Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/647E48BEF4A311EFA9D7F970762E951A.roa
File: 647E48BEF4A311EFA9D7F970762E951A.roa (raw, json)
Hash identifier: fG/onYg79R/9GLgzGdhjMYeXd4PHhDxP7vGn4D62EbI=
Subject key identifier: 1A:A4:E3:D3:16:F2:96:69:95:A5:1A:E6:67:2B:D3:EA:A8:33:80:DB
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 013883
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/647E48BEF4A311EFA9D7F970762E951A.roa
Signing time: Thu 27 Feb 2025 00:40:08 +0000
ROA not before: Thu 27 Feb 2025 00:00:04 +0000
ROA not after: Sat 19 Feb 2028 00:00:04 +0000
asID: 17561
IP address blocks: 156.229.118.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 80003 (0x13883)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Feb 27 00:00:04 2025 GMT
Not After : Feb 19 00:00:04 2028 GMT
Subject: CN=67bfb467-34ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:96:d4:7f:f5:23:77:31:85:c0:33:98:22:df:
73:b1:16:58:47:91:6a:8a:75:b8:b7:bd:08:e1:63:
1d:68:5b:ce:df:9c:4a:d0:89:8e:62:e3:27:14:ed:
e6:d5:0f:ef:de:70:36:c4:20:12:d0:37:4d:ef:4a:
4a:51:a6:cf:82:c2:54:8c:f5:3c:65:4d:78:81:64:
1e:ea:bd:5e:75:ba:06:69:1c:3a:d3:72:2b:70:00:
49:c2:f5:19:ca:37:94:02:89:46:d8:49:30:a0:f5:
9e:d0:fe:82:f0:7b:01:5f:f9:7b:a1:ca:71:33:7e:
6f:34:a6:10:2a:4f:ff:66:9e:f0:4c:6d:e4:56:30:
a4:f4:57:7e:f8:1a:c5:9d:61:c3:3d:d2:0e:be:87:
53:a7:b4:21:83:6b:d3:cc:1b:03:13:11:45:59:5c:
fd:fd:1f:76:4d:b3:61:31:04:72:87:c0:c2:c8:a1:
63:85:23:0c:c3:45:66:5a:34:03:73:f8:67:ac:85:
95:17:30:10:88:d8:4f:9c:3e:35:7a:e5:ad:43:df:
b9:62:44:e8:6f:a7:a9:69:ee:03:3f:f1:9f:09:02:
f9:78:ab:1d:9a:3e:c2:2d:7a:63:c2:03:f5:13:db:
28:da:65:0d:80:05:74:de:bb:35:7b:64:89:6b:bc:
aa:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:A4:E3:D3:16:F2:96:69:95:A5:1A:E6:67:2B:D3:EA:A8:33:80:DB
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/647E48BEF4A311EFA9D7F970762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.229.118.0/24
Signature Algorithm: sha256WithRSAEncryption
a2:0f:ee:23:e5:e9:31:26:0f:34:cb:59:ab:b9:fc:0c:35:85:
47:06:a8:1c:d6:cc:34:da:a2:88:29:7b:3a:44:ca:f5:49:85:
76:81:56:6d:83:df:a1:d2:1f:05:e9:ad:45:9c:37:af:7c:cb:
e6:77:c9:b9:4a:be:f2:3c:d2:7d:ea:cf:ff:e2:31:70:3a:2c:
32:b9:d8:cc:7c:e7:19:5a:85:bb:fa:6c:af:bc:8a:9e:c2:57:
e7:12:2a:de:e0:79:5e:33:9d:c2:c7:70:b0:f4:fc:a0:00:32:
e5:1b:bc:4f:53:82:84:60:e6:8f:d4:39:83:c1:7c:22:90:d5:
23:0c:2a:e2:b3:ff:41:04:b6:a3:75:34:78:a3:41:a0:e9:86:
e6:ed:a1:21:cd:fa:f3:1f:e2:cd:41:29:43:3b:14:91:99:2c:
37:ab:f6:e9:83:9f:c6:44:a7:08:13:b3:c6:b6:07:25:76:43:
7b:af:43:6b:31:ff:bc:72:62:c0:ef:01:45:bf:8c:83:b8:5b:
d2:a0:b5:58:63:62:66:32:ed:db:9e:b1:05:ef:d8:fe:48:b6:
31:15:55:ab:1d:2d:7c:c5:9f:9c:c2:14:13:63:4e:4c:e1:7a:
b8:c4:11:31:a2:5e:64:e1:c3:98:63:28:68:12:81:e5:bc:80:
a3:fd:c3:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 09:28:24 2025 by rpki-client