Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/68202D02DFF411EF8479EC62762E951A.roa
File: 68202D02DFF411EF8479EC62762E951A.roa (raw, json)
Hash identifier: rwU3tHsG3aMx1ESbC/mPI2DVVORFM+ybxbGeN+F5vOM=
Subject key identifier: CF:49:16:85:3D:E2:C6:9C:F2:3C:5A:EE:C7:B7:30:9C:81:9F:E0:4D
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 011693
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/68202D02DFF411EF8479EC62762E951A.roa
Signing time: Fri 31 Jan 2025 16:57:08 +0000
ROA not before: Fri 31 Jan 2025 16:57:05 +0000
ROA not after: Tue 11 Feb 2025 16:57:05 +0000
asID: 206283
IP address blocks: 156.238.85.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 71315 (0x11693)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jan 31 16:57:05 2025 GMT
Not After : Feb 11 16:57:05 2025 GMT
Subject: CN=679d00e4-6745
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:96:3d:b8:5a:2a:0e:ce:56:f3:2d:4a:57:56:
70:36:b7:f4:52:42:7f:19:19:28:de:fe:2c:45:d3:
d8:4e:51:11:38:2a:4b:be:aa:ab:78:16:4f:bf:64:
00:ec:fe:ab:f4:69:e5:38:0a:ea:64:6b:84:4a:86:
f7:27:01:8f:99:cc:54:7b:8c:ec:90:4f:ca:0f:66:
28:5a:d3:55:03:65:a2:68:3b:5c:5b:ea:3e:bf:b1:
74:f6:21:48:45:64:83:8e:31:09:bf:7e:c6:c0:6b:
9f:df:17:11:74:01:87:75:f6:0f:80:bc:6f:5f:68:
5c:d4:c1:11:b4:96:88:98:2a:27:65:e1:9e:ed:fc:
6c:8f:da:8c:1c:11:f4:ee:3b:5b:ee:35:bd:75:87:
d2:b4:79:19:cc:a0:57:7d:3d:bf:e5:5d:68:cd:ea:
25:cc:6a:19:05:2e:8f:a0:e3:65:30:90:8c:cc:32:
c7:5a:09:b6:88:2f:05:77:b7:f5:db:a1:11:45:32:
b9:d1:47:1f:91:59:ca:26:d1:27:63:ab:c4:9e:02:
a1:52:a1:89:b8:a5:ca:ae:b9:69:30:cb:63:9e:97:
2a:a8:df:8c:1e:4a:59:71:9f:ee:f9:47:28:71:fd:
32:7c:34:4f:2f:84:8c:6b:67:94:9c:eb:53:e2:bf:
c4:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:49:16:85:3D:E2:C6:9C:F2:3C:5A:EE:C7:B7:30:9C:81:9F:E0:4D
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/68202D02DFF411EF8479EC62762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.238.85.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:26:b2:83:ce:7b:3a:12:48:60:99:12:d2:6e:e6:f3:6a:7d:
86:b7:f3:45:30:e3:50:42:69:6c:aa:21:3d:b0:e5:fc:af:a1:
36:b3:1f:9c:3a:67:5d:1d:e3:79:a3:7f:a5:52:de:17:0f:0d:
d0:05:b5:be:80:2f:4f:f6:45:b5:10:1e:f5:97:74:12:e5:08:
46:86:14:f1:17:0a:f3:eb:1a:a8:a5:e1:b2:9a:3a:89:85:b4:
dc:df:63:69:51:91:25:9a:19:20:70:70:9b:29:27:16:94:d0:
a5:e4:5a:25:6c:7c:65:31:39:23:02:6f:47:ed:17:4b:f4:b8:
f3:0f:c5:71:6a:e7:f6:73:87:06:44:67:5d:56:b7:23:d0:99:
43:62:99:ab:7b:f9:ad:7c:d0:a4:a6:03:00:29:a8:b6:8b:fe:
75:84:65:7d:f6:d1:a2:6c:d8:a0:b5:b7:da:36:c3:bd:58:f0:
6c:15:ef:07:c5:16:3f:46:d1:a0:91:00:6e:66:e9:5b:64:12:
88:e4:13:02:9d:81:cf:0b:1b:25:82:42:a7:07:ae:ce:ed:45:
a2:d8:a7:70:7d:ed:31:bc:fd:3e:4c:c0:07:55:f7:30:f6:12:
7f:94:79:73:33:a5:4a:c1:29:ba:b5:2f:4c:2a:fa:65:3f:08:
c3:7c:38:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 12:17:45 2025 by rpki-client