Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D7D76182F2D811EF943001AB762E951A.roa
File: D7D76182F2D811EF943001AB762E951A.roa (raw, json)
Hash identifier: ZOEWfNNPEmMnU6SD+AZHXK3ntthCdX5a6zRlc6i9Nqw=
Subject key identifier: 38:0C:3F:BB:B1:EA:21:60:64:69:2C:9A:81:9D:E4:D1:DE:D1:B3:89
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 012D11
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D7D76182F2D811EF943001AB762E951A.roa
Signing time: Mon 24 Feb 2025 17:57:42 +0000
ROA not before: Mon 24 Feb 2025 17:57:38 +0000
ROA not after: Sat 29 Mar 2025 17:57:38 +0000
asID: 203020
IP address blocks: 156.233.4.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 77073 (0x12d11)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Feb 24 17:57:38 2025 GMT
Not After : Mar 29 17:57:38 2025 GMT
Subject: CN=67bcb316-0ee4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:c6:2a:6c:7c:45:bb:77:41:1f:40:d9:90:29:
2b:07:be:9b:3b:b0:64:9d:2f:5f:8a:f7:4c:51:2d:
03:e6:98:d1:91:69:6f:83:b5:ef:36:37:02:0f:e4:
9e:8c:ff:2e:77:1e:63:41:5e:63:5b:da:7d:5e:b0:
56:a6:5c:0f:c5:c0:03:c5:17:4f:4f:a8:70:11:7b:
14:b4:f6:b0:02:69:32:f5:7c:29:70:47:90:dc:4d:
fa:d5:c6:f3:d7:02:b1:78:02:1f:ed:a3:dd:66:d1:
60:95:c1:d8:4d:f9:5a:ff:62:ef:6e:62:cb:28:c0:
34:69:5c:10:32:ea:54:ee:d6:29:18:f8:ea:9f:0f:
c4:3f:5b:01:94:31:90:75:3b:f8:eb:19:2f:1f:d5:
e3:7b:33:2f:33:5a:b2:6e:09:f0:d4:c5:f2:6a:a6:
e3:97:be:95:07:ad:1f:3c:d3:68:e3:56:33:44:32:
51:65:e4:1f:08:2e:69:e5:cb:9d:29:52:04:6d:db:
51:73:7a:e6:43:73:31:c2:61:5e:02:1a:cd:81:c2:
2a:cd:0d:ee:e0:42:87:c4:36:8c:a7:eb:6e:49:0a:
66:be:86:3c:bd:71:ec:f5:4e:c8:b1:7b:fc:91:29:
47:8b:dd:63:d0:42:e9:e3:6a:03:ff:ae:9f:6e:70:
1c:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:0C:3F:BB:B1:EA:21:60:64:69:2C:9A:81:9D:E4:D1:DE:D1:B3:89
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D7D76182F2D811EF943001AB762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.233.4.0/22
Signature Algorithm: sha256WithRSAEncryption
0c:3a:81:53:ad:8f:47:72:75:f6:e5:75:2a:7e:6a:ef:3c:4c:
d4:6d:c4:3d:47:d9:67:ee:14:c6:f1:1d:af:92:69:c2:cb:57:
38:04:30:bb:5e:fa:8b:ff:56:11:7a:ff:cd:2b:6a:42:ac:3c:
76:f0:d5:bc:e6:99:a6:ae:7c:bb:de:7b:fb:eb:39:8c:a6:de:
56:f8:dc:a3:0c:73:b8:c8:db:4c:ff:28:8d:7b:c1:83:39:59:
60:29:6d:80:a3:f6:5c:5d:56:e1:a4:ec:68:f1:c7:0f:5f:6c:
44:f6:3b:7a:06:67:f0:24:8c:10:9c:0a:e9:7e:5f:89:71:17:
49:da:08:79:73:d4:36:f2:e7:d3:79:6d:79:0b:31:1a:ec:b6:
ba:6a:4b:da:47:b0:69:9a:ca:fd:33:47:73:a2:39:48:95:e9:
d3:48:cc:19:16:55:51:03:9e:9b:06:e5:82:10:c1:ed:75:72:
33:9a:21:a3:dc:b4:ed:34:79:ee:5f:2f:4b:cd:be:b7:72:e2:
48:07:15:c0:41:98:58:a6:ea:2f:4a:c0:d7:cd:fc:ac:7a:a3:
62:3f:0e:ef:d3:04:f8:10:4a:99:ac:47:da:46:6c:fe:1a:eb:
f7:e6:41:78:0e:cc:18:28:2a:ee:48:8b:72:cc:aa:d5:20:8b:
d7:1a:ba:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 05:09:23 2025 by rpki-client