Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6DFA786CF46811EFB5425E61762E951A.roa
File: 6DFA786CF46811EFB5425E61762E951A.roa (raw, json)
Hash identifier: gLRolETqgA/EpxGqnbM4Jg/xI9zl88PztZzUsf/A1uc=
Subject key identifier: 56:C0:CB:73:3B:D7:EB:91:52:41:43:52:0B:47:F6:15:D7:5C:DB:DE
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0135B5
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6DFA786CF46811EFB5425E61762E951A.roa
Signing time: Wed 26 Feb 2025 17:38:03 +0000
ROA not before: Wed 26 Feb 2025 17:37:59 +0000
ROA not after: Thu 19 Feb 2026 17:37:59 +0000
asID: 984
IP address blocks: 156.245.89.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 79285 (0x135b5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Feb 26 17:37:59 2025 GMT
Not After : Feb 19 17:37:59 2026 GMT
Subject: CN=67bf517b-cbd0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:42:03:18:28:0c:f1:60:14:8f:81:9f:07:9c:
97:37:df:c9:4c:ec:d4:83:af:f3:27:91:9f:1a:2e:
1b:15:de:d9:e0:1c:07:57:4c:78:db:0a:21:51:9a:
65:94:b3:0f:a0:7c:1f:5b:18:65:ef:5c:af:8c:25:
37:6c:fd:1a:47:fd:0e:01:46:dd:f1:39:d1:67:02:
7e:f6:aa:ac:69:7f:07:57:a8:db:b2:9b:a6:b2:42:
39:6b:91:60:57:a0:fa:8c:cc:d6:97:a8:db:42:7b:
79:89:32:b4:fd:3d:20:62:12:29:6d:d8:3b:06:44:
de:6b:0d:72:09:b8:5e:9a:78:38:15:8c:ba:2e:ee:
fe:01:70:64:a4:a0:fa:3d:bb:2e:05:d2:3f:51:6d:
ad:5b:78:af:f2:9b:c3:d9:66:0c:87:fb:3b:e7:7b:
99:b8:ff:f3:43:a2:b2:02:a6:17:63:7b:1c:25:57:
3f:83:a0:22:36:10:b5:15:0c:2c:0d:01:6e:78:50:
02:2d:37:50:2f:b6:3f:45:8d:96:4b:56:d5:c1:75:
2d:5f:75:43:6a:b9:c2:ab:11:b1:11:b2:24:1c:aa:
ee:db:5e:d3:be:55:97:67:7b:44:36:4a:a2:2b:2a:
01:5f:5f:0b:a5:e1:f1:22:e1:61:a6:9e:11:c6:2b:
95:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:C0:CB:73:3B:D7:EB:91:52:41:43:52:0B:47:F6:15:D7:5C:DB:DE
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6DFA786CF46811EFB5425E61762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.245.89.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:a3:bd:46:d6:cd:99:7d:92:bf:a6:1f:56:44:35:32:6b:73:
02:72:a0:4d:10:0b:71:db:9c:31:ef:58:5e:47:71:40:6b:b7:
1c:a7:ad:13:34:82:63:4d:70:27:a3:3d:a3:ce:e2:2e:39:96:
8d:ad:5b:95:dc:6c:de:e9:34:a9:0f:b4:14:f8:81:d2:a6:c2:
f3:65:82:8a:c4:29:31:b3:ef:89:e3:d0:37:6f:ad:0e:35:5d:
79:d2:c9:27:7c:4d:f9:73:c2:f6:bd:cc:c7:10:79:25:fb:6e:
2d:2b:74:0a:fc:16:3a:da:27:7c:96:ba:17:75:f2:97:ca:cf:
9c:4c:f9:6c:77:57:ad:de:65:6e:6d:45:11:4f:98:81:5b:17:
ec:a6:dd:72:1a:0f:e9:b3:18:56:72:17:ba:1a:f9:33:1e:70:
d8:c0:ca:1e:44:b3:21:cf:e0:76:d3:6d:05:55:e3:71:27:4d:
aa:2b:bd:7d:c9:5e:0e:6b:80:d9:72:96:34:b2:b5:d1:d7:c6:
7d:62:dd:bd:ce:74:00:31:fa:06:a1:72:bb:0e:25:d4:ed:ab:
98:56:ca:bb:d2:7b:0f:d6:e7:7b:4a:ec:ce:6a:2e:eb:b5:86:
0f:ff:81:9b:25:90:79:6b:cf:06:80:a3:bc:c1:ce:be:d4:57:
cb:1a:d5:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 09:25:07 2025 by rpki-client