350 (0x14596)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Mar 13 08:12:59 2025 GMT
Not After : Apr 20 08:12:59 2025 GMT
Subject: CN=67d2938f-cf31
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:c4:23:34:d2:a1:97:53:36:a6:e0:dd:ae:60:
42:06:f3:23:7b:36:1b:90:05:3b:fe:11:84:a7:e8:
61:e5:fa:0f:d2:7d:b8:f8:2e:6a:5f:41:5a:03:bc:
07:fe:c5:28:4d:d2:fa:eb:d7:16:1f:81:8b:0d:6b:
16:8f:75:9d:1e:f2:b4:36:42:19:3a:ac:fc:2b:64:
ef:84:11:93:a3:d6:a0:62:29:f9:fc:f9:1e:53:a3:
ec:3d:cc:6a:88:76:13:da:f2:5f:f5:6f:cc:23:9f:
29:2a:20:16:3d:f0:b7:6c:e2:9d:30:6d:9e:69:06:
68:49:92:15:4d:86:5a:2b:5f:1e:82:98:4e:57:27:
ba:5c:d4:8d:5c:09:18:5a:86:f1:30:ac:3c:1b:de:
45:46:9d:1c:a2:c6:93:f1:82:72:d5:3d:16:f3:e1:
b7:55:ef:e4:c0:12:40:3c:2d:5b:d5:28:68:58:08:
ba:ad:5e:03:5c:ec:c4:0a:58:47:0e:fe:a9:e6:aa:
10:13:a8:8d:4c:4a:c6:40:5b:ca:99:fe:4a:2d:85:
f5:e4:92:8c:5f:07:81:30:57:20:a0:9d:f9:b0:04:
2a:e1:cf:1e:27:c7:c8:9c:f4:54:69:7e:51:bd:3e:
c8:2e:2c:ae:12:df:ca:a9:53:f2:c9:24:b2:4d:28:
9b:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:85:DD:13:4C:A2:45:6D:D4:5A:21:6A:00:2D:9F:FF:32:07:AC:B1
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/FC4A8096FFE211EF9DB3E3B8762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.226.131.0-156.226.132.255
156.226.218.0/23
156.226.243.0-156.226.244.255
156.243.113.0-156.243.114.255
156.252.30.0/23
156.255.59.0-156.255.60.255
Signature Algorithm: sha256WithRSAEncryption
ac:fa:ab:ca:25:70:7d:2f:9a:ce:39:61:b9:f9:aa:db:ff:8a:
57:30:88:52:25:90:b0:dd:bc:a0:38:fb:a3:1b:f8:6d:e1:2e:
ed:04:8d:4a:64:98:42:40:04:e6:75:fd:e2:e1:99:fa:1a:ca:
00:17:67:c3:3a:76:b7:c0:d1:d6:1b:06:36:b0:c2:6a:dd:04:
05:57:56:c0:0b:27:b8:21:8e:02:0b:73:b5:a6:56:e8:f3:9c:
e6:11:de:5e:2f:2c:8a:4c:93:eb:f3:c9:7c:13:94:e7:b2:98:
82:f9:a9:3f:49:9d:ff:a4:e3:02:4a:8e:04:ab:c1:f8:67:13:
b0:1a:dd:b0:04:de:3a:5c:1f:a7:05:73:0c:97:51:27:2f:0e:
df:88:6b:c5:11:4a:c5:3c:55:dd:94:57:1c:b3:08:c0:17:25:
f5:ff:55:50:3c:88:e2:bb:66:ed:c3:da:30:b5:c0:ab:33:54:
13:7d:53:47:8f:92:44:07:94:43:25:1a:48:ba:32:4b:d1:78:
5c:55:a4:47:15:f0:49:67:8c:0f:12:81:e7:10:9b:91:5e:df:
76:99:61:35:94:46:7c:1d:7a:74:44:0f:7f:ad:b3:d5:ee:2e:
94:85:07:6e:50:7e:a8:4b:80:3f:7e:5c:8a:1f:ee:03:1e:6e:
42:d6:47:02
-----BEGIN CERTIFICATE-----
MIIFvzCCBKegAwIBAgIDAUWWMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjUwMzEzMDgxMjU5WhcNMjUwNDIwMDgxMjU5WjAYMRYw
FAYDVQQDEw02N2QyOTM4Zi1jZjMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAtcQjNNKhl1M2puDdrmBCBvMjezYbkAU7/hGEp+hh5foP0n24+C5qX0Fa
A7wH/sUoTdL669cWH4GLDWsWj3WdHvK0NkIZOqz8K2TvhBGTo9agYin5/PkeU6Ps
PcxqiHYT2vJf9W/MI58pKiAWPfC3bOKdMG2eaQZoSZIVTYZaK18egphOVye6XNSN
XAkYWobxMKw8G95FRp0cosaT8YJy1T0W8+G3Ve/kwBJAPC1b1ShoWAi6rV4DXOzE
ClhHDv6p5qoQE6iNTErGQFvKmf5KLYX15JKMXweBMFcgoJ35sAQq4c8eJ8fInPRU
aX5RvT7ILiyuEt/KqVPyySSyTSibzwIDAQABo4IC4DCCAtwwHQYDVR0OBBYEFEWF
3RNMokVt1FohagAtn/8yB6yxMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC9GQzRBODA5NkZGRTIxMUVGOURCM0UzQjg3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MF0GCCsGAQUFBwEHAQH/BE4wTDBKBAIAATBEMAwDBACc4oMDBACc4oQDBAGc4tow
DAMEAJzi8wMEAJzi9DAMAwQAnPNxAwQAnPNyAwQBnPweMAwDBACc/zsDBACc/zww
DQYJKoZIhvcNAQELBQADggEBAKz6q8olcH0vms45Ybn5qtv/ilcwiFIlkLDdvKA4
+6Mb+G3hLu0EjUpkmEJABOZ1/eLhmfoaygAXZ8M6drfA0dYbBjawwmrdBAVXVsAL
J7ghjgILc7WmVujznOYR3l4vLIpMk+vzyXwTlOeymIL5qT9Jnf+k4wJKjgSrwfhn
E7Aa3bAE3jpcH6cFcwyXUScvDt+Ia8URSsU8Vd2UVxyzCMAXJfX/VVA8iOK7Zu3D
2jC1wKszVBN9U0ePkkQHlEMlGki6MkvReFxVpEcV8ElnjA8SgecQm5Fe33aZYTWU
RnwdenRED3+ts9XuLpSFB25QfqhLgD9+XIof7gMebkLWRwI=
-----END CERTIFICATE-----
Generated at Sat Apr 5 09:01:15 2025 by rpki-client