Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/68B9893EDAF411EFADDC8CAF762E951A.roa
File: 68B9893EDAF411EFADDC8CAF762E951A.roa (raw, json)
Hash identifier: Jjn7HbSgipRXh05pjcNXzriEt1Tm6y1Xnirv3oqkubU=
Subject key identifier: 6C:42:C4:62:7A:EE:A8:A8:66:DC:70:6D:44:0F:B3:8B:08:D1:2D:FB
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 011171
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/68B9893EDAF411EFADDC8CAF762E951A.roa
Signing time: Sat 25 Jan 2025 08:14:34 +0000
ROA not before: Sat 25 Jan 2025 08:14:30 +0000
ROA not after: Sun 23 Feb 2025 08:14:30 +0000
asID: 44559
IP address blocks: 156.246.235.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 70001 (0x11171)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jan 25 08:14:30 2025 GMT
Not After : Feb 23 08:14:30 2025 GMT
Subject: CN=67949d69-161f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:2a:08:aa:b9:b3:6a:f8:2f:8d:34:8b:76:30:
0c:6d:2d:07:b9:a6:ea:ea:3a:65:78:19:ec:5b:a1:
2e:93:12:5f:88:a4:51:8a:eb:fb:d1:43:71:31:c8:
04:59:9a:13:1b:4b:e5:fe:b1:8d:0c:6c:32:34:2c:
86:e1:37:20:26:8f:c5:4b:7b:33:4e:e3:17:96:ac:
01:53:d7:a8:da:57:7f:77:88:3e:d5:b6:c5:2a:3d:
ec:c0:8f:ee:4c:63:bd:ec:0c:d2:87:fc:e1:dd:df:
fc:45:94:72:36:db:3d:fc:03:81:bb:fe:bc:88:fd:
f1:99:e8:c6:2b:f5:98:b3:e8:e7:ec:42:bb:53:91:
76:7d:f7:91:2e:8b:3b:8d:08:c6:2b:a6:e8:89:df:
f4:35:11:f1:1c:76:93:86:d9:20:50:d5:ac:63:11:
d3:fb:ce:50:ca:5b:56:ce:f0:20:8a:fc:cd:0f:1f:
3f:89:68:a1:94:12:9d:48:6d:58:4e:02:ea:33:87:
65:d3:89:82:a9:11:07:58:12:8c:c8:1f:7e:48:12:
5a:17:0a:c8:7f:25:2a:73:6b:65:1b:a9:a0:ed:a6:
8b:13:fe:cc:dc:0d:55:45:75:d3:67:95:55:e0:64:
12:fa:62:bb:c5:c6:a8:9d:a2:aa:be:a7:f6:41:e1:
29:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:42:C4:62:7A:EE:A8:A8:66:DC:70:6D:44:0F:B3:8B:08:D1:2D:FB
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/68B9893EDAF411EFADDC8CAF762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.246.235.0/24
Signature Algorithm: sha256WithRSAEncryption
a2:fc:ac:71:84:ca:35:db:9d:b5:2d:5e:d8:cf:31:73:29:75:
05:0d:44:2e:27:df:e0:5e:2c:02:8f:f2:e9:fc:15:eb:8d:8f:
3b:eb:78:de:7a:09:fb:e1:7b:3f:d2:4c:86:b1:03:e7:2b:d6:
26:bc:0c:58:98:fd:f1:0d:76:87:77:54:07:b3:01:e5:83:3b:
e6:ad:1c:da:3d:f1:6b:ca:3c:87:ce:4c:af:24:5a:7f:fa:d1:
2a:49:b4:b3:73:20:e1:cd:0b:ef:6c:7d:0d:26:24:6f:98:b0:
00:c4:c7:b8:5f:03:0e:ae:91:c2:9b:b0:79:25:da:2a:14:00:
e4:7a:5c:af:2e:f0:3a:56:5a:ba:30:37:0b:42:d4:19:f6:d6:
c7:d5:d8:e1:09:4f:9b:d0:84:d3:f7:0c:af:6e:d5:2f:d2:bf:
27:99:11:71:20:d9:df:70:58:e0:bb:6e:89:e0:97:4a:65:a6:
42:45:bd:c4:60:dc:7b:9e:ce:54:d0:00:2b:09:4c:0b:d9:82:
9c:b6:47:11:ce:3d:67:6c:f4:12:43:af:fc:29:57:6e:02:b8:
c0:d5:fc:d6:b9:15:d6:59:b3:0a:4b:ca:c8:27:18:eb:d2:97:
f3:8e:73:5b:55:0e:ba:83:4c:d8:04:71:96:e2:77:03:56:e6:
f1:02:c1:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 15:48:39 2025 by rpki-client