Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/311FA6D8057F11F0857C8851762E951A.roa
File: 311FA6D8057F11F0857C8851762E951A.roa (raw, json)
Hash identifier: h6OulnYvN2eIWo1KH4dDFwtWZfPEbuDNrtZidcartCg=
Subject key identifier: 4C:B7:D4:0D:68:53:1B:C3:7A:04:17:85:09:8B:AA:81:5E:2D:62:FE
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 014732
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/311FA6D8057F11F0857C8851762E951A.roa
Signing time: Thu 20 Mar 2025 11:33:49 +0000
ROA not before: Thu 20 Mar 2025 11:33:45 +0000
ROA not after: Sat 26 Apr 2025 11:33:45 +0000
asID: 20473
IP address blocks: 156.255.32.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 83762 (0x14732)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Mar 20 11:33:45 2025 GMT
Not After : Apr 26 11:33:45 2025 GMT
Subject: CN=67dbfd1d-7f21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:63:35:8e:e5:e8:57:8f:52:1c:2c:f5:49:cc:
33:16:44:fd:57:41:27:89:ca:87:b6:f9:21:8e:94:
d2:e9:6a:95:28:10:8e:40:1e:da:b7:5b:8f:15:23:
b1:6d:dd:5c:6a:e9:32:4f:8e:88:5b:f7:ad:d6:e9:
48:32:79:14:fc:65:10:f0:b5:32:26:99:10:19:af:
24:88:04:df:57:5c:00:86:c1:da:ba:47:6b:23:2f:
81:88:0a:e0:69:d1:d9:c5:8e:13:36:71:f2:0a:6b:
86:54:e4:9d:f8:d5:96:46:e8:2a:83:06:8b:71:e1:
ab:72:36:15:82:f4:0a:7b:af:99:6f:04:e4:8f:0d:
be:31:e2:23:36:3f:4e:05:bb:89:79:d3:a6:6e:05:
34:43:b3:62:c7:a1:72:39:d1:53:62:1e:e8:53:46:
25:49:08:b7:e7:81:d4:71:66:ec:26:05:98:1f:cf:
37:dd:0d:73:ed:d0:cf:44:71:32:8c:2c:f5:c8:c4:
c6:44:94:50:cc:35:73:85:fb:f7:0b:cb:f9:d6:65:
2f:f9:30:6f:1b:d1:2a:72:f4:80:c1:07:c3:a3:35:
e9:03:0e:23:c9:33:85:76:d6:9e:77:8d:52:9f:18:
72:d3:82:4c:5e:81:64:8b:e5:f3:34:59:4e:f8:3e:
0a:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:B7:D4:0D:68:53:1B:C3:7A:04:17:85:09:8B:AA:81:5E:2D:62:FE
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/311FA6D8057F11F0857C8851762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.255.32.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:a4:64:e1:32:98:91:3d:af:2c:b7:bc:1a:e7:f2:93:ee:b4:
48:ce:5c:4a:ed:13:02:88:1d:22:10:ab:d2:e6:27:0d:90:3d:
d0:78:ab:b1:72:39:de:51:f9:c3:25:49:87:7f:31:fd:02:6c:
75:b8:37:e1:de:33:20:14:8e:d2:61:9d:7a:94:44:50:67:56:
8d:ed:b4:e1:d4:cb:ba:dd:07:24:10:4c:c9:9c:43:7c:0b:28:
f6:42:9b:1f:53:55:c1:ee:e9:dc:46:b4:8f:e4:9c:1a:1c:52:
ac:e9:25:41:0e:5b:2d:40:60:72:a8:52:86:54:40:f6:08:82:
f2:92:3a:f5:cb:ca:78:99:00:8e:93:2d:c2:6c:53:d8:f3:8a:
6c:28:e9:7d:05:2c:2e:dc:33:f0:f8:68:64:44:e8:df:f0:6a:
81:ce:7f:df:57:9d:46:b8:93:ff:75:f3:5f:4a:ca:59:f2:b0:
9f:3d:04:7d:25:51:2b:d5:0b:10:ba:3a:03:ab:33:7a:bb:9d:
b6:d4:1e:f5:b0:e1:a4:7d:75:7d:3a:cb:a8:da:f3:5c:c8:c6:
b4:de:43:f7:95:03:73:1d:59:bb:45:7e:3b:3e:fd:2d:43:5b:
10:fc:14:0e:ad:72:40:14:10:ef:12:ba:d1:23:b5:45:76:4f:
5d:2c:42:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 09:22:25 2025 by rpki-client