Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/648BCF3EF44E11EF9212E1AA762E951A.roa
File: 648BCF3EF44E11EF9212E1AA762E951A.roa (raw, json)
Hash identifier: wDBZsjTDQIiPwEQNwZy8uCwtNEe2VRHmx0CHgCkCtTI=
Subject key identifier: 9F:19:11:69:DC:15:14:7F:4F:38:B4:E7:E2:AD:58:DF:C0:94:B5:5A
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0133C9
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/648BCF3EF44E11EF9212E1AA762E951A.roa
Signing time: Wed 26 Feb 2025 14:31:40 +0000
ROA not before: Wed 26 Feb 2025 14:31:36 +0000
ROA not after: Thu 19 Feb 2026 14:31:36 +0000
asID: 984
IP address blocks: 156.231.188.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 78793 (0x133c9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Feb 26 14:31:36 2025 GMT
Not After : Feb 19 14:31:36 2026 GMT
Subject: CN=67bf25cc-ab4f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:f8:a3:a8:3d:e4:4e:9a:3e:15:4a:63:bd:fd:
a6:15:c5:72:7b:f1:8b:69:7b:5d:47:7a:7d:7d:6c:
54:c1:9b:e8:14:20:de:c9:50:61:2c:de:65:17:0d:
0d:d1:8b:2c:30:0b:ad:ba:8f:37:f1:7e:22:2c:00:
80:2d:9a:ed:39:8e:23:9d:e4:a6:92:66:43:75:f4:
b0:10:82:27:c4:e8:4e:83:27:b7:27:0f:42:1c:d3:
5d:3a:59:45:51:0e:be:12:b1:e4:5f:f5:6c:eb:e1:
b2:ef:fa:b7:34:09:06:15:26:cc:91:d7:54:f3:5a:
4e:2e:f0:cb:9a:5e:a3:5a:66:82:f1:cb:f9:cd:17:
be:64:37:34:b4:cd:9a:4e:ba:00:a9:a1:a6:9f:59:
f3:26:e2:33:4f:05:0d:c5:11:bb:ed:6b:d3:3b:ce:
82:a7:b8:41:c8:77:e3:d9:68:fb:5c:c9:25:dd:18:
7e:9a:ba:f9:41:4c:5b:21:19:ca:82:82:aa:80:1a:
1f:08:c1:d9:97:72:fb:39:6d:33:00:cd:70:d5:3a:
8a:e6:b2:e8:cd:bd:9a:2e:6a:03:37:c9:07:ce:13:
9f:f7:d0:35:b3:c0:00:f3:82:83:f2:41:f5:24:bc:
dc:22:64:74:49:10:1d:af:d1:61:8b:9a:4b:14:42:
ed:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:19:11:69:DC:15:14:7F:4F:38:B4:E7:E2:AD:58:DF:C0:94:B5:5A
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/648BCF3EF44E11EF9212E1AA762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.231.188.0/24
Signature Algorithm: sha256WithRSAEncryption
ba:c3:6c:35:28:d9:89:28:9c:5e:e9:eb:b8:8e:d4:bc:f4:8f:
96:89:13:f2:8e:47:03:4d:4c:ff:c1:ee:34:a8:21:8d:2f:80:
9e:6e:de:49:4f:2a:54:fd:08:3e:1f:aa:0c:15:70:c1:e0:c0:
ea:c8:98:08:9f:f1:89:38:e1:a9:35:7d:44:72:2e:41:18:2c:
2b:ba:4a:ee:d3:fe:16:2e:67:96:60:1c:de:32:bd:65:4e:8c:
98:0a:8d:e2:5c:65:77:5a:53:7f:b9:2c:e2:fb:8f:47:64:54:
90:7e:e0:9b:fe:0f:60:4d:f3:48:1e:f7:a0:95:d5:c6:56:36:
bc:3f:9b:c9:10:5d:41:30:ee:a5:af:90:9c:7c:05:d5:23:96:
77:25:66:ff:c1:5f:6f:4d:90:39:13:d9:58:4c:4f:d5:59:36:
ad:6c:4f:1e:70:93:6e:9f:ad:69:76:2a:56:a1:91:ba:ba:97:
dc:14:0f:4d:4f:ce:ff:50:17:a3:f2:76:12:40:71:a8:46:da:
a1:e4:05:97:c0:f9:e7:f9:82:1d:3a:ae:ab:85:6f:f9:ea:04:
8c:03:3e:bf:dc:8c:6d:f4:52:6d:88:cc:d2:de:de:70:7c:82:
13:30:cb:50:ac:8e:fc:43:50:f4:73:80:65:ca:9d:c2:b7:7a:
fc:6b:de:72
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDATPJMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjUwMjI2MTQzMTM2WhcNMjYwMjE5MTQzMTM2WjAYMRYw
FAYDVQQDEw02N2JmMjVjYy1hYjRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA5fijqD3kTpo+FUpjvf2mFcVye/GLaXtdR3p9fWxUwZvoFCDeyVBhLN5l
Fw0N0YssMAutuo838X4iLACALZrtOY4jneSmkmZDdfSwEIInxOhOgye3Jw9CHNNd
OllFUQ6+ErHkX/Vs6+Gy7/q3NAkGFSbMkddU81pOLvDLml6jWmaC8cv5zRe+ZDc0
tM2aTroAqaGmn1nzJuIzTwUNxRG77WvTO86Cp7hByHfj2Wj7XMkl3Rh+mrr5QUxb
IRnKgoKqgBofCMHZl3L7OW0zAM1w1TqK5rLozb2aLmoDN8kHzhOf99A1s8AA84KD
8kH1JLzcImR0SRAdr9Fhi5pLFELtFwIDAQABo4ICojCCAp4wHQYDVR0OBBYEFJ8Z
EWncFRR/Tzi05+KtWN/AlLVaMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC82NDhCQ0YzRUY0NEUxMUVGOTIxMkUxQUE3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnOe8MA0GCSqGSIb3DQEBCwUA
A4IBAQC6w2w1KNmJKJxe6eu4jtS89I+WiRPyjkcDTUz/we40qCGNL4Cebt5JTypU
/Qg+H6oMFXDB4MDqyJgIn/GJOOGpNX1Eci5BGCwrukru0/4WLmeWYBzeMr1lToyY
Co3iXGV3WlN/uSzi+49HZFSQfuCb/g9gTfNIHvegldXGVja8P5vJEF1BMO6lr5Cc
fAXVI5Z3JWb/wV9vTZA5E9lYTE/VWTatbE8ecJNun61pdipWoZG6upfcFA9NT87/
UBej8nYSQHGoRtqh5AWXwPnn+YIdOq6rhW/56gSMAz6/3Ixt9FJtiMzS3t5wfIIT
MMtQrI78Q1D0c4Blyp3Ct3r8a95y
-----END CERTIFICATE-----
Generated at Sat Apr 5 09:33:32 2025 by rpki-client