Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8103D74AF41E11EFB8C0C95A762E951A.roa
File: 8103D74AF41E11EFB8C0C95A762E951A.roa (raw, json)
Hash identifier: bIyV0FrQlMiEghFB/Xkov1I4NmC9hvP2UlGJ19J1X7k=
Subject key identifier: 41:11:9B:15:A2:F0:2E:54:7E:08:29:D5:0E:FB:10:F6:14:46:AD:A4
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 013021
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8103D74AF41E11EFB8C0C95A762E951A.roa
Signing time: Wed 26 Feb 2025 08:48:52 +0000
ROA not before: Wed 26 Feb 2025 08:48:48 +0000
ROA not after: Thu 19 Feb 2026 08:48:48 +0000
asID: 984
IP address blocks: 156.252.28.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 77857 (0x13021)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Feb 26 08:48:48 2025 GMT
Not After : Feb 19 08:48:48 2026 GMT
Subject: CN=67bed574-bfbf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:be:a5:4e:3b:93:ba:df:2e:8f:46:39:3d:22:
70:be:b8:3a:4c:4d:47:6a:c1:7c:15:c4:0c:4a:ae:
cb:4d:7c:5e:df:56:39:41:07:07:3e:e2:3d:5b:04:
62:7b:b5:94:53:26:aa:22:8b:fc:95:a1:9a:b9:22:
01:cd:ae:ab:c1:2f:c2:90:d3:e0:4b:d9:22:f8:b8:
06:2f:e2:03:1b:e9:7f:e8:ee:92:93:2d:93:ac:ac:
df:50:8b:3f:23:98:10:61:7a:39:28:5f:f8:df:01:
7e:ad:59:b3:e3:ab:4c:28:1e:50:55:54:fd:df:7a:
43:fb:2e:4e:5c:bb:06:b1:18:78:c9:fc:80:61:25:
8e:97:ad:8d:7e:88:e3:f2:4e:a8:91:3b:a6:28:a3:
95:0a:04:28:8d:90:b7:ea:1f:e2:36:1b:be:ff:be:
90:0c:e4:b0:db:fc:bb:37:36:99:47:3d:70:7f:55:
b8:16:ce:54:99:09:96:76:bd:d5:15:8e:40:9e:79:
ef:db:e3:7f:25:af:7e:15:36:c0:a0:9a:13:30:04:
08:f6:ad:59:ec:0f:ed:96:1f:46:3c:77:4d:41:3b:
ec:cd:48:0e:70:ab:07:d7:92:0f:52:5d:3a:e0:4d:
ef:0a:e8:ee:6e:e4:cb:63:ef:0a:cf:dc:05:08:48:
3c:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:11:9B:15:A2:F0:2E:54:7E:08:29:D5:0E:FB:10:F6:14:46:AD:A4
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8103D74AF41E11EFB8C0C95A762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.252.28.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:4e:99:7d:bf:08:f4:d6:c4:64:33:a0:ee:9e:4b:ea:1a:2b:
6e:2b:a6:1a:66:73:ff:9d:cc:d4:de:db:5b:00:9e:e4:ca:7b:
7a:d5:7e:ab:c2:6a:1d:f9:62:90:64:85:97:a3:a5:aa:41:0c:
6d:5b:72:1a:16:40:ba:67:31:4e:23:ed:9f:45:a4:9f:43:1d:
7c:c0:ee:48:12:12:bb:a1:4c:70:47:0c:54:cd:01:9b:51:bf:
b9:61:05:8a:7d:fa:0e:b2:58:f4:ec:4e:df:a6:b4:e6:15:b5:
9f:bb:28:94:34:5c:79:f8:25:95:cb:b6:43:ea:90:b4:2f:c6:
09:03:af:56:92:74:d1:a5:9a:51:33:53:4c:da:1e:29:19:70:
5e:5c:be:d0:26:84:de:d3:99:e3:15:ff:bc:18:5e:62:7c:ed:
78:c0:9b:f3:c9:8f:1d:cb:5f:94:47:3e:e1:7d:1b:48:17:be:
19:ae:0d:70:0e:dc:ca:ef:05:94:0b:f3:5d:d7:54:81:c7:6d:
74:c2:1f:fe:c1:e5:5e:9c:17:ac:9e:a8:c7:f2:8e:e6:be:4c:
66:d2:02:26:d8:4f:39:12:31:c0:62:1c:16:ab:6d:ab:84:da:
c6:10:ee:28:9f:7a:af:dd:e3:ff:d5:b6:fd:c5:0f:34:aa:5b:
5d:85:52:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 09:06:21 2025 by rpki-client