Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/686F9E28D58111EF893D6087762E951A.roa
File: 686F9E28D58111EF893D6087762E951A.roa (raw, json)
Hash identifier: 1xH5UplANOSUe9oYTMlM6APIOtz2vvdvBwGwNaTtT1M=
Subject key identifier: 45:51:DB:A3:AF:49:58:84:B1:D4:20:63:1C:CE:50:9F:5E:8E:44:31
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 010B5F
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/686F9E28D58111EF893D6087762E951A.roa
Signing time: Sat 18 Jan 2025 09:48:45 +0000
ROA not before: Sat 18 Jan 2025 09:48:41 +0000
ROA not after: Sun 23 Feb 2025 09:48:41 +0000
asID: 203020
IP address blocks: 156.243.159.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68447 (0x10b5f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jan 18 09:48:41 2025 GMT
Not After : Feb 23 09:48:41 2025 GMT
Subject: CN=678b78fd-187a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:b1:cd:d4:a1:24:17:2a:bd:91:44:2b:a0:02:
21:e6:44:0a:36:cc:5b:85:00:27:e0:f8:e4:c8:c4:
88:79:fe:15:e9:42:f4:de:51:71:c9:99:a4:5d:8c:
49:5f:07:4a:fe:05:b5:11:7f:c9:d8:2d:7a:f4:0a:
21:17:7f:39:31:f9:00:21:1c:23:f7:a7:87:b7:aa:
5b:57:4c:02:d8:3b:ea:a4:f6:1d:11:e8:70:87:eb:
55:a8:51:9d:8c:ab:cb:22:60:3f:0e:c2:ef:2f:04:
3e:db:4e:e9:6d:6b:d8:6f:f9:d2:09:29:64:10:a0:
ce:47:50:b8:2a:48:04:3f:24:f6:19:fa:7a:6e:fd:
9c:e4:4a:72:80:fd:ed:84:27:80:de:2c:92:98:ae:
e8:f5:e1:57:08:67:8e:38:38:c8:48:1a:cd:c5:2b:
08:87:7d:f7:a5:4a:88:d9:1c:f4:84:e3:e1:eb:ec:
97:bc:72:ba:fd:98:07:c3:b7:02:c4:3b:11:98:6f:
ca:93:60:78:73:62:82:8e:4a:05:b6:85:d9:da:b1:
03:b3:fd:5f:5d:d1:0d:f3:df:ef:87:e4:46:40:10:
11:d1:60:a3:fc:f2:9d:27:ee:b3:d6:cd:b1:e2:5e:
80:0a:b7:60:46:c8:c8:30:61:a2:c0:2b:34:6b:94:
c0:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:51:DB:A3:AF:49:58:84:B1:D4:20:63:1C:CE:50:9F:5E:8E:44:31
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/686F9E28D58111EF893D6087762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.243.159.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:c4:f7:46:5a:1b:8a:3a:aa:2c:fa:a1:62:69:8b:a2:8b:83:
d5:7b:3e:30:95:74:c5:a3:e8:68:38:a0:a4:89:14:65:b6:7f:
ca:34:6c:a3:f2:37:ee:fd:10:9e:a9:75:0b:6c:63:12:07:2c:
51:37:82:55:1a:51:68:c1:75:59:85:a7:0b:a6:1f:c9:f9:ca:
a8:c5:29:62:6c:2a:cc:18:d4:d4:8b:e0:2f:c5:ac:f3:da:bf:
58:ff:e6:15:b1:ea:81:15:52:ce:8c:6d:c3:9e:9c:01:9b:6c:
2c:e2:2f:b1:ff:e4:ac:cc:11:82:52:5b:6e:8e:e1:ee:64:28:
da:08:75:cb:14:45:a5:2a:2b:a9:32:fe:11:be:18:0c:58:fe:
df:0c:6a:28:c8:30:c8:ee:1a:71:7e:bb:53:33:f7:84:10:66:
e1:5e:89:4d:30:0c:d3:a3:51:04:24:a2:7c:11:3f:76:1b:9c:
bb:a1:ef:8f:7b:8f:ab:63:42:aa:e2:07:dc:91:87:a2:7b:26:
7d:39:d9:45:dd:f8:36:9b:19:58:1c:bf:ee:f0:e0:bf:5e:81:
70:48:1d:4c:df:c5:3a:95:2b:30:34:e2:07:bb:f0:90:c3:a9:
16:6a:a2:f3:ae:a4:d9:78:35:0b:ce:b9:26:21:89:3d:fe:8f:
11:e8:0e:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 18:12:49 2025 by rpki-client