Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/23A76AC0DBDD11EFA01FE44E762E951A.roa
File: 23A76AC0DBDD11EFA01FE44E762E951A.roa (raw, json)
Hash identifier: LDk0jD6OL50GtUb8PZj0D6zNRanPMurX1J0JNylTpZ4=
Subject key identifier: 8F:9E:FC:23:7D:BE:28:6F:46:AF:8D:9C:33:EE:E2:B1:54:EC:E1:F6
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01135C
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/23A76AC0DBDD11EFA01FE44E762E951A.roa
Signing time: Sun 26 Jan 2025 12:00:30 +0000
ROA not before: Sun 26 Jan 2025 12:00:26 +0000
ROA not after: Tue 25 Mar 2025 12:00:26 +0000
asID: 6079
IP address blocks: 45.197.208.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 70492 (0x1135c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jan 26 12:00:26 2025 GMT
Not After : Mar 25 12:00:26 2025 GMT
Subject: CN=679623de-b458
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:db:9d:25:f7:54:32:56:74:38:3b:69:7a:d9:
cb:18:21:52:57:07:0a:cd:79:45:f0:5d:ae:b0:71:
4c:35:95:57:20:33:4e:57:12:00:ac:4e:f7:42:c6:
5e:29:a7:dc:f9:c2:1c:7d:11:03:df:50:b2:40:5b:
fd:3a:a0:29:d6:ec:26:68:62:9d:33:c0:39:a8:c6:
79:5e:ee:71:6d:9e:2d:be:42:fd:a8:88:f8:7b:41:
8f:2f:da:ad:0e:14:ca:ee:bf:3b:90:47:dd:30:67:
ae:ae:4a:1a:16:94:25:be:31:10:e7:7b:a0:7d:8f:
0b:b3:a5:e2:c4:e8:13:5f:be:e1:c2:3a:e6:4d:3e:
f2:0d:ac:07:3d:fd:a7:18:a5:b6:eb:81:3a:0a:10:
3a:df:5e:97:66:ae:74:1b:fb:ed:ad:29:3c:7d:ea:
41:e0:45:74:ec:b7:f9:10:21:7d:e2:39:77:81:f4:
e9:7a:73:b8:9d:40:93:f8:24:76:5a:55:fa:93:16:
9e:49:54:fd:80:c4:97:89:d6:ae:c3:db:87:0f:cb:
c4:f6:82:66:52:46:cf:83:bd:27:d8:b9:30:54:ff:
e2:e6:6e:da:d0:70:f9:63:3c:c9:6a:07:70:32:10:
b0:20:60:c8:31:5b:b0:07:72:5e:f9:f2:c4:f2:1b:
5e:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:9E:FC:23:7D:BE:28:6F:46:AF:8D:9C:33:EE:E2:B1:54:EC:E1:F6
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/23A76AC0DBDD11EFA01FE44E762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.197.208.0/20
Signature Algorithm: sha256WithRSAEncryption
88:d5:d5:5f:de:3e:ab:fa:15:08:44:87:8c:01:4c:c9:ff:9a:
2c:6a:92:6f:71:0c:5f:e7:74:2c:07:fa:c0:64:8d:ae:7e:65:
fb:8e:a8:9a:05:9b:de:26:40:26:59:2f:08:b1:ce:07:03:d2:
1c:bb:74:13:34:81:c1:55:1b:c2:97:a4:43:a6:dd:06:0a:85:
68:49:b1:ae:60:36:f3:9e:6b:ab:9c:f2:6a:ee:7a:8c:ac:5f:
3c:56:fc:3b:2a:9d:68:6d:a8:42:8b:93:ec:93:65:dc:92:fc:
85:aa:44:81:f9:18:77:e7:b8:52:db:f7:3d:70:67:e9:c1:39:
4f:01:5e:d3:d1:73:d2:38:29:3d:d7:46:49:be:86:a6:37:7e:
9e:fa:f1:31:eb:9f:69:6f:14:82:96:d4:95:5e:a8:16:38:f1:
95:1a:a4:11:51:51:11:4d:18:b1:01:78:07:81:5b:9a:8b:9e:
9d:a9:89:f5:7d:bb:d7:0f:60:cd:b8:ab:b0:ff:cd:48:88:11:
e2:70:82:7c:19:1d:06:84:25:48:12:c0:91:35:b7:b8:e3:a5:
7b:d2:fe:55:25:66:c8:3c:51:77:54:af:21:d2:06:3e:97:1e:
c8:03:44:db:2a:ff:c0:b4:4a:86:16:06:80:d5:86:11:7b:4c:
b8:15:a5:1f
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDARNcMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjUwMTI2MTIwMDI2WhcNMjUwMzI1MTIwMDI2WjAYMRYw
FAYDVQQDEw02Nzk2MjNkZS1iNDU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAz9udJfdUMlZ0ODtpetnLGCFSVwcKzXlF8F2usHFMNZVXIDNOVxIArE73
QsZeKafc+cIcfRED31CyQFv9OqAp1uwmaGKdM8A5qMZ5Xu5xbZ4tvkL9qIj4e0GP
L9qtDhTK7r87kEfdMGeurkoaFpQlvjEQ53ugfY8Ls6XixOgTX77hwjrmTT7yDawH
Pf2nGKW264E6ChA6316XZq50G/vtrSk8fepB4EV07Lf5ECF94jl3gfTpenO4nUCT
+CR2WlX6kxaeSVT9gMSXidauw9uHD8vE9oJmUkbPg70n2LkwVP/i5m7a0HD5YzzJ
agdwMhCwIGDIMVuwB3Je+fLE8hterwIDAQABo4ICojCCAp4wHQYDVR0OBBYEFI+e
/CN9vihvRq+NnDPu4rFU7OH2MB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC8yM0E3NkFDMERCREQxMUVGQTAxRkU0NEU3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQELcXQMA0GCSqGSIb3DQEBCwUA
A4IBAQCI1dVf3j6r+hUIRIeMAUzJ/5osapJvcQxf53QsB/rAZI2ufmX7jqiaBZve
JkAmWS8Isc4HA9Icu3QTNIHBVRvCl6RDpt0GCoVoSbGuYDbznmurnPJq7nqMrF88
Vvw7Kp1obahCi5Psk2XckvyFqkSB+Rh357hS2/c9cGfpwTlPAV7T0XPSOCk910ZJ
voamN36e+vEx659pbxSCltSVXqgWOPGVGqQRUVERTRixAXgHgVuai56dqYn1fbvX
D2DNuKuw/81IiBHicIJ8GR0GhCVIEsCRNbe446V70v5VJWbIPFF3VK8h0gY+lx7I
A0TbKv/AtEqGFgaA1YYRe0y4FaUf
-----END CERTIFICATE-----
Generated at Sun Apr 27 07:37:46 2025 by rpki-client