Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/AB2A09E6F80A11EFA6A750BC762E951A.roa
File: AB2A09E6F80A11EFA6A750BC762E951A.roa (raw, json)
Hash identifier: iDQSMhGkuZ1BKfAFZDG16jADptUuWdKQZ3p11W7iCQs=
Subject key identifier: 21:93:8C:A3:3F:4A:4B:18:13:92:85:1B:83:45:77:AB:09:CE:08:D5
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0140CD
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/AB2A09E6F80A11EFA6A750BC762E951A.roa
Signing time: Mon 03 Mar 2025 08:36:58 +0000
ROA not before: Mon 03 Mar 2025 08:36:54 +0000
ROA not after: Mon 21 Apr 2025 08:36:54 +0000
asID: 63139
IP address blocks: 156.229.51.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 82125 (0x140cd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Mar 3 08:36:54 2025 GMT
Not After : Apr 21 08:36:54 2025 GMT
Subject: CN=67c56a2a-4ed8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:c5:62:93:60:24:ca:ea:91:66:24:f0:e2:8d:
af:77:0e:e9:b8:73:fc:11:bf:94:c4:50:14:0e:53:
7b:4f:75:a3:ff:8c:0a:67:c4:3b:2d:a9:a6:f8:3e:
0f:38:85:76:36:d9:a8:e4:a1:f2:60:ec:0a:d4:76:
1c:a7:5a:ce:6e:3a:f9:1a:4c:ec:48:24:e4:6b:ad:
c4:b3:ea:28:d3:9b:e8:30:29:61:c3:ef:5f:fe:8c:
76:30:78:ee:ee:8b:c0:c9:48:8f:83:84:25:ce:99:
bc:bd:8f:f5:f1:6a:6e:0c:03:d3:47:99:1e:7a:39:
49:17:53:f5:88:b3:f1:79:f4:13:04:87:95:cd:54:
9f:d1:03:3c:f4:42:02:fc:05:8b:e4:55:01:44:95:
71:d3:58:39:77:42:ca:95:d9:01:c2:9f:78:96:d2:
63:0f:c3:4f:9a:e4:43:2f:bd:78:b3:f8:95:71:14:
bf:6c:01:bb:c1:ec:88:0f:8b:9c:1c:1b:39:8b:1f:
e2:2c:24:d0:f8:db:2f:d9:9e:a0:b0:c5:b3:85:98:
eb:57:b8:38:94:1e:04:2a:00:b8:4c:73:b8:d8:a6:
e1:b2:c6:12:4c:97:9a:13:0a:a4:2c:bf:e9:0f:78:
86:61:16:fc:f7:a5:33:d1:57:82:08:bc:b2:06:4b:
ee:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:93:8C:A3:3F:4A:4B:18:13:92:85:1B:83:45:77:AB:09:CE:08:D5
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/AB2A09E6F80A11EFA6A750BC762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.229.51.0/24
Signature Algorithm: sha256WithRSAEncryption
49:7e:0d:7d:74:79:f3:09:d1:df:8b:84:03:52:ea:50:a1:35:
f1:b5:ca:0b:da:13:d5:0b:fa:46:7a:b0:12:a2:64:da:01:25:
60:d0:08:4f:a2:af:d9:c5:12:62:0a:0b:c5:ec:36:06:59:86:
de:01:14:4b:af:0d:c6:49:3b:35:9e:15:27:33:99:ad:e6:56:
1c:eb:d8:00:59:1e:41:08:d2:ad:36:ed:21:8b:eb:d0:d1:b3:
16:f0:c2:27:4d:23:5e:ce:5f:ce:7c:a4:05:6d:d0:56:75:26:
c3:ba:cb:17:a8:99:dc:94:fd:fa:94:3d:12:43:3b:cf:f6:f3:
33:bd:bd:2b:2e:e5:8e:f2:a0:1a:40:b2:1c:b8:e5:d5:82:e4:
25:60:55:6b:c7:31:ee:6d:6c:e9:61:aa:e5:11:3d:43:25:9f:
8c:c4:a6:c2:0c:e3:7d:85:7d:ad:d1:7d:48:26:d4:f3:49:06:
cd:c8:7d:06:97:cc:0d:be:25:58:aa:cd:bc:13:7c:84:b3:2a:
65:ab:9c:ae:97:00:95:3f:85:e6:88:79:ec:3c:03:81:27:08:
a7:55:6d:61:24:6f:ed:57:b6:00:0c:2c:7b:35:b5:eb:97:1a:
42:05:e3:93:0a:89:2f:f0:90:42:86:20:f4:fc:18:c3:a8:41:
92:46:72:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 09:25:03 2025 by rpki-client