Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3EA2F00AF2C711EF9348DCB1762E951A.roa
File: 3EA2F00AF2C711EF9348DCB1762E951A.roa (raw, json)
Hash identifier: E38jpoHfwIuj4A839mH1jm2NcbjCe6s+Jpt8oijTTJE=
Subject key identifier: 05:A9:AC:66:C9:8C:0B:40:92:26:08:5F:12:73:88:54:AE:74:72:F1
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 012C13
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3EA2F00AF2C711EF9348DCB1762E951A.roa
Signing time: Mon 24 Feb 2025 15:51:43 +0000
ROA not before: Mon 24 Feb 2025 15:51:40 +0000
ROA not after: Sat 29 Mar 2025 15:51:40 +0000
asID: 203020
IP address blocks: 156.233.4.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 76819 (0x12c13)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Feb 24 15:51:40 2025 GMT
Not After : Mar 29 15:51:40 2025 GMT
Subject: CN=67bc958f-3f24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:df:5b:fa:d0:fa:c9:f3:90:90:e4:ef:22:1d:
04:1f:c7:fe:bd:dc:cc:16:c8:3f:78:fb:6d:a3:04:
5f:33:9a:11:f9:f1:c4:04:da:9e:10:50:0c:4e:b9:
36:cb:b4:6e:2b:70:ee:01:0d:d7:3b:09:9c:72:2a:
88:2d:36:50:e7:0f:02:bf:af:c7:1b:2c:cc:26:af:
5d:53:2f:77:fc:53:70:74:73:1c:8a:ae:2d:68:ce:
cc:c1:6d:82:59:a4:9b:dd:46:0a:4b:be:ef:4d:87:
df:b6:0e:0e:cc:37:c0:12:fa:97:e7:af:1d:83:46:
2f:a2:1c:9f:59:c9:35:4c:3e:4d:6e:f9:29:32:b4:
71:40:cd:7a:ff:6e:7d:76:de:5c:f5:57:25:5a:e6:
c7:de:ad:77:1a:1f:7a:92:88:ce:2e:00:b5:ff:ba:
48:bf:6d:91:ba:4f:96:a2:ff:8a:08:5f:0b:83:5e:
3c:bb:f8:b2:53:6f:29:50:33:0c:f3:86:b4:bf:0f:
11:37:83:8d:84:35:49:83:2d:68:53:f6:e2:d0:ca:
75:db:df:27:80:85:36:65:4f:76:87:e7:07:2b:32:
c4:97:3d:5d:1d:7c:44:8f:92:87:44:e2:f0:82:aa:
e9:39:56:b1:11:d8:0f:05:0f:e3:b2:93:f5:38:c0:
3c:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:A9:AC:66:C9:8C:0B:40:92:26:08:5F:12:73:88:54:AE:74:72:F1
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3EA2F00AF2C711EF9348DCB1762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.233.4.0/22
Signature Algorithm: sha256WithRSAEncryption
af:b9:c0:2c:1d:cf:f9:85:30:85:78:9c:ae:5a:db:ea:61:e9:
3d:08:59:f7:6d:4f:b8:d6:92:64:11:5f:9b:b2:47:07:89:bb:
e2:36:06:6b:1c:19:9e:61:8b:9f:2e:ef:2b:e8:05:0d:9b:45:
4e:90:d4:75:12:6e:14:84:27:2d:c3:7b:e8:8f:ad:03:d5:05:
86:f0:a0:f7:e8:02:0c:8b:cb:a9:5b:0d:5e:c5:00:4a:25:2c:
30:d5:53:0c:3f:67:66:be:5e:b5:39:fa:77:57:65:00:41:5f:
7c:c4:c4:d2:58:04:db:8c:30:b7:59:64:3b:45:b8:96:30:b9:
d6:c2:ec:5e:8a:2b:5e:de:db:47:52:b4:f2:6a:47:d1:71:7d:
d3:e6:c0:56:b9:c1:13:86:10:60:37:75:1f:55:4f:de:36:fc:
27:84:1a:f5:e6:9a:4b:79:6c:2a:2f:16:41:33:e3:fc:fa:34:
e5:e6:38:e7:bb:bc:a4:8a:55:df:d6:f6:f4:81:bc:13:d7:b3:
46:b1:2c:14:ee:29:3e:8b:67:db:04:34:a3:5b:22:87:bb:92:
68:18:69:c5:51:8d:a8:cd:91:57:c9:af:18:40:92:a1:54:f2:
22:d4:d7:9b:67:fe:ba:64:2d:64:fd:70:66:db:6e:d5:03:17:
94:22:bc:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 05:08:34 2025 by rpki-client