Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5A4DD6FAE54111EF85D498AB762E951A.roa
File: 5A4DD6FAE54111EF85D498AB762E951A.roa (raw, json)
Hash identifier: xAmCK8KWv0F10EKVdq8qAVVm9dOzgdnMUuZsds+3rYc=
Subject key identifier: C7:19:7F:F5:0C:D3:84:C8:AF:BC:9B:46:5F:4F:7A:5C:C8:00:82:C9
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 011D1D
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5A4DD6FAE54111EF85D498AB762E951A.roa
Signing time: Fri 07 Feb 2025 10:50:32 +0000
ROA not before: Fri 07 Feb 2025 10:50:29 +0000
ROA not after: Mon 13 Dec 2027 10:50:29 +0000
asID: 17561
IP address blocks: 156.230.166.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 72989 (0x11d1d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Feb 7 10:50:29 2025 GMT
Not After : Dec 13 10:50:29 2027 GMT
Subject: CN=67a5e578-d441
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:39:ac:66:8c:04:ba:51:63:4e:04:94:65:b7:
8a:89:c5:5b:ae:68:b0:a3:f1:a6:76:a2:7f:77:a2:
bf:71:8b:89:9f:b8:d9:99:8e:2b:07:bf:ee:15:74:
3d:7a:b4:4a:4a:18:48:69:92:d6:86:4b:c1:3b:68:
14:2d:0b:a7:41:42:28:45:14:2f:83:37:61:7d:d8:
36:02:bc:a3:2e:25:6c:ed:96:80:b2:9a:80:b1:31:
a3:ad:db:48:24:44:a0:3d:59:56:c3:2e:d3:24:98:
b0:bf:f3:42:ee:dd:9f:e1:6f:ec:d0:7a:31:52:d5:
f5:57:e8:2d:a7:c2:27:1e:98:c0:85:03:b4:55:30:
86:4b:a5:3a:ca:20:af:a0:8c:6a:01:e2:e1:d3:18:
87:79:64:55:39:80:7d:d8:66:d0:5b:bc:98:98:7f:
5f:af:55:c6:9b:dc:88:57:63:d6:79:35:7c:c2:57:
79:63:45:e3:54:04:76:4c:ea:e4:3e:54:2d:b1:bc:
76:c7:91:9b:bd:fd:5d:73:f5:b6:14:4f:84:c4:83:
2c:9a:18:06:0a:f3:eb:d4:5d:a6:51:d4:c8:83:1a:
f9:6f:7a:a6:38:2b:87:83:37:3f:46:96:d0:c4:d8:
f9:c4:c1:e6:2c:e4:37:02:3f:79:c5:d1:1d:1a:57:
30:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:19:7F:F5:0C:D3:84:C8:AF:BC:9B:46:5F:4F:7A:5C:C8:00:82:C9
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5A4DD6FAE54111EF85D498AB762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.230.166.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:5a:eb:d4:31:d0:5e:9f:50:61:d0:3d:2f:b3:5c:5f:c9:98:
2e:e9:1e:09:a0:f4:49:fe:6d:72:9a:24:81:b7:34:38:8c:e4:
2e:ef:c5:8d:8b:c6:9f:ae:6a:cc:cf:0b:67:e7:d1:7f:0c:65:
39:70:66:70:eb:5d:cc:54:b3:2c:0a:f0:71:13:f6:60:04:3f:
4f:ae:1f:5c:b9:05:b4:36:ac:e8:eb:bf:fc:04:9e:a3:70:b0:
2e:b8:f1:ae:7d:a4:27:91:2e:f7:48:7f:f1:af:be:9d:4c:cd:
c6:d5:0c:84:be:a7:2b:3c:b7:72:ba:86:d6:0e:ce:77:b9:7f:
ee:cb:ad:a7:2d:99:5f:c1:c7:7a:20:60:f5:f5:ce:59:a3:84:
d0:e6:56:ee:ec:e3:c8:bc:a5:70:aa:81:b3:6f:f3:3b:53:22:
bd:8e:bc:7f:65:77:44:c9:c3:e3:f4:8b:08:93:af:5d:08:1f:
84:cf:9b:02:6a:80:de:7a:99:48:42:4c:c2:68:7e:c3:55:97:
38:b8:4b:2b:11:e3:db:a2:03:52:dd:d9:f5:d7:b3:db:12:91:
76:4a:61:e4:32:21:c9:e3:c2:63:00:ed:6b:81:9e:d5:ab:cc:
9e:02:bf:1f:ee:4a:34:9a:ad:21:fd:60:1b:f5:f6:26:79:40:
9c:b1:ef:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 09:25:06 2025 by rpki-client