Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0D5BED38D50A11EF95E1E66C762E951A.roa
File: 0D5BED38D50A11EF95E1E66C762E951A.roa (raw, json)
Hash identifier: afoojHM3KrMEhXUPGKOG7hp0+bw/ZMCEnxc1JLRQ5zE=
Subject key identifier: EA:2B:04:58:E6:6F:30:41:64:25:EA:17:98:3A:F4:52:6C:8D:A4:09
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 010A76
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0D5BED38D50A11EF95E1E66C762E951A.roa
Signing time: Fri 17 Jan 2025 19:34:22 +0000
ROA not before: Fri 17 Jan 2025 19:34:18 +0000
ROA not after: Sat 22 Feb 2025 19:34:18 +0000
asID: 54801
IP address blocks: 45.200.24.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68214 (0x10a76)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jan 17 19:34:18 2025 GMT
Not After : Feb 22 19:34:18 2025 GMT
Subject: CN=678ab0be-a691
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:12:62:b3:22:e7:9c:cf:c0:d0:7e:12:0a:19:
83:b5:f6:04:bc:b2:e9:73:4e:19:8f:f1:f2:c7:96:
35:1b:a3:7f:93:ef:e3:95:a7:1a:6e:dc:4c:f8:81:
09:b2:6b:aa:12:15:0b:24:75:47:08:8e:c7:38:8d:
46:a7:02:47:10:fa:d1:b5:84:bb:54:10:3d:12:ea:
1e:8f:96:c4:4f:21:21:c5:2e:db:03:f9:a0:4a:2d:
00:37:fc:66:dd:43:70:2e:23:75:ed:9f:5c:63:b6:
67:81:24:01:97:0e:1e:b5:6d:47:05:a2:a9:fb:94:
ee:ca:ce:bc:fa:2c:61:d2:de:c4:be:a8:52:60:68:
19:e5:2f:3b:0b:1e:e7:ee:be:58:e4:c6:03:d4:0a:
69:0c:29:3c:5b:8e:1b:a2:80:21:91:32:c6:27:3d:
8d:48:7a:d4:cb:e7:92:68:60:c1:bf:65:bf:1d:ab:
7a:e3:65:ee:25:31:94:38:e0:ee:64:4e:d5:04:9f:
e1:ec:05:fb:9d:1a:c5:f6:4b:48:b5:1a:d7:c2:e8:
f7:3b:33:97:4e:80:3f:ae:86:01:86:7b:e6:e0:24:
d4:48:b5:17:1b:d8:c4:a0:72:cc:45:d8:b2:4a:ad:
31:4e:d5:9d:9b:0d:54:49:49:f8:cd:aa:79:81:65:
ab:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:2B:04:58:E6:6F:30:41:64:25:EA:17:98:3A:F4:52:6C:8D:A4:09
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0D5BED38D50A11EF95E1E66C762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.200.24.0/21
Signature Algorithm: sha256WithRSAEncryption
52:df:9c:51:5f:ab:e6:da:bf:dd:93:f7:f8:0c:ee:21:78:2a:
0f:1c:f7:f2:77:a8:b2:a3:11:d0:f9:fe:1e:50:0c:5a:8d:23:
b5:09:af:e1:43:92:a6:d8:b1:55:79:4d:91:b4:05:29:76:2f:
a9:47:ed:e3:56:3d:42:f2:de:ea:87:da:21:2b:b3:20:45:76:
95:b5:24:38:3f:d4:75:bf:1d:dc:fe:97:a0:f7:fe:a4:d7:66:
2e:b4:6e:1a:b6:2e:ef:8e:57:3b:32:f4:45:25:c8:e5:e4:26:
15:79:6f:e9:c1:43:b4:bc:16:24:3f:15:47:c0:9c:44:1c:35:
1c:fa:2a:38:3d:70:09:de:b8:c4:6f:f7:a5:51:83:e1:10:39:
40:06:22:25:dc:e8:ea:0a:11:d3:a7:e4:12:d9:fc:2d:ca:37:
0c:da:52:f8:2d:f7:12:db:08:ba:a2:cf:b7:f5:7d:55:6c:b6:
a9:a4:47:1c:12:c3:6e:ba:a5:b7:dc:eb:c5:e0:6f:96:46:19:
f7:e0:ea:fa:af:b6:8d:3c:26:66:5f:a0:a4:b2:11:a5:7f:ed:
87:7b:81:75:8b:25:5a:89:ed:42:0b:47:49:a0:e2:9e:fd:29:
b9:9d:c1:fd:7d:9a:b6:58:17:32:aa:58:a9:46:a5:e4:b4:13:
dc:d1:00:85
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAQp2MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjUwMTE3MTkzNDE4WhcNMjUwMjIyMTkzNDE4WjAYMRYw
FAYDVQQDEw02NzhhYjBiZS1hNjkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAyBJisyLnnM/A0H4SChmDtfYEvLLpc04Zj/Hyx5Y1G6N/k+/jlacabtxM
+IEJsmuqEhULJHVHCI7HOI1GpwJHEPrRtYS7VBA9Euoej5bETyEhxS7bA/mgSi0A
N/xm3UNwLiN17Z9cY7ZngSQBlw4etW1HBaKp+5Tuys68+ixh0t7EvqhSYGgZ5S87
Cx7n7r5Y5MYD1AppDCk8W44booAhkTLGJz2NSHrUy+eSaGDBv2W/Hat642XuJTGU
OODuZE7VBJ/h7AX7nRrF9ktItRrXwuj3OzOXToA/roYBhnvm4CTUSLUXG9jEoHLM
RdiySq0xTtWdmw1USUn4zap5gWWr5wIDAQABo4ICojCCAp4wHQYDVR0OBBYEFOor
BFjmbzBBZCXqF5g69FJsjaQJMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC8wRDVCRUQzOEQ1MEExMUVGOTVFMUU2NkM3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDLcgYMA0GCSqGSIb3DQEBCwUA
A4IBAQBS35xRX6vm2r/dk/f4DO4heCoPHPfyd6iyoxHQ+f4eUAxajSO1Ca/hQ5Km
2LFVeU2RtAUpdi+pR+3jVj1C8t7qh9ohK7MgRXaVtSQ4P9R1vx3c/peg9/6k12Yu
tG4ati7vjlc7MvRFJcjl5CYVeW/pwUO0vBYkPxVHwJxEHDUc+io4PXAJ3rjEb/el
UYPhEDlABiIl3OjqChHTp+QS2fwtyjcM2lL4LfcS2wi6os+39X1VbLappEccEsNu
uqW33OvF4G+WRhn34Or6r7aNPCZmX6CkshGlf+2He4F1iyVaie1CC0dJoOKe/Sm5
ncH9fZq2WBcyqlipRqXktBPc0QCF
-----END CERTIFICATE-----
Generated at Sat Apr 26 05:43:23 2025 by rpki-client