Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DB928AE2F46B11EFBAF4F178762E951A.roa
File: DB928AE2F46B11EFBAF4F178762E951A.roa (raw, json)
Hash identifier: 1BJ+L379iWI8O2qdkc4o2o1HWd6xKiHpa5Koe65dmgw=
Subject key identifier: C3:53:80:3A:34:46:E7:3C:8B:F0:92:7D:B7:60:2B:E4:ED:E4:0A:06
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 013612
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DB928AE2F46B11EFBAF4F178762E951A.roa
Signing time: Wed 26 Feb 2025 18:02:35 +0000
ROA not before: Wed 26 Feb 2025 18:02:32 +0000
ROA not after: Thu 19 Feb 2026 18:02:32 +0000
asID: 984
IP address blocks: 156.228.188.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 79378 (0x13612)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Feb 26 18:02:32 2025 GMT
Not After : Feb 19 18:02:32 2026 GMT
Subject: CN=67bf573b-1398
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:b7:ff:9d:3f:19:2c:8d:09:3e:20:2d:c1:57:
e5:53:78:18:50:d9:99:3d:e6:57:e7:c2:b3:06:27:
c0:0a:7a:d8:80:37:1c:0a:82:4b:fc:6b:e6:b6:84:
c7:ce:b2:4d:41:a7:29:e5:13:9b:1c:a5:f3:e0:e0:
82:80:a5:15:d5:9c:17:dd:f7:1e:38:24:33:3c:ab:
8a:38:70:aa:fb:3b:6d:a8:ab:ba:b7:20:85:e1:f9:
b7:cd:98:41:d3:d8:63:71:87:60:8c:c3:a4:57:3f:
7e:f1:5e:09:61:1e:e5:64:f6:62:6d:54:7e:67:33:
7a:f2:47:11:a4:eb:9c:30:ab:9e:bf:df:c0:ec:03:
36:f7:35:21:b9:a7:2d:93:08:e0:96:f5:c5:df:af:
f6:98:44:b3:77:07:34:bd:e1:e2:4b:a0:94:78:c5:
7c:85:b2:cf:e6:6e:60:10:b7:44:9f:f5:9d:af:51:
53:23:fe:36:04:ee:94:6f:20:4e:2f:8f:29:cb:ec:
4d:5f:f7:e5:4b:0e:91:f7:bd:17:42:6b:87:67:2f:
38:3a:e9:bf:3a:b4:0b:bd:a1:92:aa:09:d9:63:27:
7e:cb:2e:08:77:29:d2:e8:c4:8f:58:5e:de:57:10:
89:cd:a2:52:28:be:99:1b:ce:78:06:23:99:60:c1:
bd:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:53:80:3A:34:46:E7:3C:8B:F0:92:7D:B7:60:2B:E4:ED:E4:0A:06
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DB928AE2F46B11EFBAF4F178762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.228.188.0/24
Signature Algorithm: sha256WithRSAEncryption
36:06:3b:8e:82:79:7b:bc:20:7e:90:9d:ed:ed:0b:60:6c:3e:
ca:bc:6e:3d:26:50:a6:91:12:57:df:9f:ff:55:90:3a:d3:f8:
42:f2:75:26:d9:16:e4:5e:26:48:80:a9:a8:dd:40:10:de:46:
a7:f6:cb:e0:49:69:ca:27:7a:6c:49:ce:3a:57:48:44:65:d3:
eb:65:ba:5f:52:a7:19:bd:d9:8f:ef:83:b5:28:12:9c:c2:3a:
86:22:72:2d:0b:a9:36:a8:7a:0c:9d:b5:96:69:a8:38:a6:ea:
c1:5d:78:0e:ff:af:78:cd:71:b7:a3:0d:10:2a:0e:1e:86:bb:
b9:71:15:03:b7:16:b2:75:3d:70:03:66:33:29:76:41:b6:7c:
45:20:6b:9d:22:ce:c3:e1:9d:b3:d6:4f:68:69:78:39:ca:0a:
7b:aa:5c:b3:a2:d1:ab:e4:ab:c2:cc:e5:5e:42:25:d6:93:66:
94:12:85:dd:57:b0:07:8a:7e:fa:52:01:ee:9f:d9:0c:77:33:
06:34:cf:9b:01:50:9d:97:c9:f1:a5:bb:62:40:7e:85:cd:ff:
43:b7:fa:87:0e:4b:77:5e:06:a4:3e:a0:dd:12:5f:54:9e:90:
97:24:ab:a2:9e:04:76:e0:ea:6f:fb:a8:08:bd:c2:4d:2c:c3:
4d:79:4b:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 07:46:07 2025 by rpki-client