Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9A81CA7CF2C711EF928112B4762E951A.roa
File: 9A81CA7CF2C711EF928112B4762E951A.roa (raw, json)
Hash identifier: yEbkQoQNjIUKk/I1tBAaQZbdkBGYHahNVSmAVsMvang=
Subject key identifier: E3:A5:9D:B7:E7:13:27:C3:19:23:3B:F4:49:77:7F:0C:5F:E1:6F:1B
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 012C15
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9A81CA7CF2C711EF928112B4762E951A.roa
Signing time: Mon 24 Feb 2025 15:54:18 +0000
ROA not before: Mon 24 Feb 2025 15:54:14 +0000
ROA not after: Sat 29 Mar 2025 15:54:14 +0000
asID: 203020
IP address blocks: 156.232.112.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 76821 (0x12c15)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Feb 24 15:54:14 2025 GMT
Not After : Mar 29 15:54:14 2025 GMT
Subject: CN=67bc962a-348f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:1c:9e:59:70:44:fe:e0:44:21:74:c8:60:fb:
56:b9:76:de:9f:96:ce:49:85:1f:9e:17:5f:2d:33:
e6:a7:ab:fd:a5:66:32:62:86:f9:d8:43:0d:6c:cb:
bb:24:14:b8:87:b5:de:a6:03:c7:63:38:da:43:83:
a8:14:f5:88:24:a0:00:4b:12:c5:5e:ea:78:2e:98:
f3:2f:03:1a:52:99:92:71:48:62:be:f7:0c:f8:df:
f7:2e:37:35:73:8a:e2:0b:89:ce:16:ae:04:d7:39:
e4:1a:33:76:95:bf:98:5f:6c:f9:e0:32:28:30:b6:
e3:87:00:7b:66:56:93:1b:6d:29:75:88:ef:94:e0:
dd:b4:dd:98:d1:d2:24:57:e3:2d:b3:37:3a:17:aa:
62:e3:2d:98:00:f7:0c:9c:d0:37:13:54:ed:2e:63:
69:aa:fc:d0:e8:14:f5:31:35:3b:b3:a6:01:57:8b:
41:4c:8c:c1:b5:88:1c:ac:08:63:33:ca:35:26:fc:
61:d1:8d:7f:8f:c6:55:c1:2c:7e:3f:73:76:54:2c:
a5:0c:16:ef:cc:e0:d5:ac:dd:76:3a:fd:ef:d8:1c:
27:9e:03:e6:b3:86:5a:02:4b:42:c4:da:fe:e8:5d:
29:61:f0:ee:57:c8:39:a1:a0:f4:ab:04:3e:e8:3f:
bb:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:A5:9D:B7:E7:13:27:C3:19:23:3B:F4:49:77:7F:0C:5F:E1:6F:1B
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9A81CA7CF2C711EF928112B4762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.232.112.0/20
Signature Algorithm: sha256WithRSAEncryption
b5:60:70:57:25:47:07:33:12:29:2d:e9:1c:32:4e:cc:7b:6b:
e2:8c:25:29:1d:77:c7:55:cb:97:ea:8f:54:a3:37:74:5f:77:
ba:12:9f:d2:43:f8:81:b3:4c:0c:ed:b4:30:28:76:9e:26:73:
21:eb:cf:51:95:49:21:4c:21:7d:b1:fb:c7:2d:96:13:99:8b:
97:a6:f3:25:77:b5:38:0a:eb:7a:e1:a1:fd:02:27:e3:2a:3c:
33:53:9d:f5:70:27:70:73:c1:0b:ca:15:c9:b4:0f:70:d1:0a:
81:60:81:1a:6f:87:4b:74:06:bf:48:92:1a:27:ac:cf:58:77:
35:fa:65:ae:7e:6a:c3:53:35:e7:d6:e3:b9:f5:37:ab:7d:a7:
0f:31:70:e9:73:a6:e8:33:d0:d5:28:a4:7f:22:77:e3:d4:47:
bd:53:6f:42:34:ca:8f:dd:7d:58:b0:bd:fa:11:88:ad:94:4f:
f3:99:73:4a:52:14:6c:15:e4:e8:be:38:68:52:50:79:2f:58:
c8:4c:c5:ca:2e:c5:cc:c1:e0:3a:8f:9e:49:24:88:d9:a1:08:
34:25:45:f9:7b:80:d3:2b:0d:01:ad:59:b9:dd:c8:48:81:e3:
0a:7c:0c:8a:45:cb:c2:39:7d:38:8b:81:fc:50:d5:55:3c:1d:
f1:b0:4c:30
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDASwVMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjUwMjI0MTU1NDE0WhcNMjUwMzI5MTU1NDE0WjAYMRYw
FAYDVQQDEw02N2JjOTYyYS0zNDhmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAtxyeWXBE/uBEIXTIYPtWuXben5bOSYUfnhdfLTPmp6v9pWYyYob52EMN
bMu7JBS4h7XepgPHYzjaQ4OoFPWIJKAASxLFXup4LpjzLwMaUpmScUhivvcM+N/3
Ljc1c4riC4nOFq4E1znkGjN2lb+YX2z54DIoMLbjhwB7ZlaTG20pdYjvlODdtN2Y
0dIkV+Mtszc6F6pi4y2YAPcMnNA3E1TtLmNpqvzQ6BT1MTU7s6YBV4tBTIzBtYgc
rAhjM8o1Jvxh0Y1/j8ZVwSx+P3N2VCylDBbvzODVrN12Ov3v2BwnngPms4ZaAktC
xNr+6F0pYfDuV8g5oaD0qwQ+6D+7rwIDAQABo4ICojCCAp4wHQYDVR0OBBYEFOOl
nbfnEyfDGSM79El3fwxf4W8bMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC85QTgxQ0E3Q0YyQzcxMUVGOTI4MTEyQjQ3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEnOhwMA0GCSqGSIb3DQEBCwUA
A4IBAQC1YHBXJUcHMxIpLekcMk7Me2vijCUpHXfHVcuX6o9Uozd0X3e6Ep/SQ/iB
s0wM7bQwKHaeJnMh689RlUkhTCF9sfvHLZYTmYuXpvMld7U4Cut64aH9AifjKjwz
U531cCdwc8ELyhXJtA9w0QqBYIEab4dLdAa/SJIaJ6zPWHc1+mWufmrDUzXn1uO5
9TerfacPMXDpc6boM9DVKKR/Infj1Ee9U29CNMqP3X1YsL36EYitlE/zmXNKUhRs
FeTovjhoUlB5L1jITMXKLsXMweA6j55JJIjZoQg0JUX5e4DTKw0BrVm53chIgeMK
fAyKRcvCOX04i4H8UNVVPB3xsEww
-----END CERTIFICATE-----
Generated at Sat Apr 12 05:10:15 2025 by rpki-client