Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/00A4B6E4C1A811EF9E52E186762E951A.roa
File: 00A4B6E4C1A811EF9E52E186762E951A.roa (raw, json)
Hash identifier: PgkS4KJ3JWpDhce20CDmphNSQG/2vXBpnh4qg06+bYQ=
Subject key identifier: 77:D5:64:99:D6:E6:A0:34:26:B0:86:6B:45:C9:51:25:F8:3D:60:7A
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 012107
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/00A4B6E4C1A811EF9E52E186762E951A.roa
Signing time: Tue 24 Dec 2024 03:34:38 +0000
ROA not before: Tue 24 Dec 2024 03:34:34 +0000
ROA not after: Wed 10 Dec 2025 03:34:34 +0000
asID: 984
IP address blocks: 154.92.203.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 73991 (0x12107)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 24 03:34:34 2024 GMT
Not After : Dec 10 03:34:34 2025 GMT
Subject: CN=676a2bce-ca97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:d0:a8:c6:75:9e:e0:20:18:bd:30:c7:a3:44:
a7:2c:d1:be:c3:4c:8d:f9:ef:fb:ad:a8:ac:2a:dd:
ac:e5:2d:33:86:44:ae:b5:30:8a:f5:dc:b3:37:d1:
68:d6:4a:14:93:f2:7a:16:e9:63:46:4f:e4:70:ab:
e0:8c:79:bf:ea:52:bb:0e:5f:5b:49:f8:b3:54:76:
93:e5:2a:83:1c:80:81:1e:b8:00:f3:91:17:74:b1:
c8:be:38:d2:f9:02:39:84:b4:86:b8:3c:94:da:a3:
c9:cf:1a:43:55:a7:4d:ac:e2:a2:cc:6c:04:b9:c6:
b7:ca:5d:5b:b8:09:a6:39:19:4d:38:a9:16:36:76:
37:a8:75:4b:5b:ed:9f:39:c2:b3:e8:32:0f:f9:c3:
e3:1d:c8:db:a8:e5:42:36:61:e5:24:2b:43:59:4f:
e1:00:11:65:da:e9:da:8c:48:4d:6f:f6:f5:d1:d2:
15:bb:25:89:d3:27:8a:06:ef:29:2a:77:b2:2c:9c:
90:41:d9:f6:a8:84:d0:44:58:6d:26:43:07:eb:9e:
36:00:14:ce:aa:94:db:6d:94:0b:ed:f9:90:4a:6d:
4d:11:04:ae:9b:3c:72:0c:ee:0f:51:da:1a:f3:72:
f4:80:a3:b8:a7:b2:f0:de:bf:47:26:be:dc:d5:55:
9a:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:D5:64:99:D6:E6:A0:34:26:B0:86:6B:45:C9:51:25:F8:3D:60:7A
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/00A4B6E4C1A811EF9E52E186762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.92.203.0/24
Signature Algorithm: sha256WithRSAEncryption
26:bc:15:ec:62:7a:d3:1c:4b:54:ab:55:a8:61:75:c7:58:1d:
39:04:c8:98:b7:e3:40:bc:8a:72:22:4a:1d:58:0f:07:0c:b3:
b9:76:d0:12:20:65:e9:95:5c:4d:e9:fc:36:97:f8:29:bd:55:
14:eb:37:84:6b:9b:88:37:4e:e4:b6:9c:77:bf:07:eb:d0:f0:
59:46:ec:06:a2:18:d5:51:87:c5:f3:14:a2:3f:8e:e9:d5:f5:
07:45:fa:72:36:2a:9e:b7:e8:99:f6:48:38:55:40:27:6f:0b:
8b:8e:8a:12:15:d6:05:65:b3:ab:34:76:aa:04:9f:60:4c:9b:
ea:08:10:b2:98:67:d8:87:7b:6f:f2:d1:92:c3:e5:b8:1f:76:
71:b4:15:58:19:35:11:fe:c7:92:00:b8:7c:93:f0:0d:84:a7:
10:86:e6:cb:46:ef:a5:a9:ba:d9:32:d1:c5:67:fe:2a:b5:12:
00:4c:a9:32:0d:8d:bf:bc:c3:fb:83:19:7a:03:a0:e3:84:9d:
32:f6:87:c3:59:c3:4c:15:37:86:de:e5:9e:09:9d:6f:2b:7d:
e4:6b:d0:f2:7e:c6:1e:39:e5:83:4b:9f:75:01:00:f0:d0:c8:
1d:b0:a3:b9:0b:f4:7a:8f:5b:e1:bd:3c:7a:2a:dd:84:01:de:
53:25:14:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 10:34:27 2025 by rpki-client