Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BD78BFA2DD6111EFA836DA8E762E951A.roa
File: BD78BFA2DD6111EFA836DA8E762E951A.roa (raw, json)
Hash identifier: 95weclJHfZLHq/37kL7gETm/AU4Tily1pKTMpEEqM/8=
Subject key identifier: EB:44:A2:55:15:37:58:FB:F0:56:BB:9D:77:D5:3E:07:05:F0:60:FF
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01157E
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BD78BFA2DD6111EFA836DA8E762E951A.roa
Signing time: Tue 28 Jan 2025 10:22:13 +0000
ROA not before: Tue 28 Jan 2025 10:22:10 +0000
ROA not after: Sun 09 Feb 2025 10:22:10 +0000
asID: 212238
IP address blocks: 156.226.8.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 71038 (0x1157e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jan 28 10:22:10 2025 GMT
Not After : Feb 9 10:22:10 2025 GMT
Subject: CN=6798afd5-9f54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:16:df:aa:e8:0c:29:37:bd:ca:14:ca:e4:a4:
e6:62:49:b3:60:a5:df:a2:45:ee:6f:d1:1e:9a:8a:
e4:e7:50:93:68:e1:8b:a0:20:f3:05:67:03:df:0b:
8d:b4:95:e4:00:f1:b2:c0:cc:37:e5:e2:ae:98:5a:
60:d4:85:7c:cd:93:12:08:9e:d7:80:3e:4e:0a:c4:
2f:1d:d3:d8:bd:ae:c0:83:01:66:3a:8a:49:ef:ce:
e5:58:18:2c:93:69:a8:7d:ef:61:6a:1f:34:c1:ec:
f5:3a:2b:6d:69:36:26:95:5b:01:eb:03:92:b2:07:
ae:9d:02:19:92:22:ae:cc:27:8c:ff:18:65:ee:2f:
bc:46:6d:62:75:48:95:ca:fd:ea:6f:3f:b6:25:6d:
87:23:84:e9:99:39:0e:a9:75:0a:fe:13:00:dc:23:
98:30:b6:77:bf:2e:da:58:5f:37:06:a3:c0:b6:04:
05:f1:0a:b2:ac:e0:b8:64:4f:ae:16:43:04:19:e6:
f2:90:75:28:c3:41:d7:82:e5:b2:32:0c:1e:76:c6:
23:e2:32:9d:f1:b1:09:fb:70:2a:fb:14:9b:6a:83:
d7:e8:b0:e1:b6:24:d4:0f:81:ad:7a:14:0a:6f:be:
bd:89:46:0b:f0:aa:7a:c3:c8:f9:80:c2:e0:53:30:
e6:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:44:A2:55:15:37:58:FB:F0:56:BB:9D:77:D5:3E:07:05:F0:60:FF
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BD78BFA2DD6111EFA836DA8E762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.226.8.0/21
Signature Algorithm: sha256WithRSAEncryption
07:ca:10:9f:91:97:71:92:5e:d1:b4:f8:e7:ca:33:81:ea:f9:
ac:0a:b3:c5:12:c7:a2:5d:40:93:05:03:b9:66:0d:79:5e:6a:
05:27:67:8b:de:40:e7:af:30:a1:71:a1:3f:a0:d9:76:2c:db:
e9:e2:03:c7:44:bd:5d:29:78:1e:a9:3d:93:42:30:f2:f3:41:
2c:ab:3f:a8:9b:ac:eb:c2:cb:51:df:ca:68:3c:8c:0d:54:b9:
73:77:cb:d7:f4:96:d7:12:25:8d:3d:3e:0b:d8:b4:f3:7c:67:
15:08:fc:33:d7:95:f5:35:6d:77:13:36:55:b4:85:a7:63:a7:
00:fa:e4:5f:0c:e3:86:29:bb:f2:2a:ac:09:09:65:1a:99:2f:
fd:63:6d:27:26:f3:c6:e1:9c:c9:12:a7:7b:81:17:03:d1:34:
2d:cf:cb:f3:07:80:ed:00:c4:0c:80:11:43:2d:18:ed:5a:7a:
e6:14:4b:9d:af:6b:fd:9e:6b:07:2b:6e:57:be:b5:48:33:d1:
fd:3f:62:83:44:25:10:73:f5:93:5e:5a:75:dd:f0:7a:a6:a1:
68:26:6c:2e:02:e2:5c:01:ee:01:e2:66:5d:6d:d0:da:bc:aa:
24:7b:e5:a2:b1:9d:99:a0:0a:8b:55:3d:7e:ad:ad:34:21:42:
26:80:eb:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 00:05:20 2025 by rpki-client