Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/526B4E8ED31411EFB574644B762E951A.roa
File: 526B4E8ED31411EFB574644B762E951A.roa (raw, json)
Hash identifier: r5NHI/TxvrYWPH6ZPSPgvaBIgg+iejn1Ys+Lvy94r3g=
Subject key identifier: 84:6A:B3:89:CC:49:39:DF:98:DA:20:53:E2:67:81:AC:70:8A:AB:0D
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 010861
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/526B4E8ED31411EFB574644B762E951A.roa
Signing time: Wed 15 Jan 2025 07:42:51 +0000
ROA not before: Wed 15 Jan 2025 07:42:47 +0000
ROA not after: Sat 03 Jan 2026 07:42:47 +0000
asID: 984
IP address blocks: 156.254.70.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67681 (0x10861)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jan 15 07:42:47 2025 GMT
Not After : Jan 3 07:42:47 2026 GMT
Subject: CN=678766fb-33e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:7e:75:69:a9:1e:a4:1e:dd:12:97:7b:28:a1:
13:8f:f3:9e:da:bd:5e:e6:f9:77:09:e9:a3:52:34:
56:7e:a8:99:86:bd:7a:e5:a1:15:aa:27:39:39:7d:
eb:b1:38:ae:a4:65:e5:c5:0d:8b:a7:8f:93:98:d5:
4f:b4:72:1f:57:8b:c4:cf:dc:37:b5:3c:96:a7:1d:
8d:c7:90:df:f7:d1:e7:a7:c3:f8:12:ad:08:55:c4:
b3:b7:bf:a9:b4:40:6c:f4:0e:1a:17:b4:f8:f7:17:
08:16:28:28:3c:a8:51:14:32:80:16:bc:8b:e6:0f:
7a:7f:5e:69:7a:53:0e:20:87:b7:15:9f:e8:a1:93:
34:22:9c:a6:8c:ae:b2:ba:cf:ce:20:39:32:75:4e:
0a:b2:1b:5c:e8:df:94:ac:a7:67:67:e0:f9:42:4c:
df:9a:5e:85:b6:c1:1d:63:53:de:83:09:c8:b8:d1:
c5:a2:be:da:27:5f:22:10:ca:f3:a3:dc:c9:7a:f8:
f0:4d:10:29:49:54:c7:5b:f2:09:dc:70:3c:4b:10:
44:fe:5d:93:d3:29:21:73:cc:64:d3:fa:d4:d2:7f:
46:c5:48:80:31:01:87:6f:48:d0:e5:3c:96:fa:d8:
b5:21:b4:bb:2d:55:27:bf:c0:14:d4:65:71:ff:1f:
a4:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:6A:B3:89:CC:49:39:DF:98:DA:20:53:E2:67:81:AC:70:8A:AB:0D
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/526B4E8ED31411EFB574644B762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.254.70.0/24
Signature Algorithm: sha256WithRSAEncryption
28:38:1d:09:3c:19:f2:05:43:9e:07:b6:0f:45:67:2a:85:31:
24:c9:d5:b5:e6:0f:7e:51:f8:f1:98:94:e3:ac:62:23:99:26:
27:5c:80:df:10:a6:06:ee:2e:dc:a4:ea:ed:f2:24:db:1a:e6:
bf:29:be:ff:94:b6:4d:26:53:40:6f:3c:69:91:ca:73:85:50:
0d:a6:12:48:51:e0:0e:62:47:72:e7:1f:e3:77:af:3c:f3:5a:
fe:e4:4e:6e:a9:6f:8b:70:48:c2:0b:c2:73:73:5a:57:97:74:
ba:f0:31:29:7a:49:fe:36:22:98:1f:35:a6:f4:2b:30:4a:ad:
d6:57:54:c1:aa:18:cf:53:8d:9b:82:f6:94:70:0f:ac:8c:9a:
e5:80:84:29:7c:68:c2:2d:6f:9e:eb:13:a0:67:22:9d:89:28:
43:36:1b:a7:43:5a:e1:52:b0:a0:ad:02:d0:3b:ba:93:05:a6:
9b:37:11:86:c9:c1:c6:9b:17:ac:d4:64:8d:90:30:0d:72:ab:
5c:5e:49:44:a5:2b:6d:30:33:c5:43:84:d8:52:61:7e:89:27:
82:eb:1b:51:89:b2:c9:7c:38:91:ff:57:f8:88:93:90:65:7d:
76:f6:64:56:8a:7f:f0:8b:b8:07:e0:46:4d:18:a3:e2:58:e1:
b7:b1:56:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 08:03:37 2025 by rpki-client