Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DFE1BB90D7EC11EFAA395F5D762E951A.roa
File: DFE1BB90D7EC11EFAA395F5D762E951A.roa (raw, json)
Hash identifier: 2u6TT4X6VuL7MPXit5I1PaBRMinfdYLATa+WuVQ0dRo=
Subject key identifier: B5:4F:10:60:27:D5:08:2D:84:3A:79:38:04:F4:89:C1:38:33:B5:E8
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 010D78
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DFE1BB90D7EC11EFAA395F5D762E951A.roa
Signing time: Tue 21 Jan 2025 11:43:04 +0000
ROA not before: Tue 21 Jan 2025 11:43:00 +0000
ROA not after: Sat 01 Feb 2025 11:43:00 +0000
asID: 44559
IP address blocks: 156.246.221.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68984 (0x10d78)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jan 21 11:43:00 2025 GMT
Not After : Feb 1 11:43:00 2025 GMT
Subject: CN=678f8848-2b95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:6f:40:39:77:aa:63:8e:71:b1:80:4e:8d:f8:
c3:ce:c7:c8:4f:62:82:86:5f:fe:8e:6d:c3:2c:36:
ec:20:04:a3:2c:44:68:8c:a0:fc:77:fa:df:c0:8c:
2a:39:8a:8a:12:ac:96:b4:51:ca:60:97:1c:c8:29:
9b:a3:34:f4:96:2f:b7:ee:f0:24:c0:f3:67:e1:49:
69:b0:01:96:2f:fb:20:54:4a:61:f9:6e:56:ae:92:
26:5b:99:82:c2:90:84:76:25:db:26:58:82:26:a2:
ea:14:a8:83:bb:88:3a:03:8a:30:2e:66:d1:1c:82:
22:d2:3c:f8:b4:44:a4:4e:a6:ff:cc:47:c1:8b:95:
d2:f7:74:b1:8f:24:df:83:b8:1a:88:02:2a:55:59:
97:68:ca:36:05:4f:f8:9a:3e:cc:2b:48:5c:ce:a9:
db:e7:8e:5b:8d:82:86:13:49:cb:06:c2:61:84:20:
3b:b3:57:f9:c2:98:ed:f9:c8:c4:9c:94:d6:20:5c:
36:e9:ff:56:72:af:3a:01:21:85:9f:47:ec:4d:67:
d4:a1:23:c2:cd:53:e5:8d:94:a8:4f:ce:fa:a0:ff:
06:73:7a:fb:9b:9a:8e:6d:8f:90:2e:42:54:c4:e9:
17:ed:22:e7:99:33:c5:49:83:d9:23:84:80:5a:e6:
50:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:4F:10:60:27:D5:08:2D:84:3A:79:38:04:F4:89:C1:38:33:B5:E8
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DFE1BB90D7EC11EFAA395F5D762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.246.221.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:96:bc:ab:ab:0e:53:99:e4:a1:8d:fd:34:2e:e9:f3:6b:50:
1f:20:99:bf:6d:17:ac:9c:66:a4:f9:55:68:6c:70:35:88:cd:
4a:ef:1f:db:4c:99:60:fb:5d:eb:6b:a7:37:c2:1f:0c:2c:b7:
54:46:a3:0a:53:97:da:87:49:2f:66:67:1f:31:f7:43:be:f4:
cd:65:7b:50:04:d7:ef:09:f0:03:7a:83:5e:42:a4:d9:a3:96:
c9:89:0e:00:79:8c:a7:55:77:84:12:5e:06:60:9a:d9:11:63:
e5:22:5b:9b:15:2c:04:2e:ce:86:f7:33:32:71:26:28:4f:43:
b2:2c:a8:87:d6:da:7c:c9:3a:b8:b1:b9:af:95:51:23:94:0f:
3a:a1:be:20:54:c5:e9:87:ba:3f:f4:d1:a4:2a:e8:d5:7f:24:
36:bf:2f:ca:09:f2:06:83:c0:c1:a7:eb:8b:89:67:97:ff:93:
07:dc:d6:5e:f4:24:f1:72:d7:26:8d:3f:23:90:f9:fa:9b:89:
93:0f:45:c9:56:f4:c8:54:91:6c:2e:d1:12:b3:35:c6:dc:3b:
2d:84:89:0f:cf:f2:9a:dd:8d:a9:ad:8d:c7:4a:c9:16:7d:6a:
60:f0:24:b1:36:2b:08:56:d1:3d:d6:03:4d:8f:cb:25:c4:66:
54:7d:1e:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 10:22:17 2025 by rpki-client