Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/591C2A28F5D811EFB1C52449762E951A.roa
File: 591C2A28F5D811EFB1C52449762E951A.roa (raw, json)
Hash identifier: PL+LGGvC1E89tdRtHc0sOsaB0CDxkxTNVcPXGyV+JUk=
Subject key identifier: 4D:6E:8E:82:07:65:CB:26:27:87:A9:87:0A:40:9B:41:19:E1:91:F8
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 013DE9
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/591C2A28F5D811EFB1C52449762E951A.roa
Signing time: Fri 28 Feb 2025 13:31:43 +0000
ROA not before: Fri 28 Feb 2025 13:31:39 +0000
ROA not after: Sun 30 Mar 2025 13:31:39 +0000
asID: 203020
IP address blocks: 45.198.36.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 81385 (0x13de9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Feb 28 13:31:39 2025 GMT
Not After : Mar 30 13:31:39 2025 GMT
Subject: CN=67c1babf-9642
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:41:56:62:d3:7a:d5:14:41:e2:98:ec:ae:fa:
00:11:1f:4a:79:c2:d8:b5:39:14:75:25:a3:e5:59:
b0:1f:c9:77:b4:d4:11:bf:c8:0b:9f:3a:5d:94:62:
54:d1:63:fe:aa:7e:11:fb:a0:67:19:ca:58:d6:8b:
63:35:7b:de:ac:9f:32:24:68:50:39:70:b7:5c:66:
03:0f:f9:e3:5f:e5:32:74:f1:4b:a5:31:21:ec:df:
b8:e5:5c:60:a9:df:e2:1a:5f:d5:de:60:6c:7b:c4:
f9:c1:95:88:df:6e:37:c7:27:83:85:74:20:d7:93:
21:3f:ca:a0:68:85:c5:4d:c7:43:3f:c3:b6:c1:89:
12:77:ad:c8:04:01:a8:79:5a:b3:2b:be:35:c3:6d:
72:ac:f2:c0:48:1d:43:38:2e:9e:50:4f:88:df:50:
cb:5e:83:ee:04:99:a3:77:d8:84:86:33:0b:97:4c:
29:59:a9:6b:b7:cc:dc:11:88:5b:ee:54:2b:6c:02:
6a:58:39:3e:ff:80:ed:32:c8:fc:e4:4a:46:f4:18:
5c:9c:c5:d3:0f:20:81:de:4f:f8:04:4a:57:18:90:
85:5c:84:41:08:02:57:71:ea:a0:0d:37:56:2a:ba:
ba:6b:1f:ca:4f:70:2f:86:ca:83:4d:f9:c9:e4:72:
e0:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:6E:8E:82:07:65:CB:26:27:87:A9:87:0A:40:9B:41:19:E1:91:F8
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/591C2A28F5D811EFB1C52449762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.198.36.0/23
Signature Algorithm: sha256WithRSAEncryption
89:5c:a9:e0:24:78:34:60:2c:a3:36:cd:3d:82:41:6e:f1:08:
ee:00:52:b0:b1:f2:be:a3:f5:70:6a:fa:b7:dc:76:61:54:ea:
82:ea:f1:b6:76:2d:fd:5f:f3:94:6d:7f:fa:44:f9:bb:4a:43:
ec:e9:35:ad:84:63:09:f5:6a:09:c2:6e:d5:24:39:7d:32:cc:
1b:36:fd:52:b7:aa:71:58:60:2d:40:01:cb:8e:fa:bf:7a:23:
89:c5:36:c3:63:6b:a5:ad:e5:9b:16:d6:87:aa:a8:06:b8:26:
18:24:34:76:d7:d5:cd:43:5b:7e:3d:3d:df:35:df:4e:bf:ca:
2b:33:1a:96:03:e7:87:15:89:bb:c3:b2:b5:a2:f0:c6:7a:c6:
72:63:f1:ad:74:37:dd:ac:0c:ec:87:6e:ee:fe:f8:e9:1b:7e:
05:fb:54:f2:61:56:2c:31:7d:cc:a2:90:74:36:9a:92:b0:d0:
9d:9f:3e:44:70:29:23:b0:a4:e4:47:4e:31:51:7c:08:9e:ae:
e4:f4:f0:79:57:a8:63:53:fc:98:81:b2:ad:0d:81:93:36:57:
aa:92:42:01:b3:9b:32:42:f7:29:a2:2e:25:12:08:44:38:8e:
9a:f4:65:0b:83:da:c1:76:de:03:39:30:81:23:ca:25:0a:e9:
0c:54:b6:fb
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAT3pMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjUwMjI4MTMzMTM5WhcNMjUwMzMwMTMzMTM5WjAYMRYw
FAYDVQQDEw02N2MxYmFiZi05NjQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA2kFWYtN61RRB4pjsrvoAER9KecLYtTkUdSWj5VmwH8l3tNQRv8gLnzpd
lGJU0WP+qn4R+6BnGcpY1otjNXverJ8yJGhQOXC3XGYDD/njX+UydPFLpTEh7N+4
5Vxgqd/iGl/V3mBse8T5wZWI3243xyeDhXQg15MhP8qgaIXFTcdDP8O2wYkSd63I
BAGoeVqzK741w21yrPLASB1DOC6eUE+I31DLXoPuBJmjd9iEhjMLl0wpWalrt8zc
EYhb7lQrbAJqWDk+/4DtMsj85EpG9BhcnMXTDyCB3k/4BEpXGJCFXIRBCAJXceqg
DTdWKrq6ax/KT3AvhsqDTfnJ5HLgUQIDAQABo4ICojCCAp4wHQYDVR0OBBYEFE1u
joIHZcsmJ4ephwpAm0EZ4ZH4MB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC81OTFDMkEyOEY1RDgxMUVGQjFDNTI0NDk3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBLcYkMA0GCSqGSIb3DQEBCwUA
A4IBAQCJXKngJHg0YCyjNs09gkFu8QjuAFKwsfK+o/Vwavq33HZhVOqC6vG2di39
X/OUbX/6RPm7SkPs6TWthGMJ9WoJwm7VJDl9MswbNv1St6pxWGAtQAHLjvq/eiOJ
xTbDY2ulreWbFtaHqqgGuCYYJDR219XNQ1t+PT3fNd9Ov8orMxqWA+eHFYm7w7K1
ovDGesZyY/GtdDfdrAzsh27u/vjpG34F+1TyYVYsMX3MopB0NpqSsNCdnz5EcCkj
sKTkR04xUXwInq7k9PB5V6hjU/yYgbKtDYGTNleqkkIBs5syQvcpoi4lEghEOI6a
9GULg9rBdt4DOTCBI8olCukMVLb7
-----END CERTIFICATE-----
Generated at Sat Apr 12 05:11:14 2025 by rpki-client