Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B535C466EAE511EFB8F8B164762E951A.roa
File: B535C466EAE511EFB8F8B164762E951A.roa (raw, json)
Hash identifier: Q9JK3AZ2UnVhyhcGcwclWRKw0eqGXZU73rR9E3sCd50=
Subject key identifier: 2B:6E:39:57:67:AD:FE:66:CE:20:C0:BC:65:EA:81:92:32:3A:33:B8
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01234D
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B535C466EAE511EFB8F8B164762E951A.roa
Signing time: Fri 14 Feb 2025 15:09:38 +0000
ROA not before: Fri 14 Feb 2025 15:09:34 +0000
ROA not after: Sun 04 May 2025 15:09:34 +0000
asID: 149440
IP address blocks: 156.236.76.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 74573 (0x1234d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Feb 14 15:09:34 2025 GMT
Not After : May 4 15:09:34 2025 GMT
Subject: CN=67af5cb2-473a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:06:f0:33:7a:31:1f:64:ef:85:11:d8:d4:59:
79:c6:a6:02:f6:09:32:cf:43:5a:d2:c7:fc:93:7e:
8a:37:f7:d1:10:ba:26:2c:ef:b4:ee:b2:05:d0:51:
35:8e:ea:dd:56:48:b8:50:77:2b:d8:ca:eb:0d:eb:
f1:e0:c2:9b:46:de:36:66:e9:3f:7b:37:20:3d:a2:
88:6d:32:5e:04:27:6c:64:9b:aa:e1:73:e3:d1:6f:
c0:d6:ad:9e:60:cb:b4:4a:af:c4:7e:f3:ca:d7:22:
c7:c3:f9:77:54:40:29:44:f8:a9:fa:39:42:22:8e:
44:1d:e5:ab:08:66:f0:fe:0d:65:af:2a:69:77:ee:
ea:6f:1d:e9:e6:93:70:aa:ab:1b:ae:97:0c:da:4b:
14:e7:f0:c1:b6:7e:0f:dc:96:d4:cb:1a:be:17:ca:
95:b3:eb:38:63:11:5f:c7:7d:cc:9f:3a:7a:73:bb:
68:79:1b:13:ee:58:76:ed:8a:0e:76:cb:f0:04:0f:
7f:31:7c:60:0d:28:34:cb:a2:ce:8f:c3:18:4b:c2:
34:74:a7:01:00:f6:fd:ae:be:be:85:72:78:4c:c3:
bb:86:ea:e0:59:ee:3d:c9:4b:57:c6:58:e8:4d:ad:
f6:4e:01:e4:9b:e5:4f:c4:93:98:26:b9:28:6b:37:
eb:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:6E:39:57:67:AD:FE:66:CE:20:C0:BC:65:EA:81:92:32:3A:33:B8
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B535C466EAE511EFB8F8B164762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.236.76.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:91:bc:d2:b3:8c:a0:0d:27:11:7f:4c:bf:90:66:22:7c:cf:
66:fa:ff:5f:52:75:0c:69:af:e3:46:dd:d3:34:b9:15:61:96:
7f:8d:9c:26:99:a6:3c:b3:48:15:b2:7a:4d:3b:35:80:c8:61:
57:ce:72:d6:0f:2a:0f:f9:d7:b4:b0:e7:22:ff:70:a2:f5:41:
90:79:16:01:da:db:c3:37:96:30:31:60:ec:3d:88:1b:18:a2:
42:a5:70:b0:1d:7c:4b:ab:f5:81:67:5e:a4:d5:67:6d:ac:d5:
5f:50:a0:a5:1e:ee:ca:47:cd:9c:90:33:69:d4:49:ec:9b:2c:
49:c6:f4:d0:3d:9e:38:af:9d:eb:a1:ad:b0:30:9b:c3:aa:2a:
f9:42:14:5a:c4:a0:36:03:43:83:c6:e5:6b:a7:e5:97:80:cd:
3d:41:cc:90:32:7f:c1:5b:69:00:45:04:1b:b7:7f:86:78:1f:
98:7f:49:30:02:97:08:b7:44:53:64:8a:e1:1d:e3:4c:c3:4b:
9c:64:7b:dc:d1:af:bd:52:37:c9:27:1a:43:10:c5:2d:be:77:
32:5d:ee:43:65:89:b1:33:ba:af:6e:47:e6:e4:6e:1d:4a:fc:
3b:af:a5:6c:63:38:c2:2d:9a:ce:d0:5d:c0:20:d3:27:24:eb:
e5:92:c4:2e
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDASNNMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjUwMjE0MTUwOTM0WhcNMjUwNTA0MTUwOTM0WjAYMRYw
FAYDVQQDEw02N2FmNWNiMi00NzNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAowbwM3oxH2TvhRHY1Fl5xqYC9gkyz0Na0sf8k36KN/fRELomLO+07rIF
0FE1jurdVki4UHcr2MrrDevx4MKbRt42Zuk/ezcgPaKIbTJeBCdsZJuq4XPj0W/A
1q2eYMu0Sq/EfvPK1yLHw/l3VEApRPip+jlCIo5EHeWrCGbw/g1lryppd+7qbx3p
5pNwqqsbrpcM2ksU5/DBtn4P3JbUyxq+F8qVs+s4YxFfx33Mnzp6c7toeRsT7lh2
7YoOdsvwBA9/MXxgDSg0y6LOj8MYS8I0dKcBAPb9rr6+hXJ4TMO7hurgWe49yUtX
xljoTa32TgHkm+VPxJOYJrkoazfrawIDAQABo4ICojCCAp4wHQYDVR0OBBYEFCtu
OVdnrf5mziDAvGXqgZIyOjO4MB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC9CNTM1QzQ2NkVBRTUxMUVGQjhGOEIxNjQ3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnOxMMA0GCSqGSIb3DQEBCwUA
A4IBAQCdkbzSs4ygDScRf0y/kGYifM9m+v9fUnUMaa/jRt3TNLkVYZZ/jZwmmaY8
s0gVsnpNOzWAyGFXznLWDyoP+de0sOci/3Ci9UGQeRYB2tvDN5YwMWDsPYgbGKJC
pXCwHXxLq/WBZ16k1WdtrNVfUKClHu7KR82ckDNp1EnsmyxJxvTQPZ44r53roa2w
MJvDqir5QhRaxKA2A0ODxuVrp+WXgM09QcyQMn/BW2kARQQbt3+GeB+Yf0kwApcI
t0RTZIrhHeNMw0ucZHvc0a+9UjfJJxpDEMUtvncyXe5DZYmxM7qvbkfm5G4dSvw7
r6VsYzjCLZrO0F3AINMnJOvlksQu
-----END CERTIFICATE-----
Generated at Sat Apr 5 09:18:04 2025 by rpki-client