Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0B55B9BAF48B11EFBFA01F4E762E951A.roa
File: 0B55B9BAF48B11EFBFA01F4E762E951A.roa (raw, json)
Hash identifier: g2xX2ZV4wtftZKq47dYE+DU1RCBXrwsyOHQTiXDEgSA=
Subject key identifier: 14:8A:35:6C:46:C7:72:D7:97:20:ED:D0:D4:A3:76:50:D4:F7:4F:8C
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0137F0
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0B55B9BAF48B11EFBFA01F4E762E951A.roa
Signing time: Wed 26 Feb 2025 21:45:50 +0000
ROA not before: Wed 26 Feb 2025 21:45:46 +0000
ROA not after: Thu 19 Feb 2026 21:45:46 +0000
asID: 984
IP address blocks: 156.232.33.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 79856 (0x137f0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Feb 26 21:45:46 2025 GMT
Not After : Feb 19 21:45:46 2026 GMT
Subject: CN=67bf8b8e-3123
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:04:1d:aa:f9:8e:97:cd:29:2b:51:35:cd:ce:
1e:75:cf:a0:2d:6a:95:f8:ed:30:66:60:24:8f:12:
2a:0e:13:7d:74:83:a9:1f:f9:5d:00:3b:59:da:35:
5d:a3:e4:11:b3:46:34:cd:7b:62:47:ae:92:77:b0:
4d:9b:f6:a4:c8:50:c8:b5:b1:65:ef:c4:02:a5:65:
b1:b1:3b:51:db:d0:8b:67:5e:9a:7e:42:c0:90:be:
ca:3a:56:f7:41:7e:d3:f6:5f:a4:30:e4:68:32:ad:
82:14:8f:e0:3c:34:7f:3d:ca:99:4f:82:53:f4:b2:
7e:3d:84:93:6f:39:60:6a:5b:50:49:10:8f:b3:1c:
92:ed:e7:6a:e4:3a:78:34:93:62:ba:1e:5f:b5:21:
f0:d8:3a:53:23:4e:1b:19:3b:2b:15:f2:7c:fb:e7:
43:77:93:4f:e8:45:4f:c6:0b:b0:b7:76:fb:86:c2:
9c:f3:56:50:16:0b:9a:15:1d:1d:d7:2b:8a:ef:bc:
03:53:78:24:da:53:b4:c2:94:2e:6a:9e:c1:0b:c8:
17:ef:0c:96:1a:5a:f4:f0:70:c4:11:7a:9e:1b:b8:
41:44:ee:51:08:58:84:62:8e:71:f9:60:39:f9:93:
39:6c:90:09:56:2b:3e:f3:0b:08:58:8e:f6:af:4b:
c7:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:8A:35:6C:46:C7:72:D7:97:20:ED:D0:D4:A3:76:50:D4:F7:4F:8C
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0B55B9BAF48B11EFBFA01F4E762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.232.33.0/24
Signature Algorithm: sha256WithRSAEncryption
27:7e:a5:0c:dd:df:a7:5e:6d:5f:43:43:c9:1f:7c:8a:a4:1c:
e5:29:5e:e3:d3:f7:e8:73:39:01:84:6e:ec:a9:a7:c8:34:b6:
f8:94:db:7c:f4:10:c7:dd:2b:3d:4c:c5:07:7d:4d:ba:b6:37:
20:9e:7d:b4:4b:71:17:8f:25:de:ff:41:ed:ed:c9:07:be:f0:
26:14:ca:f0:db:bd:4a:3e:23:ce:f8:de:63:a0:e6:5a:0e:03:
dd:81:de:d7:11:cf:43:fe:96:0a:68:be:aa:40:97:0e:8d:84:
a5:c4:a0:f6:2f:94:1b:4a:73:8f:f7:70:5b:a1:13:94:3f:33:
f6:16:4e:b3:8a:fa:76:4e:a7:61:e6:9f:36:07:08:7a:1b:45:
ca:e4:f4:a4:0a:a4:c0:35:d3:6e:05:22:f2:c8:9e:7c:e2:26:
8e:80:a4:28:a1:21:9c:e5:7c:d5:97:27:97:11:59:0d:8c:58:
4c:cb:5b:69:31:59:15:13:f1:c0:9c:06:ec:1f:08:1d:f3:40:
bf:a8:d7:f0:8e:34:e2:bc:eb:4c:a5:1e:a9:3f:66:a6:d4:48:
b6:63:cf:78:a8:4d:eb:77:3b:5b:a1:f0:ae:1b:45:da:40:f8:
4f:c5:3e:f8:cb:28:3a:2d:7b:80:61:00:6a:f0:07:34:ca:aa:
7c:8a:ea:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 09:27:29 2025 by rpki-client