Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/48BCB436F44D11EF959797A3762E951A.roa
File: 48BCB436F44D11EF959797A3762E951A.roa (raw, json)
Hash identifier: jEKTNXn896CnlUvs9Gr4aK7PIcRSZyYTa8B80ojtKu4=
Subject key identifier: A0:12:A8:C7:D3:06:B0:3E:0A:82:5F:E3:A5:7D:62:98:38:A0:01:BC
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0133B7
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/48BCB436F44D11EF959797A3762E951A.roa
Signing time: Wed 26 Feb 2025 14:23:44 +0000
ROA not before: Wed 26 Feb 2025 14:23:40 +0000
ROA not after: Thu 19 Feb 2026 14:23:40 +0000
asID: 984
IP address blocks: 156.231.185.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 78775 (0x133b7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Feb 26 14:23:40 2025 GMT
Not After : Feb 19 14:23:40 2026 GMT
Subject: CN=67bf23f0-c812
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:da:48:c8:3e:fb:f5:c3:63:40:c8:f4:fc:19:
69:2a:a8:13:d5:1c:5d:b3:63:64:e4:29:95:d9:08:
74:47:53:11:aa:f5:35:2b:db:18:92:6b:5a:55:ed:
e5:dd:59:1e:c5:64:95:82:74:4b:6e:76:af:3d:92:
14:a8:93:f2:1d:c3:b2:ec:34:73:58:cd:c3:35:a8:
27:be:1a:82:12:52:20:4f:6c:85:46:3c:d6:d7:19:
11:84:ea:dd:ce:36:1d:b9:bb:21:6f:4c:2c:8e:49:
7b:61:63:f1:52:ef:f0:0d:35:f1:6c:97:7a:1a:78:
64:d9:93:0c:bb:f3:73:70:b6:4a:ba:c5:5d:40:66:
a4:7e:8c:39:7e:26:d6:a7:ab:cb:01:66:a6:02:61:
93:7e:bd:c6:6e:7c:99:82:12:1c:53:f6:95:56:ab:
db:72:fc:2e:0a:67:f6:4e:33:7b:29:46:b2:00:21:
30:13:06:6b:15:88:99:9d:ed:1f:ec:b7:b0:6d:42:
99:5a:e0:ec:a4:18:bb:54:72:54:00:dc:43:82:e7:
c4:32:6a:87:ad:23:6b:f5:a5:43:e0:70:5c:a6:22:
f1:e3:43:58:fd:d1:7b:11:29:77:22:25:a8:3c:10:
d2:90:dd:f5:fe:60:77:41:eb:a0:be:d5:ea:c7:07:
29:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:12:A8:C7:D3:06:B0:3E:0A:82:5F:E3:A5:7D:62:98:38:A0:01:BC
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/48BCB436F44D11EF959797A3762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.231.185.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:1f:78:09:aa:1a:46:20:dd:7b:97:f4:cf:cf:eb:9d:a8:50:
0b:5b:0f:53:97:63:b3:a0:c5:87:a9:56:7c:d7:56:c2:56:64:
0f:15:05:a6:db:dc:02:82:d7:b0:ac:be:dc:64:0c:63:28:66:
95:4e:5b:60:3b:de:fd:8c:ef:1a:8e:b2:45:6d:16:55:f9:33:
fb:86:33:16:64:30:4d:3c:27:54:71:c1:3a:bd:ca:7b:e3:28:
ea:9f:07:a4:dd:fa:60:70:4d:83:fd:c7:86:d8:81:f9:22:43:
0c:75:90:1a:76:58:ee:5a:e8:7d:80:f2:8c:c3:ef:79:d2:f1:
e0:1e:96:90:33:8d:77:10:b6:3d:fb:bf:10:00:6a:fc:5f:51:
79:ab:d6:a7:0a:b2:23:b6:52:69:cc:20:c1:a2:1a:72:b0:b5:
12:58:aa:0a:b8:b8:e7:47:7b:e7:ab:75:84:2a:1b:54:b1:cf:
4e:7d:ba:96:ee:0e:2b:62:55:b4:12:e9:42:33:17:75:b8:d1:
37:b9:00:5f:08:af:3e:14:bd:8a:47:1c:1e:9a:1c:68:de:91:
3c:f0:59:5c:4d:25:c5:b2:47:f4:9c:ec:16:17:c8:3e:81:98:
59:d4:39:e8:83:2c:11:bf:21:96:4d:70:f4:4c:4c:a1:8e:6e:
bd:b0:d3:de
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDATO3MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjUwMjI2MTQyMzQwWhcNMjYwMjE5MTQyMzQwWjAYMRYw
FAYDVQQDEw02N2JmMjNmMC1jODEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA1tpIyD779cNjQMj0/BlpKqgT1Rxds2Nk5CmV2Qh0R1MRqvU1K9sYkmta
Ve3l3VkexWSVgnRLbnavPZIUqJPyHcOy7DRzWM3DNagnvhqCElIgT2yFRjzW1xkR
hOrdzjYdubshb0wsjkl7YWPxUu/wDTXxbJd6Gnhk2ZMMu/NzcLZKusVdQGakfow5
fibWp6vLAWamAmGTfr3GbnyZghIcU/aVVqvbcvwuCmf2TjN7KUayACEwEwZrFYiZ
ne0f7LewbUKZWuDspBi7VHJUANxDgufEMmqHrSNr9aVD4HBcpiLx40NY/dF7ESl3
IiWoPBDSkN31/mB3QeugvtXqxwcp6QIDAQABo4ICojCCAp4wHQYDVR0OBBYEFKAS
qMfTBrA+CoJf46V9Ypg4oAG8MB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC80OEJDQjQzNkY0NEQxMUVGOTU5Nzk3QTM3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnOe5MA0GCSqGSIb3DQEBCwUA
A4IBAQCKH3gJqhpGIN17l/TPz+udqFALWw9Tl2OzoMWHqVZ811bCVmQPFQWm29wC
gtewrL7cZAxjKGaVTltgO979jO8ajrJFbRZV+TP7hjMWZDBNPCdUccE6vcp74yjq
nwek3fpgcE2D/ceG2IH5IkMMdZAadljuWuh9gPKMw+950vHgHpaQM413ELY9+78Q
AGr8X1F5q9anCrIjtlJpzCDBohpysLUSWKoKuLjnR3vnq3WEKhtUsc9OfbqW7g4r
YlW0EulCMxd1uNE3uQBfCK8+FL2KRxwemhxo3pE88FlcTSXFskf0nOwWF8g+gZhZ
1DnogywRvyGWTXD0TEyhjm69sNPe
-----END CERTIFICATE-----
Generated at Sat Apr 5 09:22:27 2025 by rpki-client