Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/AE100854D72111EF8F2E85A7762E951A.roa
File: AE100854D72111EF8F2E85A7762E951A.roa (raw, json)
Hash identifier: cH56oHdR/HgHZuSdyPq6W7mQMlrd2nHwHyy3/K++EnI=
Subject key identifier: 30:38:36:E7:C4:C3:0A:A4:16:8D:9D:6B:D2:63:18:F4:17:FE:48:AD
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 010C41
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/AE100854D72111EF8F2E85A7762E951A.roa
Signing time: Mon 20 Jan 2025 11:28:33 +0000
ROA not before: Mon 20 Jan 2025 11:28:28 +0000
ROA not after: Sat 01 Feb 2025 11:28:28 +0000
asID: 44559
IP address blocks: 45.199.209.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68673 (0x10c41)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jan 20 11:28:28 2025 GMT
Not After : Feb 1 11:28:28 2025 GMT
Subject: CN=678e3361-e093
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:4d:4c:91:51:d7:d7:ec:64:e4:da:fb:28:97:
49:b3:57:48:10:a2:08:8c:66:05:56:02:ea:4d:7b:
0f:8a:9a:70:d0:92:74:60:f3:98:01:c7:87:58:2d:
c9:ec:2b:83:3e:4c:1d:3c:e4:e0:22:05:d7:98:8d:
65:6b:fb:94:dc:de:51:74:18:2a:a3:9a:01:77:b1:
bb:76:20:69:e6:05:ad:08:7e:4b:06:03:96:7f:68:
4a:a6:c4:39:4b:21:1d:68:c2:9b:e5:1b:ac:61:43:
35:c1:b2:25:15:1a:af:6b:50:d4:6a:fd:00:d8:9b:
0f:88:87:c1:70:c7:53:64:72:77:aa:0f:bc:14:20:
97:29:c8:42:92:c7:d5:8e:c4:2c:fb:89:38:7f:0d:
b5:11:b9:24:b8:2f:f1:2b:ce:c6:e2:59:9b:2c:e0:
9f:11:e5:e2:f7:d8:b2:9f:62:f3:be:81:17:a0:22:
41:46:63:bb:59:7f:fa:e9:8c:22:00:50:59:27:77:
09:8a:e8:37:4a:92:49:18:b4:9f:73:49:74:d8:e9:
16:a4:67:74:48:d1:24:5b:7e:7b:a7:a5:63:26:4f:
a9:cc:5b:c4:8e:da:dc:92:75:3a:40:1b:b4:7e:c0:
6d:6b:c7:d5:06:42:90:78:e6:b1:74:12:ce:a0:ee:
1d:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:38:36:E7:C4:C3:0A:A4:16:8D:9D:6B:D2:63:18:F4:17:FE:48:AD
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/AE100854D72111EF8F2E85A7762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.199.209.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:67:b3:b3:04:43:18:a2:4b:b3:65:b2:6f:a0:cd:67:25:6a:
7d:59:64:ca:e9:53:6f:5e:bd:9b:e9:00:18:51:74:d7:c6:1b:
17:8c:4f:e9:c3:eb:3d:e8:bc:c7:8a:16:00:75:e2:b0:63:11:
cf:7c:26:1e:ff:81:c2:a2:28:fe:eb:e7:0d:3a:58:65:cd:5b:
10:36:ce:79:43:13:f7:20:ab:06:4c:6c:12:83:99:3d:52:a8:
3a:ef:d1:77:cd:89:ea:1b:56:03:94:76:04:b8:48:ef:0e:26:
68:bc:37:71:19:74:3f:94:cf:b7:51:e8:27:d0:3b:09:d6:a1:
24:73:0f:cf:bc:1d:39:c3:bc:52:6a:0d:8b:f6:fe:a2:43:30:
48:56:1e:96:9d:4f:aa:b0:1b:bb:5b:72:f3:23:96:f1:d5:01:
e5:8b:ae:ed:f5:5f:00:60:3c:15:49:42:45:66:69:7a:dd:3b:
5c:22:2e:05:d0:02:33:72:9f:f8:4b:a4:bd:3b:76:67:8f:2a:
b1:ea:cd:df:7c:ff:19:27:e8:ed:12:a0:35:45:ce:bf:c6:08:
0d:80:dd:19:b6:e0:fb:53:d5:e9:a0:64:ea:8f:c1:74:a0:04:
49:95:4e:cc:c7:55:4f:d2:52:10:f2:28:63:64:9f:cb:75:dd:
a7:21:1f:24
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAQxBMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjUwMTIwMTEyODI4WhcNMjUwMjAxMTEyODI4WjAYMRYw
FAYDVQQDEw02NzhlMzM2MS1lMDkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA2k1MkVHX1+xk5Nr7KJdJs1dIEKIIjGYFVgLqTXsPippw0JJ0YPOYAceH
WC3J7CuDPkwdPOTgIgXXmI1la/uU3N5RdBgqo5oBd7G7diBp5gWtCH5LBgOWf2hK
psQ5SyEdaMKb5RusYUM1wbIlFRqva1DUav0A2JsPiIfBcMdTZHJ3qg+8FCCXKchC
ksfVjsQs+4k4fw21EbkkuC/xK87G4lmbLOCfEeXi99iyn2LzvoEXoCJBRmO7WX/6
6YwiAFBZJ3cJiug3SpJJGLSfc0l02OkWpGd0SNEkW357p6VjJk+pzFvEjtrcknU6
QBu0fsBta8fVBkKQeOaxdBLOoO4doQIDAQABo4ICojCCAp4wHQYDVR0OBBYEFDA4
NufEwwqkFo2da9JjGPQX/kitMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC9BRTEwMDg1NEQ3MjExMUVGOEYyRTg1QTc3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALcfRMA0GCSqGSIb3DQEBCwUA
A4IBAQA6Z7OzBEMYokuzZbJvoM1nJWp9WWTK6VNvXr2b6QAYUXTXxhsXjE/pw+s9
6LzHihYAdeKwYxHPfCYe/4HCoij+6+cNOlhlzVsQNs55QxP3IKsGTGwSg5k9Uqg6
79F3zYnqG1YDlHYEuEjvDiZovDdxGXQ/lM+3Uegn0DsJ1qEkcw/PvB05w7xSag2L
9v6iQzBIVh6WnU+qsBu7W3LzI5bx1QHli67t9V8AYDwVSUJFZml63TtcIi4F0AIz
cp/4S6S9O3Znjyqx6s3ffP8ZJ+jtEqA1Rc6/xggNgN0ZtuD7U9XpoGTqj8F0oARJ
lU7Mx1VP0lIQ8ihjZJ/Ldd2nIR8k
-----END CERTIFICATE-----
Generated at Sat Apr 26 13:27:00 2025 by rpki-client