Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D16A97F2F5C511EF89A73D4A762E951A.roa
File: D16A97F2F5C511EF89A73D4A762E951A.roa (raw, json)
Hash identifier: pmoc3011bAW7ycUXQIx8eWkNjRf/ovsYbCCl5MoTGtI=
Subject key identifier: 44:49:D9:7A:F5:65:D7:D7:66:A2:B2:88:D1:B1:BA:3B:65:7F:14:E1
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 013D2B
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D16A97F2F5C511EF89A73D4A762E951A.roa
Signing time: Fri 28 Feb 2025 11:19:05 +0000
ROA not before: Fri 28 Feb 2025 11:18:59 +0000
ROA not after: Sun 30 Mar 2025 11:18:59 +0000
asID: 138995
IP address blocks: 45.192.221.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 81195 (0x13d2b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Feb 28 11:18:59 2025 GMT
Not After : Mar 30 11:18:59 2025 GMT
Subject: CN=67c19ba9-1574
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:83:99:48:de:b6:b5:a2:5f:3c:0d:b6:f4:45:
6a:03:0a:39:f2:ed:d3:40:48:05:22:b4:f6:c7:23:
85:02:1a:40:ab:d7:8d:89:75:2b:87:07:98:98:4d:
00:f7:46:fd:c7:ab:ca:50:2f:5d:a8:68:19:d6:5e:
72:1e:96:48:44:73:da:96:24:3e:85:94:92:c0:50:
6e:6a:ee:fc:a3:37:60:63:1c:2b:1d:0f:6b:3f:8c:
1b:41:f6:65:b5:29:61:bb:33:69:ef:02:e5:8f:21:
9d:35:6a:02:40:c2:c6:d7:5f:00:7f:41:00:80:9a:
45:75:19:e2:e4:86:e0:93:58:07:1d:3d:fe:49:1c:
cb:2e:da:a8:de:ac:a9:55:6b:4b:66:4d:d5:d5:0f:
58:df:36:d7:23:e3:65:bf:fd:4b:fe:01:0f:56:9b:
47:a6:14:cc:59:dc:2c:2b:4a:10:af:28:44:d2:78:
f5:51:0b:39:57:cb:f2:d4:a6:d6:30:06:2f:37:87:
b2:f2:80:2e:85:f6:6d:cb:2a:84:78:18:ea:ad:2a:
68:7d:6e:2b:2a:70:ad:b0:fc:e0:e0:bc:41:8d:94:
d4:78:f3:f6:d2:54:16:aa:c2:ac:26:8c:16:0a:fc:
e1:55:a0:6b:28:8e:52:49:ae:d1:e9:99:cf:81:57:
23:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:49:D9:7A:F5:65:D7:D7:66:A2:B2:88:D1:B1:BA:3B:65:7F:14:E1
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D16A97F2F5C511EF89A73D4A762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.192.221.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:99:42:23:ac:c1:e9:b8:d6:4b:67:14:80:31:02:04:ca:e9:
e1:5d:7a:0a:21:7e:37:05:8c:c8:65:41:11:21:3e:08:c1:62:
ef:7b:98:b1:e4:a5:7c:79:86:d6:49:f1:c3:15:ba:46:3a:9f:
fa:70:2b:52:44:ac:87:07:c5:a1:e1:ff:6d:83:a5:d3:8d:07:
cf:71:f7:b5:47:e2:c3:7a:02:09:66:9f:f6:d9:16:67:c2:05:
32:2c:a5:ec:3d:45:75:1f:9e:00:42:6e:ae:b8:c7:e8:9b:be:
d9:5d:d5:44:e2:38:b4:88:68:7e:8b:36:7c:11:aa:23:18:9e:
af:db:71:6d:ec:1f:89:ae:41:2d:6f:ae:6a:f9:f9:ce:b2:c5:
6a:60:03:5f:c0:e4:32:1b:f8:5e:8c:34:0c:a1:47:cf:96:d7:
d0:fe:db:8c:f8:6c:e9:2f:15:52:74:03:6a:55:58:e9:89:2e:
f1:b1:13:85:94:c1:ef:e9:b0:c3:3e:62:65:55:02:65:e7:66:
42:44:78:21:c4:59:92:f6:3f:e9:27:f6:31:d6:dd:63:f7:ce:
39:9c:20:1f:5c:e6:b8:64:ab:ae:84:fd:c1:5d:b6:d6:dc:6e:
f0:1b:cf:48:27:ea:cc:56:34:7a:bd:73:11:99:93:52:aa:f4:
8b:80:c7:ff
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAT0rMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjUwMjI4MTExODU5WhcNMjUwMzMwMTExODU5WjAYMRYw
FAYDVQQDEw02N2MxOWJhOS0xNTc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAvIOZSN62taJfPA229EVqAwo58u3TQEgFIrT2xyOFAhpAq9eNiXUrhweY
mE0A90b9x6vKUC9dqGgZ1l5yHpZIRHPaliQ+hZSSwFBuau78ozdgYxwrHQ9rP4wb
QfZltSlhuzNp7wLljyGdNWoCQMLG118Af0EAgJpFdRni5Ibgk1gHHT3+SRzLLtqo
3qypVWtLZk3V1Q9Y3zbXI+Nlv/1L/gEPVptHphTMWdwsK0oQryhE0nj1UQs5V8vy
1KbWMAYvN4ey8oAuhfZtyyqEeBjqrSpofW4rKnCtsPzg4LxBjZTUePP20lQWqsKs
JowWCvzhVaBrKI5SSa7R6ZnPgVcj7wIDAQABo4ICojCCAp4wHQYDVR0OBBYEFERJ
2Xr1ZdfXZqKyiNGxujtlfxThMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC9EMTZBOTdGMkY1QzUxMUVGODlBNzNENEE3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALcDdMA0GCSqGSIb3DQEBCwUA
A4IBAQBemUIjrMHpuNZLZxSAMQIEyunhXXoKIX43BYzIZUERIT4IwWLve5ix5KV8
eYbWSfHDFbpGOp/6cCtSRKyHB8Wh4f9tg6XTjQfPcfe1R+LDegIJZp/22RZnwgUy
LKXsPUV1H54AQm6uuMfom77ZXdVE4ji0iGh+izZ8EaojGJ6v23Ft7B+JrkEtb65q
+fnOssVqYANfwOQyG/hejDQMoUfPltfQ/tuM+GzpLxVSdANqVVjpiS7xsROFlMHv
6bDDPmJlVQJl52ZCRHghxFmS9j/pJ/Yx1t1j9845nCAfXOa4ZKuuhP3BXbbW3G7w
G89IJ+rMVjR6vXMRmZNSqvSLgMf/
-----END CERTIFICATE-----
Generated at Fri Apr 11 10:05:06 2025 by rpki-client