Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DD6E95F6F41E11EFBE184D5D762E951A.roa
File: DD6E95F6F41E11EFBE184D5D762E951A.roa (raw, json)
Hash identifier: azce4zvEIegEnT9Y4HEE8QYVWpz5YEGDoQmKnHNoRuo=
Subject key identifier: 85:19:05:2B:B3:D2:FA:6C:5C:DE:43:AA:5C:71:61:A2:96:88:70:71
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 013027
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DD6E95F6F41E11EFBE184D5D762E951A.roa
Signing time: Wed 26 Feb 2025 08:51:27 +0000
ROA not before: Wed 26 Feb 2025 08:51:24 +0000
ROA not after: Thu 19 Feb 2026 08:51:24 +0000
asID: 984
IP address blocks: 156.252.32.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 77863 (0x13027)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Feb 26 08:51:24 2025 GMT
Not After : Feb 19 08:51:24 2026 GMT
Subject: CN=67bed60f-0aad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:59:4a:2c:9f:f1:58:86:63:8f:88:8b:19:67:
55:ac:26:f1:d7:31:1f:20:bf:ff:d7:b9:87:2d:0a:
71:de:41:c6:43:e6:28:0e:0e:f8:d9:9d:62:0e:41:
32:58:39:8c:b7:00:16:af:71:3e:7b:25:d4:78:b1:
60:eb:0d:09:50:a1:68:e7:8c:16:24:92:e1:8f:14:
fa:5f:5b:d2:2d:3e:9c:7e:03:aa:a3:2e:52:12:b2:
bd:45:2f:82:bd:86:33:81:33:ee:da:bd:37:1c:ef:
81:15:cd:84:3a:57:8e:38:16:7c:54:00:b9:fd:e8:
94:d2:7b:55:ab:be:09:38:2d:e2:91:59:df:40:37:
69:4a:60:67:24:15:21:a5:dd:d4:52:76:e4:99:eb:
ce:29:4f:06:ed:ac:9f:fc:7a:9d:c6:c1:38:51:58:
69:80:3f:d3:28:9a:5d:d3:2c:44:fc:3c:2e:d1:46:
a9:7a:d5:61:e2:bf:96:bf:e4:03:4f:e3:1f:4c:d2:
99:9a:ac:f3:e5:02:b3:5e:d7:af:e6:ce:e8:58:a3:
92:d4:0a:2a:6e:92:30:80:09:16:07:29:c0:28:09:
db:fb:5b:c5:fc:9d:fd:8b:46:13:53:22:5f:bf:46:
7f:b2:cd:85:8c:ff:ce:f9:87:0a:cf:e1:d4:c8:70:
77:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:19:05:2B:B3:D2:FA:6C:5C:DE:43:AA:5C:71:61:A2:96:88:70:71
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DD6E95F6F41E11EFBE184D5D762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.252.32.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:bb:f2:bb:53:bf:77:27:34:20:db:14:9b:a8:42:eb:9e:b2:
96:67:4a:4d:40:83:ff:de:97:2a:83:4d:aa:26:c9:83:fd:78:
76:4f:ab:bd:b6:98:aa:09:97:de:69:71:77:f1:20:e2:0d:d1:
ae:22:e7:75:05:47:b8:c5:09:9a:20:f7:c7:8d:d7:2c:29:4c:
0b:01:2f:8b:56:c3:44:3a:df:fd:9f:56:53:65:96:57:70:51:
dc:f4:7a:f1:54:e9:73:51:66:8d:4b:6b:bb:14:ae:0a:79:e9:
40:cb:d3:ec:e1:42:59:23:9e:07:00:b1:d5:db:c2:28:e1:77:
cf:b6:26:4c:fa:df:87:de:62:9a:29:04:e7:1a:b7:a4:1c:c5:
20:2d:8b:72:4e:10:9c:e5:96:fd:c9:03:a8:94:2a:48:04:ef:
28:ee:a5:d8:cc:40:9c:45:99:e2:d7:a9:b0:92:88:1f:22:83:
a4:73:11:05:9e:35:ce:a5:14:85:c4:ea:bd:02:eb:ce:8d:31:
06:0a:e5:00:af:a2:70:46:0b:c1:eb:c3:db:1b:45:3f:fa:1e:
62:17:3a:af:d4:6e:01:3d:3f:e1:97:72:dd:ee:e7:40:03:69:
54:82:da:99:f8:cc:82:05:af:be:5d:89:ed:04:d7:1f:32:86:
66:e2:94:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 09:22:41 2025 by rpki-client