Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/03E01F6AD72411EFA3E30AB7762E951A.roa
File: 03E01F6AD72411EFA3E30AB7762E951A.roa (raw, json)
Hash identifier: ZV4qQN+Z7zrui7aS5NKSrSRosSMYmoYxuSVXb7YmWig=
Subject key identifier: 6C:60:CA:1D:9F:3E:AE:73:34:D1:F7:E0:3C:AD:27:4C:86:16:16:5D
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 010C51
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/03E01F6AD72411EFA3E30AB7762E951A.roa
Signing time: Mon 20 Jan 2025 11:45:16 +0000
ROA not before: Mon 20 Jan 2025 11:45:12 +0000
ROA not after: Sat 01 Feb 2025 11:45:12 +0000
asID: 202656
IP address blocks: 45.199.222.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68689 (0x10c51)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jan 20 11:45:12 2025 GMT
Not After : Feb 1 11:45:12 2025 GMT
Subject: CN=678e374b-bc86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:3f:6f:87:38:1a:f0:ab:ae:cd:01:51:a2:7a:
c6:8e:6e:bc:e4:7c:28:64:55:de:85:69:3d:21:18:
fb:05:17:09:66:a5:eb:cd:b7:26:36:dd:4b:89:59:
b6:69:2b:69:1b:a7:a1:ab:63:0c:a4:63:7d:d9:fc:
d2:ec:33:44:e0:50:35:ab:71:1f:36:75:2a:c3:67:
7f:bc:4f:8d:bd:f3:d0:ff:49:41:47:ae:8b:9b:ef:
77:88:64:85:8b:92:aa:ac:42:80:58:5a:28:db:76:
1f:c7:54:70:c1:6d:ed:8b:bc:c0:d5:50:2d:c1:aa:
b9:48:40:19:10:00:99:ed:a0:74:cb:54:96:33:cd:
87:37:46:f9:fc:76:1d:63:97:64:c3:7d:f1:79:31:
5c:60:7c:d1:e6:ba:17:a4:65:08:be:26:7e:59:54:
ba:18:12:88:f2:83:ef:4f:62:b2:0c:b1:7b:4e:e2:
7b:48:59:e9:88:b0:92:2e:56:44:03:0b:c3:03:d3:
9c:c7:76:2c:8a:31:2d:53:69:ab:a2:4d:1c:bf:59:
8a:19:17:9d:b5:26:ed:2a:d7:b1:46:41:9b:a0:c3:
60:58:b5:d1:dd:bb:db:ad:10:63:cd:56:c6:ee:a4:
b3:85:24:37:2a:07:3f:84:27:22:ac:79:bf:b5:98:
dc:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:60:CA:1D:9F:3E:AE:73:34:D1:F7:E0:3C:AD:27:4C:86:16:16:5D
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/03E01F6AD72411EFA3E30AB7762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.199.222.0/23
Signature Algorithm: sha256WithRSAEncryption
05:b8:72:cd:ea:ca:ee:30:d8:dc:50:63:77:e4:bb:d9:f4:ff:
c2:81:4e:31:62:e1:ee:65:a2:fe:96:0d:00:f1:8a:47:87:4f:
35:25:b7:97:d6:28:b4:0f:ff:fd:e3:d2:35:89:aa:39:9e:3d:
60:f3:1b:ca:b6:62:dd:03:02:d5:6d:ad:c6:d2:d9:f6:8d:86:
33:a8:37:2c:7e:93:55:53:16:0a:09:6f:d6:b5:15:c1:1b:66:
ce:86:45:60:bc:cc:f0:0e:93:20:ae:6e:8d:4f:64:ef:58:12:
17:95:2b:55:96:3b:30:fd:37:c6:a3:88:0f:41:18:ce:20:af:
20:13:89:fa:1d:1d:c2:9e:77:05:c8:14:ac:d9:0a:97:d2:1a:
65:78:f9:9e:07:b9:bc:31:31:73:d7:c7:ab:1a:75:0a:83:d6:
9d:09:74:52:5f:5a:fe:59:64:f4:16:e7:29:87:66:a6:8f:6d:
4d:a6:21:ed:01:a2:ac:62:4f:13:e2:22:95:3e:79:6c:e2:6d:
18:58:c4:5d:e1:c8:1d:88:0b:47:2d:de:20:2b:a9:1d:21:3f:
5b:f9:a8:f5:13:4e:f5:c7:80:83:45:26:3e:70:d7:96:d6:9d:
48:71:ec:6f:db:b2:71:24:fb:50:c3:ca:7f:42:30:3d:ef:19:
bc:71:01:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 10:00:02 2025 by rpki-client