Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/385FCA5ED97411EF9B572F88762E951A.roa
File: 385FCA5ED97411EF9B572F88762E951A.roa (raw, json)
Hash identifier: 8klHooLp5J/npkh1d1bUjdQLTxbInfvaVOSAw2DOkJE=
Subject key identifier: 0D:F2:BF:11:09:7F:0B:DE:E4:88:CC:13:20:19:E0:2B:71:1D:83:4F
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 010F12
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/385FCA5ED97411EF9B572F88762E951A.roa
Signing time: Thu 23 Jan 2025 10:24:26 +0000
ROA not before: Thu 23 Jan 2025 10:24:22 +0000
ROA not after: Sat 15 Mar 2025 10:24:22 +0000
asID: 138915
IP address blocks: 156.244.2.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69394 (0x10f12)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jan 23 10:24:22 2025 GMT
Not After : Mar 15 10:24:22 2025 GMT
Subject: CN=679218da-62da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:f8:59:30:ee:df:17:94:64:29:d8:02:61:da:
e9:00:0c:0e:e6:e1:3b:b6:01:34:68:c5:80:c9:34:
44:73:af:3a:23:7c:96:02:0d:ce:e8:d1:b9:57:bd:
3d:1e:36:f9:f5:bc:08:ab:89:7e:53:80:3d:e9:7c:
02:c4:ef:23:f1:2c:d0:16:a3:06:7a:79:44:21:06:
a1:a4:69:55:89:8b:e5:aa:70:7f:4e:74:b6:55:38:
db:36:b9:a7:74:48:90:9a:6e:08:1e:24:5d:90:db:
0b:c0:21:0d:8a:97:ef:6d:0a:72:91:58:99:c3:82:
70:38:6e:fb:12:45:dc:a7:0d:0b:c5:5c:0f:33:ad:
41:68:fc:37:88:a7:39:a9:21:92:0a:05:e8:90:5d:
c0:cd:0c:48:49:4c:fd:a8:20:e8:03:86:9a:73:b8:
03:f2:e9:26:1b:9f:8b:8c:13:96:53:7b:2e:3b:29:
48:5f:6c:97:1d:1d:41:8d:e8:73:07:cb:c3:e5:8f:
c0:f2:46:e7:bc:e2:25:4f:2c:9b:48:73:f3:11:0d:
bb:48:36:e3:51:40:fc:8d:1f:20:cb:80:3e:92:ae:
17:01:a3:e7:c2:98:b1:22:fa:98:c3:7f:3e:2f:eb:
42:64:26:60:75:33:e3:a8:15:f8:7a:12:85:0a:d5:
5f:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:F2:BF:11:09:7F:0B:DE:E4:88:CC:13:20:19:E0:2B:71:1D:83:4F
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/385FCA5ED97411EF9B572F88762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.244.2.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:cd:38:13:ac:05:0a:0b:ac:4f:ec:59:58:42:aa:e7:40:d1:
2d:e7:51:71:fe:3f:2f:e8:e4:15:2c:2c:e7:8c:ca:a3:3f:bc:
3e:58:6b:33:fd:72:b8:b7:b2:11:48:ec:09:ce:4d:dc:ba:da:
b4:d2:b8:28:bf:6c:1f:a7:db:71:0b:4e:6d:ca:32:23:6a:d4:
75:7d:a6:5f:37:07:9f:c5:bd:7e:e6:95:de:34:d9:f1:71:bf:
10:5f:73:fa:23:bb:74:dd:ea:62:8d:3f:70:59:98:09:46:c1:
d5:55:a1:74:87:2d:00:3f:f1:bc:c6:d6:2d:4e:99:0b:40:3a:
a9:d1:f6:8c:1f:b0:85:44:44:a0:a9:61:55:ea:08:ba:3c:68:
18:92:cb:87:21:66:ff:f7:6c:e4:7d:cc:6e:24:ae:8e:67:96:
c5:91:61:dd:16:56:1b:82:1d:60:f4:39:65:35:84:e5:dc:32:
80:b6:64:ea:b9:81:19:1e:6d:74:7e:cd:ca:d5:cf:40:83:fd:
65:f6:1c:e6:2d:25:c3:19:20:14:4f:8e:55:83:69:27:48:b6:
5a:ac:fd:41:df:a3:7d:5f:4e:15:61:0b:71:11:d3:4f:62:9e:
49:0b:45:95:10:27:9f:3a:65:e9:fe:34:df:23:68:4e:be:61:
88:77:42:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 10:51:55 2025 by rpki-client