Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/68E65F98F44111EFBBD71250762E951A.roa
File: 68E65F98F44111EFBBD71250762E951A.roa (raw, json)
Hash identifier: 1UhMkoHzrITBthkVnce6lGkYG7zd/PEdfDcPjnigSSU=
Subject key identifier: E2:36:17:EB:53:60:5F:32:3B:6E:DF:21:FC:CC:01:BE:2E:B1:8E:E8
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0132D3
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/68E65F98F44111EFBBD71250762E951A.roa
Signing time: Wed 26 Feb 2025 12:58:44 +0000
ROA not before: Wed 26 Feb 2025 12:58:40 +0000
ROA not after: Thu 19 Feb 2026 12:58:40 +0000
asID: 984
IP address blocks: 156.252.155.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 78547 (0x132d3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Feb 26 12:58:40 2025 GMT
Not After : Feb 19 12:58:40 2026 GMT
Subject: CN=67bf1004-cc92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:95:30:85:71:af:f1:d2:d9:14:81:85:f5:57:
c7:bb:cb:5e:52:3b:55:3b:b7:97:99:80:d6:e9:49:
1c:98:36:87:83:79:a9:9b:06:30:8c:1c:cc:90:b5:
a8:b7:a1:5a:27:d9:36:a3:93:39:dc:b3:90:91:f8:
9c:1a:a6:36:5e:79:59:01:c9:72:78:39:33:cd:3b:
42:cf:28:b5:91:c2:e8:b9:1a:9b:2d:17:5b:9e:47:
2a:72:27:41:94:4e:d3:d4:40:7b:0d:b3:d0:c3:c4:
1e:0a:f6:6a:3f:00:dc:26:9d:1a:74:b1:a5:62:65:
c6:02:22:67:4c:54:02:b1:62:30:13:18:d4:cc:1b:
a2:f9:da:5f:0e:43:61:59:82:22:d2:c9:d9:88:df:
a5:41:57:73:81:f7:0a:3b:4f:52:8d:5b:98:2d:8e:
08:a6:0d:88:24:56:ac:d9:67:d1:f2:77:d8:f4:f5:
fc:8a:d8:fb:0a:b4:72:52:d6:9a:72:a0:2f:a4:13:
98:8c:a1:10:ce:d9:61:ee:df:2b:ab:b7:27:a8:32:
57:f2:09:76:c4:c0:21:33:93:e0:1c:d4:9f:0b:a2:
a3:2e:aa:3d:49:a4:1a:a7:73:5b:b3:05:e6:e3:b9:
0c:5d:12:98:7c:12:32:f5:34:09:62:33:4a:d5:bc:
ad:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:36:17:EB:53:60:5F:32:3B:6E:DF:21:FC:CC:01:BE:2E:B1:8E:E8
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/68E65F98F44111EFBBD71250762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.252.155.0/24
Signature Algorithm: sha256WithRSAEncryption
bc:8f:de:d4:40:80:01:53:42:61:52:da:c8:7f:11:e2:eb:96:
73:c1:74:d7:d9:88:c2:d6:79:54:9a:1c:a4:1e:a4:6d:87:4c:
2b:fc:27:bf:a9:ec:1f:5f:63:90:e9:63:37:c4:35:f7:3b:51:
84:6e:7a:fc:17:d2:a6:6c:d9:95:a6:91:88:37:4f:a2:34:2b:
5a:2f:fd:9b:cc:5b:3f:af:88:b7:3f:63:88:64:d7:15:1c:1c:
f3:b5:cd:9a:8a:88:c2:a7:ba:93:07:7d:06:9b:e5:84:3b:30:
33:84:8c:2f:36:20:3b:0e:f3:43:de:00:c8:93:77:c6:1f:54:
6b:be:6a:f2:ca:13:7c:b7:2b:f1:ae:53:43:a6:b7:2d:b1:b5:
09:5a:7f:c9:9e:cb:79:05:71:1b:82:67:27:c1:cd:7c:f7:89:
91:6f:4c:28:17:0c:97:84:2e:ab:8f:d6:fd:87:99:1f:17:92:
fd:b0:b9:82:3a:e6:36:dc:47:2f:0f:39:78:ed:8d:74:d7:de:
c5:3e:c4:a3:8d:17:a3:ab:f9:6f:18:db:34:2e:2d:cb:bc:89:
ce:53:a6:93:67:84:ab:66:58:16:43:59:4b:a8:8c:e7:7c:1d:
43:a6:14:2d:58:5e:3e:b8:65:9e:bd:e1:a6:09:fa:83:8f:dd:
6b:47:c7:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 09:25:04 2025 by rpki-client