Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/476818B0DFED11EF88165DB1762E951A.roa
File: 476818B0DFED11EF88165DB1762E951A.roa (raw, json)
Hash identifier: NXeBWTAUNfFpuTC8j+MB+y+w5HVMBoK+VUOPg7vgrbI=
Subject key identifier: 19:0F:9F:22:BD:81:5C:29:F1:09:49:5D:5E:85:50:C5:79:22:48:73
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01164D
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/476818B0DFED11EF88165DB1762E951A.roa
Signing time: Fri 31 Jan 2025 16:06:07 +0000
ROA not before: Fri 31 Jan 2025 16:06:03 +0000
ROA not after: Mon 10 Feb 2025 16:06:03 +0000
asID: 58453
IP address blocks: 45.204.69.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 71245 (0x1164d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jan 31 16:06:03 2025 GMT
Not After : Feb 10 16:06:03 2025 GMT
Subject: CN=679cf4ef-ae42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:55:a8:e8:61:66:51:c9:2d:89:a7:86:99:21:
55:ea:a8:a5:ac:fc:4d:75:9b:b5:0f:b9:74:5c:54:
78:ba:e9:ad:8f:5d:c4:76:43:2a:2f:71:cb:2e:9b:
ce:26:e1:e7:0e:57:1d:ad:7b:f6:5c:e1:c1:64:7d:
18:07:8e:f3:41:f9:a4:3b:3b:e1:1c:44:72:43:c2:
33:4a:5a:dc:db:e0:21:01:96:1e:fc:64:09:04:48:
b7:07:10:9c:64:da:8a:42:cb:ea:dc:da:dc:30:7b:
57:43:ff:af:c6:d2:bd:13:9c:b4:14:d4:26:a7:e9:
57:80:c6:5b:1f:0b:6b:3d:d6:82:c8:85:ad:11:64:
e3:cf:6e:ee:2a:5b:59:53:ce:d1:d1:9d:f2:45:6a:
67:b7:54:9b:ae:ea:a5:b1:e3:18:2e:25:89:9c:d9:
d3:0d:7c:7a:96:f2:d0:c8:be:17:12:8e:25:81:2b:
6f:16:73:70:44:b0:7c:5f:d5:19:be:61:83:19:15:
28:c7:f3:4f:3f:72:d8:7a:8e:3a:3a:a2:d2:90:94:
3c:68:b9:1c:07:15:2a:17:29:55:5e:0a:08:09:c5:
ea:1e:57:30:3c:de:90:d6:4c:9e:5f:36:1e:c4:65:
bd:94:6e:fd:4f:46:95:18:10:df:fa:a9:b3:2d:4d:
97:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:0F:9F:22:BD:81:5C:29:F1:09:49:5D:5E:85:50:C5:79:22:48:73
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/476818B0DFED11EF88165DB1762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.204.69.0/24
Signature Algorithm: sha256WithRSAEncryption
b0:91:49:1e:10:e0:ef:cb:7e:14:47:99:38:92:59:ea:48:50:
22:72:8d:0b:44:72:d4:ce:81:d6:2e:e5:36:c8:f8:8a:09:9c:
fc:11:c9:bb:32:22:f5:24:05:ee:47:ea:a2:53:2b:85:fd:b3:
df:72:33:bc:f8:48:e4:58:c9:77:e9:b2:13:f4:9a:b0:85:c5:
a7:57:5d:9f:28:f6:19:22:e3:47:c2:80:5b:08:e3:56:24:94:
52:a5:9b:6f:17:62:2f:b1:16:0c:36:e5:0f:5e:9a:b4:b4:79:
64:f1:20:d8:58:3e:a6:ee:44:d3:d3:3f:bd:23:78:e7:d8:2e:
80:cb:97:b2:e6:30:0a:c2:d8:8e:d8:bd:5f:cd:3e:be:d6:07:
a4:b8:dc:f6:3c:97:b4:77:a0:db:c9:2f:57:77:a1:12:b1:a1:
5b:5a:00:7a:94:0d:3e:8c:1f:83:0c:fd:8b:36:5f:f9:e1:fd:
c3:26:37:bd:25:11:3c:db:33:dd:88:36:be:a0:31:6c:1d:9f:
0b:72:3a:e5:3c:74:f6:69:d4:f5:7d:7f:c9:e9:af:27:04:bb:
0b:dd:24:96:f5:8a:9b:64:58:f5:44:33:81:95:99:5e:3f:01:
43:9d:d9:d0:eb:89:4a:fb:e7:17:d3:b1:83:02:6f:93:9e:05:
2d:65:78:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 06:06:29 2025 by rpki-client