Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8B679B06F4AD11EFAABDEBBE762E951A.roa
File: 8B679B06F4AD11EFAABDEBBE762E951A.roa (raw, json)
Hash identifier: jDhG92215k3RKlzfke7PvN6kiue2lWoxYQViXlVDPws=
Subject key identifier: 66:7F:C6:C2:F8:6C:5F:1F:4A:FB:B4:75:DF:68:21:D6:10:69:04:94
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0138A2
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8B679B06F4AD11EFAABDEBBE762E951A.roa
Signing time: Thu 27 Feb 2025 01:52:48 +0000
ROA not before: Thu 27 Feb 2025 01:52:44 +0000
ROA not after: Thu 19 Feb 2026 01:52:44 +0000
asID: 984
IP address blocks: 156.236.8.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 80034 (0x138a2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Feb 27 01:52:44 2025 GMT
Not After : Feb 19 01:52:44 2026 GMT
Subject: CN=67bfc570-9e60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:1b:e9:c4:47:f1:8d:b2:11:d8:be:4e:9d:c7:
a0:2e:81:e4:e3:23:44:8c:70:dc:f4:84:8a:49:ea:
22:8e:3c:65:ce:30:f0:e0:e0:47:fe:9e:45:05:52:
96:bc:c8:5e:24:3a:57:e4:4a:95:7d:d7:b0:f2:8e:
cd:6d:94:96:0f:95:ba:dd:ce:98:c4:4b:ea:b8:d3:
a6:70:a8:73:d0:c7:b7:87:66:90:0c:3a:03:93:be:
c5:a1:6d:4a:ea:05:25:22:a0:64:b4:bf:b4:0a:a1:
3f:6b:84:d3:a2:35:2c:3a:be:af:f8:47:79:4c:f2:
df:2f:70:4d:9b:44:1b:da:49:79:3a:cd:10:47:e3:
0b:0b:2d:85:af:37:d8:80:20:e9:9d:52:36:47:66:
ae:ce:5e:a9:37:2c:93:01:0a:ed:39:ca:5c:7a:af:
bd:58:60:89:8b:ed:09:75:5f:fa:e7:6b:fa:20:d1:
d2:05:42:b7:33:ee:be:62:83:6d:83:30:7e:ce:b2:
0b:32:14:59:c4:d2:4e:25:b2:0b:45:ae:c3:46:70:
b6:b9:e7:3a:3e:20:fa:34:0b:48:e9:ab:13:c3:c5:
c1:dc:ac:d9:2f:a4:5d:18:49:e3:d4:97:18:3b:fc:
cc:b8:bd:14:a3:46:52:a8:31:b1:d9:ed:40:50:66:
fb:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:7F:C6:C2:F8:6C:5F:1F:4A:FB:B4:75:DF:68:21:D6:10:69:04:94
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8B679B06F4AD11EFAABDEBBE762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.236.8.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:bf:41:80:61:0a:ca:74:83:50:3f:04:58:7a:b2:46:06:b0:
7b:81:a5:54:83:47:00:b2:3b:65:86:00:15:79:ef:92:18:40:
c5:02:e5:c8:cf:e2:96:c9:f1:08:01:d7:20:ae:72:cb:65:10:
09:cc:64:07:ee:04:94:5c:5e:2b:d8:af:bf:2d:b1:39:5c:71:
dd:43:fa:ba:89:35:42:8e:0a:51:7f:5e:fb:8b:21:e3:ff:ec:
c7:41:29:c3:cc:2a:da:a0:51:1b:83:17:43:4a:8c:16:11:5d:
59:3c:44:2c:1c:2a:8b:3e:fa:5e:8d:8f:da:9a:c6:60:05:17:
20:ec:3b:9e:56:08:cb:6b:4c:23:ec:8e:7b:b5:f2:fb:df:79:
2e:59:37:13:77:40:f8:da:64:78:bc:7b:db:78:b1:f5:e6:0f:
68:41:02:14:2b:99:44:ef:e5:d9:b8:1d:49:50:2c:75:64:dd:
88:ac:c0:c7:00:07:48:a7:c4:8c:87:86:27:fd:ca:0b:5d:d6:
b1:43:ef:1a:df:72:34:de:f6:3c:ff:87:a3:43:95:fb:08:61:
66:06:5a:94:cc:f6:27:c0:e0:7b:14:b2:43:bc:8f:a8:71:1e:
a1:c3:e4:cb:78:1b:27:d6:6e:5c:44:20:8a:51:7c:a2:7b:1b:
42:48:f3:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 16:31:44 2025 by rpki-client