Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5953CD58F42E11EFA939E64A762E951A.roa
File: 5953CD58F42E11EFA939E64A762E951A.roa (raw, json)
Hash identifier: p2ewVTe0jGRUzBEtjih8Coc7i0wgJCwDFU7mz0FMboo=
Subject key identifier: CA:E4:A5:11:3D:18:8B:3F:CC:9D:1C:C0:64:54:EA:99:40:18:14:4D
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01314C
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5953CD58F42E11EFA939E64A762E951A.roa
Signing time: Wed 26 Feb 2025 10:42:18 +0000
ROA not before: Wed 26 Feb 2025 10:42:14 +0000
ROA not after: Thu 19 Feb 2026 10:42:14 +0000
asID: 984
IP address blocks: 156.230.166.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 78156 (0x1314c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Feb 26 10:42:14 2025 GMT
Not After : Feb 19 10:42:14 2026 GMT
Subject: CN=67bef00a-e23f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:1e:c8:bb:1c:8b:e4:fd:69:c6:1d:ae:82:ff:
9a:21:d4:66:b6:a1:d4:b0:ec:fe:bb:cc:da:82:6c:
de:a7:34:7d:cc:89:f3:a1:17:4b:f7:aa:a6:a7:e8:
b7:27:47:26:1f:fa:16:46:7b:95:d2:9d:5a:5a:64:
ef:07:4a:58:ed:68:f5:2b:7a:9e:8a:0a:65:49:b9:
01:c4:a9:d2:8a:b6:4e:8a:5f:e3:f7:21:d0:55:e6:
29:c4:63:ff:c0:8e:c3:01:16:8b:94:0f:b5:1c:c7:
d3:0e:d5:c9:a6:06:d6:0c:92:07:c0:9e:df:75:14:
0a:de:88:16:db:24:b5:1d:87:5b:1c:d6:73:0e:cd:
a5:09:60:fa:9c:2c:a5:40:32:67:5b:95:5e:6a:90:
4d:c5:09:5a:4a:04:7c:74:49:64:07:74:a7:94:d0:
4e:2f:aa:d7:6c:c1:3e:d6:10:47:49:74:45:5c:dd:
91:9a:e9:ef:cb:bc:17:71:0d:19:61:9f:24:6d:66:
08:7e:fe:b3:e1:ad:e0:82:ac:1e:70:d6:71:64:c9:
6b:f0:89:16:2e:a7:86:7c:b4:68:95:63:e4:5e:27:
97:84:7f:66:21:69:8b:50:4d:b4:58:83:cd:f2:86:
47:1a:82:1a:1a:04:98:32:a6:4d:73:b6:3d:45:62:
61:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:E4:A5:11:3D:18:8B:3F:CC:9D:1C:C0:64:54:EA:99:40:18:14:4D
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5953CD58F42E11EFA939E64A762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.230.166.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:d8:1b:e1:bc:13:43:bf:58:b2:b4:4a:31:bf:3e:e4:a8:00:
18:66:4b:6a:4c:df:5f:19:f0:ec:97:9d:33:be:99:fc:29:d9:
26:b8:c8:c8:5c:8d:1c:f8:88:8f:b7:c3:5c:63:9b:b9:e5:aa:
40:97:79:c7:ca:c1:d3:9b:60:8e:83:43:e2:4f:cc:08:72:22:
56:6b:c5:47:92:98:92:d0:1c:4c:9f:a1:b0:9a:aa:84:be:50:
37:62:39:bd:d5:67:33:96:6a:10:10:a8:c1:61:51:1a:ad:9d:
3f:de:c1:71:2e:42:40:b1:12:9b:3f:32:03:ed:cc:69:34:33:
22:2d:3f:2c:10:f2:c6:49:f4:e6:1a:2b:50:b1:9a:02:98:2f:
20:6c:8f:60:66:65:2a:5d:d4:bb:fa:da:ca:65:68:6c:61:98:
1e:f9:24:e7:e9:4d:b4:d7:f0:15:f8:84:0e:39:3b:de:46:13:
d0:81:41:9e:39:cf:e3:67:ad:45:88:36:07:c5:f3:3d:ac:e0:
d8:79:fa:a0:02:3c:e7:dc:37:2a:9a:2d:23:fb:88:8c:36:36:
94:56:fc:0a:0c:f8:53:0b:93:1c:f3:fd:bb:1b:a7:9d:10:ea:
dd:87:e9:8b:f8:29:e9:ff:69:58:29:bf:2f:e5:87:15:b8:ef:
9a:30:32:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 09:27:25 2025 by rpki-client