Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/65DBBFC6DB0C11EF99B5F14F762E951A.roa
File: 65DBBFC6DB0C11EF99B5F14F762E951A.roa (raw, json)
Hash identifier: e+pMJ+qviElMyEUqDLMWvwnXG+RQA0d7kJKCHgaJYIg=
Subject key identifier: 23:54:F5:A9:B9:B4:3C:22:53:E5:8D:BF:0C:96:28:00:E4:18:52:FC
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01120B
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/65DBBFC6DB0C11EF99B5F14F762E951A.roa
Signing time: Sat 25 Jan 2025 11:06:17 +0000
ROA not before: Sat 25 Jan 2025 11:06:13 +0000
ROA not after: Sun 23 Feb 2025 11:06:13 +0000
asID: 44559
IP address blocks: 45.199.220.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 70155 (0x1120b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jan 25 11:06:13 2025 GMT
Not After : Feb 23 11:06:13 2025 GMT
Subject: CN=6794c5a9-e42c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:16:46:0a:9d:60:77:3a:75:f6:17:1e:08:14:
b9:84:ca:6d:f8:99:30:0e:d6:73:55:23:ab:6a:b2:
72:7f:f4:19:43:25:0d:d3:c9:c0:cb:d3:fb:b8:b3:
83:7a:f2:e7:ca:21:79:23:5b:5c:ec:d9:c2:5d:82:
6f:89:be:65:28:4d:62:34:1b:e2:5c:31:3d:30:e2:
46:82:ca:44:7e:ac:51:ff:60:21:ee:4a:04:3d:63:
41:b7:4c:ff:40:d3:3a:80:14:d2:ab:5f:dc:95:5e:
37:84:8b:23:e1:05:26:8e:f7:79:a9:97:14:42:fe:
0c:97:8e:23:e2:49:68:6f:dc:dd:7e:fb:72:b8:c4:
8c:39:78:0d:fe:67:d5:33:fb:1c:9d:f1:ce:ff:31:
81:67:5c:ae:97:bb:21:60:4f:59:69:0f:29:61:f0:
06:36:98:5a:9a:be:d7:ea:45:da:09:9a:0b:ee:a7:
cd:a2:d1:2b:6a:38:7f:bd:7b:ad:00:22:83:a3:de:
50:2e:00:e5:56:dc:82:18:79:84:26:22:59:2a:89:
db:1e:70:8b:fa:48:d2:5b:5c:32:18:e0:49:91:f7:
93:d0:2b:24:7c:18:a2:7d:74:a1:71:76:c7:70:4f:
c7:ba:ae:d6:0a:fb:d6:94:67:71:ef:c8:cf:c1:9f:
c6:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:54:F5:A9:B9:B4:3C:22:53:E5:8D:BF:0C:96:28:00:E4:18:52:FC
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/65DBBFC6DB0C11EF99B5F14F762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.199.220.0/24
Signature Algorithm: sha256WithRSAEncryption
41:4a:e4:09:c1:cd:53:3c:c6:11:e1:98:3b:4e:f8:d3:fa:c0:
03:32:ca:03:d5:b1:f4:36:e5:0e:ec:0a:c1:de:55:cb:73:da:
5e:1b:28:ad:db:35:a1:5b:9e:7a:99:79:f6:3e:ea:a7:7a:84:
86:02:d1:f4:13:9d:59:c5:07:ca:75:bf:1c:c5:3c:b9:ac:be:
9f:90:ed:78:72:f6:f4:7a:6e:eb:08:07:fa:3f:f0:b7:dc:66:
21:0b:ec:5f:fa:f5:68:48:ca:23:b0:75:28:df:d0:26:b8:9d:
ba:27:80:e4:9d:1e:2c:e5:42:f3:ee:1b:7a:c6:ec:1b:b9:71:
07:76:ce:46:4e:eb:41:de:b9:5f:3a:90:9b:aa:12:f4:04:54:
5c:55:b7:7f:52:da:b6:7a:7f:30:b0:a1:cc:e1:90:34:9e:89:
d6:ee:6a:81:0d:fd:a9:51:9e:16:15:13:c6:98:c7:e7:7e:0b:
36:ad:3d:69:eb:7e:51:64:3e:ec:49:43:cc:d8:cb:2a:0c:61:
3a:bc:39:d0:13:6c:b5:24:0e:47:45:61:aa:bb:ac:7d:5e:4c:
08:5c:ef:3f:a5:8b:c3:5e:94:0d:07:88:17:33:53:f3:2e:7e:
c4:54:e1:32:98:6a:ee:55:f3:8b:18:2e:41:b9:ad:71:da:7a:
88:de:80:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 23:01:50 2025 by rpki-client