Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D44CC5DCD7D211EF8AAFD1B2762E951A.roa
File: D44CC5DCD7D211EF8AAFD1B2762E951A.roa (raw, json)
Hash identifier: jKmLw/AnDHVWv/c43OYK867kRsLqpf+gQoP7pNw3S1Y=
Subject key identifier: 48:AE:7F:78:23:7B:F7:68:2F:DE:B5:23:68:E8:E8:FF:8F:05:7A:A7
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 010D08
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D44CC5DCD7D211EF8AAFD1B2762E951A.roa
Signing time: Tue 21 Jan 2025 08:36:38 +0000
ROA not before: Tue 21 Jan 2025 08:36:34 +0000
ROA not after: Sat 01 Feb 2025 08:36:34 +0000
asID: 44559
IP address blocks: 156.246.154.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68872 (0x10d08)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jan 21 08:36:34 2025 GMT
Not After : Feb 1 08:36:34 2025 GMT
Subject: CN=678f5c96-a441
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:3d:ee:63:9c:1d:c9:83:6c:3b:26:72:1f:3b:
06:60:7e:8b:5a:63:2a:5f:7b:e8:a6:ad:05:a1:43:
23:20:1e:d4:a8:30:40:8b:54:c7:30:a3:7f:40:1b:
82:f1:d5:07:82:66:a7:b7:e4:3b:02:8c:cc:31:9c:
0f:c2:07:98:4b:5f:8e:fa:8e:1c:b7:a5:c2:bb:30:
1c:fe:4c:91:d6:ff:79:58:ad:d9:1e:ba:bc:af:74:
45:f4:21:2a:11:ca:27:f5:81:f6:05:bc:cc:22:48:
da:40:e7:ec:e9:b8:bf:d4:27:9d:3a:74:6d:48:3c:
0e:8b:31:c8:06:66:20:b1:22:66:cf:95:ab:ab:be:
e4:26:c5:64:b5:4b:a4:ee:03:92:53:db:48:1c:39:
4e:21:d1:3e:f3:7b:3a:d6:56:62:1a:51:4d:98:c4:
b5:73:bd:8f:8b:38:a6:dd:2c:41:e9:14:3e:21:3e:
55:b9:50:75:08:53:9b:93:80:61:5c:28:f6:d6:c0:
02:0b:ff:f3:78:8c:b8:1b:41:65:3e:83:98:9b:2c:
91:8a:62:03:1d:1c:0e:69:31:53:0f:5a:8d:22:84:
a2:76:9f:02:3c:69:f7:cd:91:aa:db:90:00:d0:98:
03:de:a8:c0:13:48:b1:eb:ee:b0:77:90:5d:a4:3d:
20:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:AE:7F:78:23:7B:F7:68:2F:DE:B5:23:68:E8:E8:FF:8F:05:7A:A7
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D44CC5DCD7D211EF8AAFD1B2762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.246.154.0/24
Signature Algorithm: sha256WithRSAEncryption
a6:d0:91:53:52:53:01:6b:7c:75:9c:b2:cd:c2:50:83:63:5f:
75:20:d2:60:2f:0a:4a:ba:79:8e:c5:1f:e0:ce:af:39:95:e6:
69:e0:3c:86:26:d1:05:5c:03:c4:1c:89:92:7b:18:da:42:f0:
7c:a3:c9:3b:ca:c5:7d:ac:68:fc:b1:8c:de:43:e4:26:c5:86:
5b:b9:b4:2e:11:8d:73:38:9a:b0:43:62:5c:76:3c:48:e5:61:
ca:59:83:f9:08:45:8d:c0:3b:ac:a6:31:e9:64:da:53:30:19:
4f:1a:e8:3c:3a:67:3f:dd:38:0d:f8:c5:0e:dc:7f:f2:17:e1:
69:ab:79:22:0e:c1:6d:e6:78:e6:5a:58:f3:e8:6b:53:91:f8:
e0:9d:c3:b3:cc:d6:fb:6e:6a:6c:92:64:e8:64:f2:2b:99:f5:
8a:2f:99:75:6e:f9:22:ee:4a:8d:3c:00:6c:2d:cb:bb:48:66:
c3:81:40:e1:52:c6:60:83:57:c9:ed:5d:2c:86:20:c4:44:d6:
9a:1f:08:c3:bb:9a:cb:91:5c:7d:0b:01:93:e1:4b:64:98:fd:
29:33:7a:3d:7d:3f:84:f8:68:76:a1:1d:a2:73:5f:62:25:f6:
ee:1c:3e:cb:dc:af:5e:2f:35:61:fa:be:47:ef:fd:a1:da:d4:
6b:e6:42:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 10:06:52 2025 by rpki-client