Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F416AC1CF36011EF8B5A3A4D762E951A.roa
File: F416AC1CF36011EF8B5A3A4D762E951A.roa (raw, json)
Hash identifier: yvwIc5hH4XN3K04wy1mnwimb13Opt+ZscJCtl1xa3wM=
Subject key identifier: 7C:D3:6E:78:DB:F7:86:2D:75:AA:65:8C:43:D8:7E:44:25:72:F2:70
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 012E14
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F416AC1CF36011EF8B5A3A4D762E951A.roa
Signing time: Tue 25 Feb 2025 10:12:01 +0000
ROA not before: Tue 25 Feb 2025 10:11:57 +0000
ROA not after: Wed 09 Apr 2025 10:11:57 +0000
asID: 63139
IP address blocks: 45.197.72.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 77332 (0x12e14)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Feb 25 10:11:57 2025 GMT
Not After : Apr 9 10:11:57 2025 GMT
Subject: CN=67bd9771-0a97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:01:52:2d:98:44:46:bc:db:79:03:3d:46:5e:
06:84:1f:92:db:42:ab:d7:5b:06:0d:b7:03:b0:fb:
81:5c:2b:d2:cc:52:5e:97:ed:e4:22:4c:2a:4f:f3:
34:bc:97:7b:e4:87:ec:0c:d1:4d:c4:48:75:c2:c8:
53:ee:d2:34:22:e1:35:50:c7:e5:5a:62:cc:d7:b4:
3a:03:32:5d:5e:62:d8:4f:34:a3:14:ac:ed:f2:b3:
97:cf:d2:a6:a3:08:5b:1f:8b:fe:99:1b:44:63:09:
68:2e:0e:bf:bb:0b:c4:ba:1f:3f:7f:ac:08:46:af:
d8:46:7b:9d:13:ce:d8:6a:d4:7b:95:48:0b:b5:06:
68:12:bf:86:9c:b1:fe:0e:4d:e5:71:d4:74:48:df:
14:8b:4d:84:4d:67:33:4e:07:b8:e7:9e:23:00:3b:
e3:d6:d0:43:df:7a:c1:73:ff:dc:cc:2b:c6:f2:7d:
b1:5e:25:2a:01:b8:ba:37:a4:4a:b1:bd:ec:6b:44:
83:19:86:48:1c:52:d9:bc:a7:3d:4f:39:25:ae:62:
88:90:36:fa:3e:c6:2d:d4:af:3a:d1:2b:2b:cf:26:
d7:f0:af:7c:02:77:ef:28:7e:94:48:37:4e:d6:be:
ec:13:0a:d9:37:ce:3e:6d:bb:44:75:0e:3e:1a:04:
40:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:D3:6E:78:DB:F7:86:2D:75:AA:65:8C:43:D8:7E:44:25:72:F2:70
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F416AC1CF36011EF8B5A3A4D762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.197.72.0/24
Signature Algorithm: sha256WithRSAEncryption
15:c9:0f:7c:50:b0:6a:1e:bb:95:a4:b0:9e:c0:7b:64:cf:00:
0d:a7:c9:d9:3d:07:9e:43:73:99:af:a2:f0:38:61:4a:32:e0:
de:35:93:cb:ca:40:88:47:79:a8:e3:49:46:65:2e:93:69:40:
2c:c1:fb:62:ee:ec:0c:76:09:96:a7:b4:fb:a5:20:ca:fd:26:
a9:6f:e3:3c:b0:58:7f:32:bf:40:7c:97:21:e2:e8:df:ac:18:
5e:90:12:f7:a2:02:5b:be:d7:45:5e:ec:0e:6d:dc:5c:d3:83:
a8:ca:57:8e:d7:58:1c:26:ce:26:d5:5a:ef:18:bd:45:17:5a:
54:d2:c0:de:17:50:09:88:e2:4a:a8:f0:2c:e1:5e:b0:4f:23:
42:98:b8:98:e4:ee:a8:8c:7e:7a:ff:ea:e0:9e:c5:90:87:0c:
79:2e:ba:39:5d:73:1c:31:70:fc:95:32:3c:31:48:fe:71:2e:
22:d5:e0:f2:b4:e1:5b:6a:3f:3f:cc:5d:4a:a9:10:3b:2a:39:
05:1e:75:4e:2c:c7:53:75:1b:ae:08:dc:cf:55:1c:d2:e2:df:
5d:a0:32:61:94:be:97:42:c9:1c:a2:ea:c2:89:ea:09:43:ec:
5b:c0:3b:6e:ff:98:15:35:5f:08:5d:06:b1:12:98:6b:f0:8d:
60:ef:48:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 09:14:39 2025 by rpki-client