Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/02AD952CC1D111EF8D5D2A89762E951A.roa
File: 02AD952CC1D111EF8D5D2A89762E951A.roa (raw, json)
Hash identifier: rgOyQkVJ5P6JuZ1TIpuONDnYh1ikA09t11MN891FPOA=
Subject key identifier: 84:EF:AC:D8:57:C3:BD:04:17:4F:ED:35:B0:4B:FB:A6:AB:A0:14:7B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0122A1
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/02AD952CC1D111EF8D5D2A89762E951A.roa
Signing time: Tue 24 Dec 2024 08:28:11 +0000
ROA not before: Tue 24 Dec 2024 08:28:07 +0000
ROA not after: Wed 10 Dec 2025 08:28:07 +0000
asID: 984
IP address blocks: 154.193.240.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 74401 (0x122a1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 24 08:28:07 2024 GMT
Not After : Dec 10 08:28:07 2025 GMT
Subject: CN=676a709b-4338
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:93:98:ff:82:0d:36:d0:a5:05:83:30:61:6b:
f5:4f:e3:1f:ff:07:cb:32:7c:be:6f:ad:1d:38:b0:
3b:b9:d1:fa:10:13:24:2d:0f:54:8f:02:b3:67:52:
32:5c:a9:87:78:86:46:7c:bb:ff:e6:e6:d0:08:38:
c6:88:71:c9:98:85:07:7f:99:02:7a:64:7f:b7:4b:
5d:ff:71:a1:3a:95:74:f5:92:36:a8:3c:c0:c5:30:
80:c1:a8:ea:d9:1e:ec:22:92:fe:5b:7f:e5:d9:70:
6b:10:a9:f6:d5:08:f5:fa:36:f4:f1:10:3b:63:d5:
67:ac:60:e6:88:8f:77:6c:20:8c:0f:31:e7:4a:26:
af:b1:2d:14:60:1b:da:8e:d7:5e:eb:b8:1b:3e:34:
e3:ec:b5:86:d1:b5:8c:28:c5:fe:c0:3f:10:48:34:
6c:15:9f:0b:bb:b5:79:2a:b5:5e:5b:47:8c:bc:4e:
1a:3d:42:fa:89:bf:72:39:6b:fc:88:fa:40:95:81:
79:a1:19:23:f5:36:34:75:d6:3a:77:83:70:92:73:
6f:8c:40:55:71:10:29:db:d5:db:4f:1d:46:b4:0a:
92:c9:e6:97:b4:44:e6:61:4e:3f:7d:6c:6d:e7:a6:
11:9a:d5:b8:9a:b2:62:ff:d6:42:5d:b5:99:97:30:
b1:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:EF:AC:D8:57:C3:BD:04:17:4F:ED:35:B0:4B:FB:A6:AB:A0:14:7B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/02AD952CC1D111EF8D5D2A89762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.193.240.0/24
Signature Algorithm: sha256WithRSAEncryption
b2:e8:cb:55:4b:43:27:eb:83:74:4a:22:ea:7d:54:e8:3e:8b:
8a:bf:b5:a3:7f:28:3b:84:6d:a1:52:bc:44:01:3e:97:9b:92:
69:00:bf:1c:8a:e7:c1:00:b7:a9:b9:25:fc:a2:02:71:40:6f:
03:6f:43:43:2e:bf:25:af:b5:57:bc:fc:ff:68:f0:d3:07:b5:
f0:9d:ae:3d:63:c3:23:6f:aa:24:ec:48:72:42:ee:10:5e:39:
f4:79:c1:da:32:06:c0:fa:7d:ec:d8:c9:b1:e2:4a:92:65:a0:
d8:5b:b6:f6:8f:67:7c:c2:e3:1a:9e:d2:47:87:f9:16:50:17:
99:ea:18:34:c0:d4:48:22:2b:1b:30:7d:5d:db:e4:8e:b3:a1:
5e:c9:c3:f7:91:f0:ad:e2:e3:2d:b5:37:68:f7:ac:67:39:aa:
dd:3c:27:cb:91:7a:f6:16:ab:27:3a:75:dc:05:b8:d3:fb:87:
d5:06:f8:e4:9a:bb:19:ce:34:c4:9b:99:57:c1:f4:55:ae:cf:
0a:0d:ae:2b:33:41:92:fb:ea:62:6d:54:e0:9e:3e:2c:fd:8b:
1d:50:bd:f8:f0:34:8d:38:6d:f5:2d:76:a0:b4:37:90:70:67:
68:24:fd:6b:f6:fc:46:c9:5a:ca:fc:1b:13:67:f8:6a:3a:3f:
a9:9b:92:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:43:30 2025 by rpki-client