Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9DA47F86F44A11EFAF8D7990762E951A.roa
File: 9DA47F86F44A11EFAF8D7990762E951A.roa (raw, json)
Hash identifier: VwbqjU3qadqTtSRerdorSmKPxKNDcCzPupTAxomnSxk=
Subject key identifier: 78:F2:DC:59:34:0D:1F:F8:AE:AE:C2:12:D7:CE:CA:FA:41:3D:7C:AE
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01338B
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9DA47F86F44A11EFAF8D7990762E951A.roa
Signing time: Wed 26 Feb 2025 14:04:38 +0000
ROA not before: Wed 26 Feb 2025 14:04:35 +0000
ROA not after: Thu 19 Feb 2026 14:04:35 +0000
asID: 984
IP address blocks: 156.231.167.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 78731 (0x1338b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Feb 26 14:04:35 2025 GMT
Not After : Feb 19 14:04:35 2026 GMT
Subject: CN=67bf1f76-1ef1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:e0:b7:19:14:0f:59:2e:d3:6a:1a:c8:4c:37:
d3:c8:8c:39:15:4f:aa:c3:1f:d1:50:96:71:0b:7f:
16:24:45:05:33:5e:7a:1b:2f:e9:c8:cf:47:cf:08:
6a:37:9e:a4:59:7d:bb:97:21:c2:5e:25:c7:5d:b5:
55:27:f4:d4:cf:96:83:43:bb:6d:cc:76:9e:81:e1:
25:39:c7:cc:60:0f:24:ec:e3:e8:f0:16:11:4b:01:
10:89:6a:60:f4:0d:35:eb:ec:7b:b2:a8:91:b8:16:
de:b4:44:98:7d:08:7d:a8:c5:a4:bf:86:d3:b8:48:
9a:40:74:93:07:83:4f:07:78:cb:d6:57:b8:ed:67:
af:07:a7:94:21:e7:08:13:fc:bf:c8:28:7a:02:41:
02:21:cc:03:35:27:bd:99:17:50:eb:a5:22:66:eb:
2a:c5:57:97:dd:9f:d6:d7:7a:48:f0:95:b0:74:fb:
c2:1b:b4:c6:16:c3:52:03:3f:2f:cd:a4:9c:b1:01:
e7:91:76:2b:45:89:fe:f2:5d:33:56:0b:9d:5a:31:
79:a0:9d:02:f8:e7:75:2f:cd:3e:e5:84:e3:f0:0a:
0f:e6:ad:9e:6b:5f:e2:40:90:cf:f1:3b:69:0c:bc:
42:57:c2:f4:75:ab:00:e8:8b:e4:fd:08:a1:7b:01:
83:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:F2:DC:59:34:0D:1F:F8:AE:AE:C2:12:D7:CE:CA:FA:41:3D:7C:AE
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9DA47F86F44A11EFAF8D7990762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.231.167.0/24
Signature Algorithm: sha256WithRSAEncryption
16:1b:50:d9:73:e2:21:fd:ab:64:b0:94:d1:80:35:e1:97:f5:
df:b4:49:e4:85:69:93:f6:92:14:af:4d:11:61:88:d8:b4:8f:
5d:e4:4d:2a:a0:d6:5f:39:e8:bd:65:d1:0b:54:c5:89:1a:5b:
7d:a7:f3:78:6b:cf:0d:42:52:99:74:59:dc:6a:68:09:72:dc:
41:34:86:db:7e:56:ff:67:e8:bb:2b:0b:bb:a2:14:d5:87:87:
1f:b0:f7:23:a1:af:a6:b6:16:43:2c:52:33:a3:ef:d9:15:cc:
39:88:bd:a3:05:ad:44:af:da:cb:52:97:07:20:7d:49:41:c1:
2c:3b:38:1b:e4:29:81:62:75:94:84:6a:22:ef:a7:42:bf:57:
84:77:26:11:2e:13:e1:4a:77:86:91:e2:34:4d:ce:c2:f3:bd:
b7:6c:cd:7b:df:9f:a5:f9:f4:38:7b:e2:34:96:f8:59:be:13:
cf:89:24:a9:bc:23:9d:c4:2e:f2:8f:78:f3:d4:36:c6:b4:50:
7f:d5:ad:17:4a:11:c0:de:11:0e:3d:d0:21:2d:0b:cd:a6:a5:
48:81:fb:a3:f9:e6:fa:5f:37:96:8d:36:03:5c:e8:8f:2c:21:
4f:78:b8:f3:9d:82:74:ce:ab:b4:e2:7b:f3:9c:68:8a:65:12:
34:0e:f6:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 09:14:35 2025 by rpki-client