Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DD90AFDCE54711EFB4B45158762E951A.roa
File: DD90AFDCE54711EFB4B45158762E951A.roa (raw, json)
Hash identifier: swRsz1+cDz4744H/K8TdCdbY4s83YR7ihSZZ9Ctp384=
Subject key identifier: 89:F0:17:68:01:0F:89:37:FF:C1:1F:C0:59:CC:AB:CE:49:FB:C7:53
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 011D43
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DD90AFDCE54711EFB4B45158762E951A.roa
Signing time: Fri 07 Feb 2025 11:37:11 +0000
ROA not before: Fri 07 Feb 2025 11:36:56 +0000
ROA not after: Sat 13 Dec 2025 11:36:56 +0000
asID: 984
IP address blocks: 156.230.185.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 73027 (0x11d43)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Feb 7 11:36:56 2025 GMT
Not After : Dec 13 11:36:56 2025 GMT
Subject: CN=67a5f067-d9d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:a3:55:fb:f8:99:43:32:be:12:49:8d:17:09:
83:e4:2e:cd:8d:e8:fa:3b:85:4c:8e:1d:09:b0:d9:
16:56:16:64:f1:34:d1:e3:ba:bb:0e:17:23:6f:9d:
03:ff:6b:54:11:ac:7f:77:c1:9e:22:c5:f7:af:84:
94:7f:5c:77:ec:12:18:a4:ce:42:36:5c:c3:cd:ae:
5f:20:d6:ef:af:04:dc:cd:a3:70:93:a4:68:43:73:
ac:3e:37:f5:38:be:9a:f5:aa:da:4b:8a:17:bd:63:
0d:92:2e:97:1c:97:06:df:79:60:aa:dd:58:11:fa:
39:66:07:3c:2d:fa:6e:2d:54:a5:cc:19:b8:20:40:
ca:e3:a2:da:8f:5b:c4:95:a8:dc:b9:8f:52:87:0b:
90:77:53:3c:82:26:4b:c6:34:62:fa:5a:98:a8:2b:
dd:c2:80:af:3f:cf:20:e5:ae:92:ed:2b:88:d8:f6:
bf:36:0a:7d:de:0d:19:b6:23:e9:a8:2d:59:6a:a5:
4d:86:77:79:81:5b:e9:fa:1b:68:04:b5:75:06:39:
48:90:0b:dc:27:0e:c6:da:3d:e2:53:1b:f7:59:f2:
b8:19:ac:6e:6d:ee:c0:36:2e:a7:de:34:49:9d:0e:
dd:50:cb:ed:b9:fb:15:c3:38:48:35:9c:71:cc:8c:
29:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:F0:17:68:01:0F:89:37:FF:C1:1F:C0:59:CC:AB:CE:49:FB:C7:53
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DD90AFDCE54711EFB4B45158762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.230.185.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:e5:cd:57:4f:15:3f:d2:af:a9:9d:35:dc:f4:cd:38:4a:99:
16:14:f5:98:1e:3d:b8:8b:b2:c8:cd:35:c1:05:f4:d4:38:aa:
d4:66:0f:44:bc:2f:78:99:5d:ac:55:fe:c1:f9:a3:d8:11:97:
5c:10:7a:69:8e:6b:5c:42:25:b9:36:99:43:d4:48:c7:06:89:
0f:b9:04:c0:cd:a4:d1:db:2c:c5:c5:c7:4c:01:d7:2a:ae:e1:
c7:1b:1e:28:88:0c:75:af:ff:7c:99:e1:4b:38:41:66:28:bd:
8d:79:32:31:2a:48:7f:09:f2:bb:d5:db:a7:9f:2b:41:fc:75:
4b:a8:f4:82:32:ca:70:df:cd:2d:21:2b:9b:31:4c:e6:53:c6:
27:d1:14:40:24:2c:6d:fd:71:bf:77:a6:c3:33:6a:d7:36:d8:
e8:f5:e8:b6:ce:9d:0b:43:78:2e:69:07:df:df:d9:0c:a5:09:
13:e5:ea:d0:4b:4d:c8:72:8a:25:78:55:28:44:c1:fd:62:13:
7d:d6:15:83:8c:ec:de:ee:c2:05:9e:46:30:62:9d:f7:71:c6:
b1:1a:fa:d4:bd:48:fd:19:b8:42:68:24:a4:97:8e:6e:f4:0d:
a2:7b:ac:e3:7c:f9:f6:61:2c:cd:5e:9c:d5:b6:80:10:d3:b9:
60:1f:68:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 09:09:03 2025 by rpki-client