Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/728EC2F8F42611EF9BB2CE90762E951A.roa
File: 728EC2F8F42611EF9BB2CE90762E951A.roa (raw, json)
Hash identifier: AdX5sPkWEm9Hl7Z5Otu3qQVRXBaAphz6goQmGTW/5GI=
Subject key identifier: 9F:AB:F1:0F:DB:AC:82:7B:00:98:1D:87:55:06:66:5A:38:BF:60:87
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0130A0
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/728EC2F8F42611EF9BB2CE90762E951A.roa
Signing time: Wed 26 Feb 2025 09:45:44 +0000
ROA not before: Wed 26 Feb 2025 09:45:40 +0000
ROA not after: Thu 19 Feb 2026 09:45:40 +0000
asID: 984
IP address blocks: 156.252.69.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 77984 (0x130a0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Feb 26 09:45:40 2025 GMT
Not After : Feb 19 09:45:40 2026 GMT
Subject: CN=67bee2c8-d670
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:c6:4f:11:2d:9a:fe:e0:02:97:0a:e2:6a:2e:
5e:8f:e7:ac:92:3b:00:6e:39:b9:1f:e3:16:0d:0a:
28:b0:fb:3d:2b:7f:56:ed:ec:ee:84:a0:08:7d:86:
1e:1d:5c:af:4e:4f:23:d4:c6:ec:a8:6c:35:e6:a9:
14:6e:61:ee:36:44:13:63:e5:86:5c:68:ab:96:b9:
2f:e5:0a:d3:9b:a9:d3:a5:a0:4e:65:1b:df:41:4b:
e7:98:b5:44:27:42:c1:3c:23:54:e1:9c:c4:a8:9f:
73:12:c1:9f:63:8f:ad:bd:3d:c8:43:18:d7:4f:41:
12:4f:5e:c9:e2:7b:17:b8:ed:2f:f9:6c:c7:f3:71:
d8:8c:f9:27:05:89:c6:2c:c5:c8:7a:92:3b:59:18:
eb:6a:d0:53:9f:55:81:d5:29:af:b0:60:c1:e5:bc:
b2:7f:5b:a2:59:11:d6:a7:08:da:1a:8b:58:c1:cc:
e2:da:31:fb:25:bc:58:3c:a6:35:47:03:e8:ef:80:
7c:ad:dc:42:f2:a8:84:80:13:e9:4b:27:cd:9a:92:
a2:c5:03:64:22:35:ee:29:9c:8d:f8:22:6e:5f:70:
58:95:69:4e:88:ed:48:6c:d0:c3:fb:04:c4:f6:ab:
4e:58:26:28:52:57:8f:ad:38:60:f2:a7:8f:ba:b7:
10:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:AB:F1:0F:DB:AC:82:7B:00:98:1D:87:55:06:66:5A:38:BF:60:87
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/728EC2F8F42611EF9BB2CE90762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.252.69.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:c3:5c:98:9a:d8:d7:c0:93:89:27:e5:c2:3b:dd:70:04:6a:
06:6e:5c:48:a8:3c:81:a0:db:7c:37:64:c5:fc:2a:52:dd:7f:
83:80:05:4f:87:a9:b7:3d:89:65:d7:66:1d:43:81:ee:df:58:
e2:be:49:d9:39:c3:89:76:c6:1f:5b:c9:50:d2:57:7f:21:a7:
2b:a4:46:d7:f4:0c:17:28:ce:9d:a6:7b:c9:8e:da:49:fb:a1:
4a:f6:d1:e3:32:ff:ed:73:11:31:c7:0d:aa:a0:bf:13:03:9b:
3b:8b:ba:a2:22:c1:91:e5:62:13:ae:98:ce:5a:02:92:c6:12:
93:a8:6d:b2:16:88:44:0c:34:14:20:79:8e:01:aa:f9:87:ef:
81:18:ed:bc:7f:40:80:b0:c4:7f:d8:84:1c:33:a2:f7:f9:33:
97:e2:56:54:af:12:cb:4c:83:e5:94:1d:5d:49:6f:65:48:22:
0d:a3:b1:5a:c9:b1:d4:15:30:67:86:5c:8c:36:4c:3a:59:1f:
12:c9:49:6c:8d:32:d6:8e:b0:cc:02:45:3c:0b:c1:64:71:4c:
6e:a5:68:7b:78:c6:9c:7a:85:6d:5a:58:ca:1d:90:7f:58:ca:
36:ee:e9:e6:91:c0:dc:3f:97:35:79:17:5a:06:16:9d:ae:e5:
90:42:ce:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 09:22:36 2025 by rpki-client