Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/33BBC030F49E11EF9EC7FD4F762E951A.roa
File: 33BBC030F49E11EF9EC7FD4F762E951A.roa (raw, json)
Hash identifier: i6+Um382ffCp36Y0xp9H1MzvqUsXivKCoQlVaipcS6A=
Subject key identifier: D3:69:BA:11:15:D7:CE:13:A7:26:B5:BD:91:BB:8C:85:63:06:AA:EF
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01384D
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/33BBC030F49E11EF9EC7FD4F762E951A.roa
Signing time: Thu 27 Feb 2025 00:02:58 +0000
ROA not before: Thu 27 Feb 2025 00:00:54 +0000
ROA not after: Thu 19 Feb 2026 00:00:54 +0000
asID: 984
IP address blocks: 156.247.53.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 79949 (0x1384d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Feb 27 00:00:54 2025 GMT
Not After : Feb 19 00:00:54 2026 GMT
Subject: CN=67bfabb2-2a32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:ff:c7:91:a9:9b:5a:76:ea:ea:ab:5b:02:a2:
31:a4:45:9b:bf:b1:85:e6:b7:1b:71:87:c8:37:e5:
1a:66:24:ab:42:0a:59:c4:6f:bc:ec:80:0a:fb:31:
f3:da:d5:4a:9b:98:bd:d4:68:66:c3:64:55:e2:28:
c9:d2:b6:76:0b:6e:9e:ea:d3:e8:39:1e:bb:8d:81:
72:e3:e3:f7:af:53:55:22:d7:e9:60:15:12:fd:00:
01:b4:0a:ef:16:7c:19:25:6c:f1:1f:ac:5c:1a:ad:
be:b2:93:6d:13:c1:e4:9b:35:55:09:17:40:5c:59:
3e:2e:b0:84:64:97:d5:1d:ae:90:11:3c:85:04:2e:
5d:e7:ae:34:fd:47:be:6e:fc:f5:90:58:06:86:b1:
39:d4:22:b7:b0:01:58:1e:8a:78:a6:58:c9:45:6c:
0f:b8:43:4e:b6:e5:ec:c1:c9:ff:b7:b6:d0:c9:1e:
54:00:36:ba:c5:ba:ef:a3:76:6b:0a:f8:cd:1d:64:
1c:3a:d7:37:6d:ef:b4:0f:66:27:f9:94:c8:16:a4:
52:76:90:19:43:f8:a7:db:67:25:8c:6a:bf:a6:0e:
3b:a8:9d:21:fd:22:ad:1d:be:8a:c6:f3:22:a7:6a:
54:05:69:b9:d8:2d:f0:fe:0d:72:bd:23:58:d4:53:
f3:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:69:BA:11:15:D7:CE:13:A7:26:B5:BD:91:BB:8C:85:63:06:AA:EF
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/33BBC030F49E11EF9EC7FD4F762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.247.53.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:b3:ee:8b:64:7c:61:56:ae:8d:25:7f:9f:01:cd:84:67:fe:
d1:d6:45:6a:62:e0:f0:8e:92:ce:70:c3:48:71:f4:ed:9c:7b:
d5:fd:4a:bf:94:9e:f7:05:b4:6d:d4:d4:2d:9d:b3:be:eb:bb:
54:13:30:8b:bc:fd:e3:41:4b:10:3f:8f:f1:99:b4:69:9e:0a:
b3:3f:74:c3:c2:15:81:b2:a9:cd:34:0b:d9:8d:4a:5a:c3:4f:
84:94:82:93:9b:df:32:21:95:80:ac:b7:b6:bb:65:9b:e0:6b:
c4:ad:73:10:33:79:0a:90:6b:8a:ce:72:55:08:05:9f:29:57:
6b:8d:d1:0a:1e:ab:e5:69:6c:81:ac:47:c7:7a:a8:21:2a:f3:
af:68:d9:6d:8e:0f:af:f0:40:6c:7a:1a:03:14:eb:54:b7:20:
da:a0:66:99:59:9d:52:7f:af:9a:c9:e3:41:cf:2c:72:f3:7d:
db:b2:e5:e3:c4:69:3a:73:07:0a:e9:a9:61:72:a9:a5:c4:56:
aa:87:5e:f7:95:a7:4d:51:93:3e:3d:37:6b:49:97:95:d9:5e:
b6:fd:43:23:13:10:9e:9c:6d:87:d6:c0:01:3e:d5:45:71:b1:
7d:f7:d9:14:38:78:a8:09:45:df:4c:54:f6:8c:9f:72:c5:dd:
78:64:78:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 09:06:18 2025 by rpki-client