Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/452D2E38F43C11EF8B71C6AB762E951A.roa
File: 452D2E38F43C11EF8B71C6AB762E951A.roa (raw, json)
Hash identifier: D1PwHq4RvZoijQM+YblWfqM9ET0OPMoBTxGZJT/yobo=
Subject key identifier: 52:F2:29:10:11:02:B3:F1:9A:2D:0D:39:49:81:52:51:5A:CC:B5:98
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01325E
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/452D2E38F43C11EF8B71C6AB762E951A.roa
Signing time: Wed 26 Feb 2025 12:21:57 +0000
ROA not before: Wed 26 Feb 2025 12:21:53 +0000
ROA not after: Sat 19 Feb 2028 12:21:53 +0000
asID: 17561
IP address blocks: 156.251.127.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 78430 (0x1325e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Feb 26 12:21:53 2025 GMT
Not After : Feb 19 12:21:53 2028 GMT
Subject: CN=67bf0765-449e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:b7:cd:8a:2e:27:af:4c:8c:e5:da:67:9e:89:
72:f6:c3:39:f3:62:6c:99:84:67:45:e1:e4:a4:0d:
c9:45:fb:46:37:03:54:93:62:9a:a3:e5:5c:b9:27:
52:45:e0:9b:0e:ab:e7:32:1b:89:db:34:cb:cf:f2:
3e:7a:1b:f1:04:e5:62:9f:9a:1e:a6:d1:c9:a4:7a:
9a:ab:f0:6d:63:64:80:a1:01:95:a5:8a:ee:df:f5:
bf:f1:67:6d:b1:61:24:ae:da:d0:e0:76:2e:e7:2a:
e6:1f:7c:5d:fd:f8:7e:54:bd:af:ae:19:68:22:eb:
86:21:af:66:8e:c8:7d:a8:54:5b:53:fe:c6:ec:be:
57:5e:92:9c:93:24:51:f4:ba:4c:f6:38:7a:b4:67:
9d:c3:6a:43:e8:ed:d0:03:87:f7:1d:35:24:da:63:
61:ba:94:15:97:a5:93:f2:fe:c6:06:3d:f4:df:1a:
f3:29:e9:81:19:41:90:4e:3c:12:af:fc:61:17:95:
37:a9:ce:96:60:41:50:6b:1e:a1:7e:c6:fe:88:f1:
f7:eb:07:20:d4:5d:d3:f3:fd:55:3a:7e:eb:09:43:
bf:ac:e9:fa:e1:b9:9a:6f:69:0f:40:87:be:fc:ec:
4c:ff:cb:10:f5:01:2b:fe:d7:b5:59:95:d4:62:e4:
e2:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:F2:29:10:11:02:B3:F1:9A:2D:0D:39:49:81:52:51:5A:CC:B5:98
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/452D2E38F43C11EF8B71C6AB762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.251.127.0/24
Signature Algorithm: sha256WithRSAEncryption
b5:62:a8:b2:d1:a6:5d:3e:dd:05:25:44:25:45:f9:0c:de:73:
25:83:34:af:5a:cc:f6:ae:92:07:65:72:5a:b8:4f:17:5d:02:
02:ea:25:d6:b2:e7:f8:c8:04:26:eb:64:da:f3:fe:b2:0b:16:
bd:d1:47:79:ab:c9:53:9e:f7:7f:19:91:d4:50:bf:64:44:57:
89:85:1e:89:70:82:1d:3a:8a:99:09:e5:af:54:f9:5e:0d:76:
73:ac:94:b0:02:14:77:b2:58:ab:6f:76:80:bf:4f:ca:80:ba:
c3:92:c4:a0:fd:b9:75:f7:1b:64:63:b0:05:95:6e:93:e9:45:
d4:d9:62:31:d6:44:15:88:48:ca:3b:02:dc:10:a8:d0:44:6d:
34:3a:26:40:20:a4:36:04:7d:80:84:09:71:9f:c8:76:19:eb:
9d:92:38:a2:14:e5:a3:29:62:72:38:98:c8:e3:f9:1a:be:d0:
77:48:77:2d:a5:54:9c:85:42:71:d6:23:bd:0e:5e:bc:b5:00:
1d:f2:92:58:e7:2b:29:14:e1:3b:9e:fc:b1:f3:45:47:62:ed:
db:99:5a:e4:2a:95:89:af:97:79:f8:af:97:01:d6:39:d6:72:
f2:72:24:23:65:48:f6:f9:c2:a9:07:ec:d2:7a:a2:34:d9:ef:
a9:dc:24:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 09:27:30 2025 by rpki-client