Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/AAF78A90F35811EF99BC5F96762E951A.roa
File: AAF78A90F35811EF99BC5F96762E951A.roa (raw, json)
Hash identifier: RAmU2aOmBJRkeZ1lrGY9JmYUVsQp91E88rK9DOkEGdU=
Subject key identifier: EF:63:D7:51:69:17:F0:9E:7A:C9:9C:18:85:AF:26:1D:31:05:85:B9
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 012E00
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/AAF78A90F35811EF99BC5F96762E951A.roa
Signing time: Tue 25 Feb 2025 09:12:42 +0000
ROA not before: Tue 25 Feb 2025 09:12:38 +0000
ROA not after: Sat 19 Feb 2028 09:12:38 +0000
asID: 17561
IP address blocks: 156.249.253.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 77312 (0x12e00)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Feb 25 09:12:38 2025 GMT
Not After : Feb 19 09:12:38 2028 GMT
Subject: CN=67bd898a-905e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:2d:94:78:01:64:4d:41:03:ef:54:ff:74:d3:
b3:8b:d2:5f:e5:51:2f:b1:d8:e6:b9:b6:86:7e:68:
86:99:d3:5a:4b:d8:b0:b4:a4:37:da:25:1a:38:43:
86:b4:d7:48:6c:13:f1:46:0a:4d:35:4a:9b:b7:64:
c6:09:8a:03:cc:51:82:51:22:ec:cd:16:e3:60:50:
7c:88:e1:36:b3:70:4e:2b:66:d3:5d:74:18:02:a8:
d0:32:e6:5e:55:a0:9f:fe:ac:2d:88:33:f2:b2:02:
a7:34:69:2f:c0:9c:1d:23:b0:9a:38:55:b6:ec:65:
f6:06:15:8b:13:52:82:84:eb:93:a8:33:ab:90:a8:
2f:2b:f5:b5:8a:f9:d1:be:02:32:3e:13:54:93:e5:
4c:3b:1f:b1:b9:1f:1f:3d:89:0e:8e:ff:0a:1e:91:
e1:74:e5:88:5f:8e:d5:2d:2c:6f:d0:0c:84:3e:3d:
32:a7:c0:1c:a6:81:fc:ea:70:ad:e5:f9:5e:05:e9:
74:d1:20:d2:fb:ea:b7:2b:32:a2:4b:77:d6:d1:fe:
b5:d0:b2:5e:18:e1:79:90:ba:46:43:ff:aa:2c:4e:
4c:03:76:5b:6b:97:65:56:88:2c:65:34:72:59:8d:
7e:e3:d0:01:bf:a5:d5:6a:7d:3b:3f:97:a7:7d:2f:
bd:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:63:D7:51:69:17:F0:9E:7A:C9:9C:18:85:AF:26:1D:31:05:85:B9
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/AAF78A90F35811EF99BC5F96762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.249.253.0/24
Signature Algorithm: sha256WithRSAEncryption
52:86:c2:fa:22:7c:ec:c0:42:10:78:c4:e2:c0:26:3d:e8:84:
4a:d1:9c:c0:f4:14:df:9a:61:2a:44:a6:4e:25:c8:ff:70:a1:
61:01:81:24:03:fc:8d:c9:ac:73:68:ff:c1:85:6f:81:11:b4:
eb:b8:bc:31:e1:99:85:e1:be:3a:90:97:30:3b:ec:84:55:6f:
a3:af:e8:c5:cf:9e:1f:22:69:34:cf:1e:f2:34:a4:46:31:6e:
73:34:b5:ea:e3:1d:d2:2a:5a:b8:7e:23:7d:44:a6:c1:92:ec:
6d:fb:f4:5b:7a:b1:c3:46:4b:88:54:c2:bf:6e:96:d5:8a:fc:
12:ad:04:8f:92:5f:f7:61:a6:ca:65:c9:51:ee:32:c2:0d:66:
d4:01:29:f7:59:c4:f5:81:68:e9:a6:a5:d7:09:85:64:f5:a9:
a0:8b:b4:07:bc:b2:be:75:fd:9f:a3:65:f7:e1:60:d9:85:8d:
91:3e:b1:54:03:75:73:11:b7:74:05:3b:e6:4f:33:3c:e0:3a:
47:d0:b5:6e:40:2e:d8:d5:9f:73:a4:f8:88:95:7a:ad:e0:be:
03:05:ca:52:8b:47:7e:e6:0c:d1:e4:45:33:73:b5:a5:af:a7:
95:0c:89:f5:3a:89:c8:fe:f0:70:74:60:bd:e9:58:5c:9a:04:
d9:f2:60:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 09:27:18 2025 by rpki-client