Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/065FD086F45811EFAE7EC96D762E951A.roa
File: 065FD086F45811EFAE7EC96D762E951A.roa (raw, json)
Hash identifier: lhbLGS5csGwa0bDha65cJuDd/T1j4AQHH4nASr7P/XM=
Subject key identifier: 07:E2:71:BA:30:2C:3E:76:0B:D4:A3:2F:87:71:37:B4:A5:AA:B7:8F
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 013461
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/065FD086F45811EFAE7EC96D762E951A.roa
Signing time: Wed 26 Feb 2025 15:40:38 +0000
ROA not before: Wed 26 Feb 2025 15:40:32 +0000
ROA not after: Thu 19 Feb 2026 15:40:32 +0000
asID: 984
IP address blocks: 156.252.219.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 78945 (0x13461)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Feb 26 15:40:32 2025 GMT
Not After : Feb 19 15:40:32 2026 GMT
Subject: CN=67bf35f5-a11c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:6c:01:e5:df:62:19:86:d1:e3:16:59:0c:a8:
58:c4:4d:bd:b7:99:65:ec:0e:60:ba:1b:dc:dc:be:
7c:62:98:45:a9:94:b7:d8:07:60:96:ac:56:d3:df:
fd:76:58:f3:99:72:63:83:0f:16:ce:4a:bf:50:65:
1f:e1:69:55:7a:00:a6:5a:45:f6:73:92:91:8a:b3:
d5:77:c1:62:16:83:ec:50:ed:68:a2:df:db:3b:01:
1e:a3:74:5c:78:9a:d8:47:b8:20:da:89:17:1b:ee:
75:72:0b:80:84:8f:fc:8b:c5:3e:bf:81:8a:6b:1b:
51:ed:df:53:f9:cc:6b:37:e0:18:e5:db:f9:84:62:
15:0f:68:56:1f:6e:88:47:6e:a4:f5:00:0e:5e:58:
a5:1b:f6:6a:63:ab:07:4e:2b:d2:2b:57:93:3d:dc:
a7:bf:ba:6c:20:42:86:07:3d:f7:a4:57:f8:68:7f:
5d:8e:ec:cf:b3:b5:a0:16:04:03:f2:05:f6:45:96:
e3:6d:5e:27:5c:5e:a4:9c:8d:a0:10:55:13:fe:ea:
0f:24:70:2e:2b:01:de:f1:72:90:e0:d0:81:22:6a:
3f:56:85:d4:30:4e:1b:1a:46:df:47:0a:5b:59:e9:
5e:f9:5f:99:52:6c:9f:79:35:ee:70:4b:49:d2:ea:
40:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:E2:71:BA:30:2C:3E:76:0B:D4:A3:2F:87:71:37:B4:A5:AA:B7:8F
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/065FD086F45811EFAE7EC96D762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.252.219.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:2c:92:bb:b4:5e:0d:e3:c0:8d:0c:5f:ef:7e:8f:b0:6f:1c:
53:5f:71:47:57:d4:12:48:11:4c:b6:08:e1:f0:bb:1c:02:ac:
ce:64:89:2f:1c:24:0b:f5:0c:16:39:4b:36:0c:c9:14:72:9e:
d2:03:e0:2a:d8:56:10:40:bb:e2:d4:6a:fd:25:7d:bf:40:50:
1b:c6:27:a9:c2:7f:98:0a:cb:bb:3b:4f:50:ae:7e:c5:59:e6:
cc:40:22:c3:03:87:53:f7:dc:7f:e6:d3:6c:d7:6d:73:65:b6:
4e:65:a4:00:99:a5:8c:fe:9d:0a:70:1e:79:61:d9:5b:00:23:
7c:8e:5a:a4:98:2e:21:85:c3:32:88:8e:9f:70:58:54:2b:a8:
25:d6:64:70:8e:e9:94:1b:d2:6b:ff:d6:fe:37:37:01:9a:df:
41:5d:bb:cc:2b:0e:e5:ed:fc:24:dc:07:71:e3:f9:e6:59:f6:
5b:74:e0:0b:ac:25:8d:fa:96:58:84:d1:94:59:51:f0:5b:78:
ef:e2:8c:a3:99:28:44:16:97:40:43:a0:08:c7:5c:8c:91:d9:
41:be:19:e4:2e:36:42:ab:cb:f7:49:24:04:e7:68:12:ec:ee:
43:07:a0:34:29:71:a2:79:99:41:73:71:fb:60:9c:41:d6:01:
50:54:00:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 09:09:11 2025 by rpki-client