Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/04F1D85EC26011EFBA981D99762E951A.roa
File: 04F1D85EC26011EFBA981D99762E951A.roa (raw, json)
Hash identifier: 5s6CUwEWcfxCy4azvt58IJYSz+7Z12rsc2Za2yYNCjU=
Subject key identifier: 81:38:B4:35:11:E5:4B:ED:2B:73:8E:36:AF:65:D8:80:12:58:31:18
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0123A6
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/04F1D85EC26011EFBA981D99762E951A.roa
Signing time: Wed 25 Dec 2024 01:31:53 +0000
ROA not before: Wed 25 Dec 2024 01:31:49 +0000
ROA not after: Wed 10 Dec 2025 01:31:49 +0000
asID: 984
IP address blocks: 154.199.96.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 74662 (0x123a6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 25 01:31:49 2024 GMT
Not After : Dec 10 01:31:49 2025 GMT
Subject: CN=676b6089-2513
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:1a:43:8a:6d:c3:8b:f9:1d:8d:c3:68:11:7c:
2b:8c:5a:a8:86:78:37:50:3a:8d:9a:3a:99:75:72:
c3:3f:2d:91:c4:07:82:1b:87:ee:76:38:f2:da:7d:
18:09:7b:53:f0:43:97:3c:46:c6:0a:ad:e8:ff:b7:
be:89:f7:1b:2e:7a:4a:c9:d4:9c:a8:ad:c9:e2:7d:
f9:34:4b:4b:7d:dc:a5:3d:23:f1:ee:42:01:e3:d2:
cf:d1:3a:81:69:c1:44:10:04:ea:b0:d3:49:cd:57:
0a:90:4e:f7:22:d6:3e:30:20:54:d9:ff:62:99:ef:
8a:de:92:20:a3:c2:28:52:a2:62:b3:23:eb:ad:56:
1b:8d:53:8f:ce:2b:26:52:87:78:e0:c6:8c:5d:15:
e6:82:fc:b8:b3:1e:63:3a:12:31:d7:9f:7c:e0:bf:
ae:f6:71:ff:9a:d3:b7:60:d1:31:73:a5:3f:1d:fa:
90:16:d2:9a:85:c7:47:2a:6a:24:e3:b7:1c:09:0b:
58:81:cc:de:02:0b:a4:79:91:4c:70:ab:e1:ef:b4:
dc:84:f9:c1:fc:94:b2:ec:b6:27:a7:22:76:b0:ff:
d2:55:03:5e:87:46:2f:0e:32:50:bc:a4:55:d4:74:
3e:ec:5a:e3:e4:e5:02:d1:b7:b2:c8:4b:21:42:70:
c6:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:38:B4:35:11:E5:4B:ED:2B:73:8E:36:AF:65:D8:80:12:58:31:18
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/04F1D85EC26011EFBA981D99762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.199.96.0/24
Signature Algorithm: sha256WithRSAEncryption
74:5d:b0:24:48:95:f2:ee:d6:24:0a:bf:9f:9c:d7:63:1f:39:
cb:6a:73:4e:cc:76:b2:de:7c:1c:d5:7d:bc:73:d8:03:f9:b7:
8f:a8:08:a9:68:8d:48:9f:a3:4f:94:62:5d:9b:4a:00:6b:f5:
cd:61:59:77:bd:81:46:d0:08:c0:5e:02:14:d7:f9:9f:77:b9:
5d:23:da:bc:74:90:72:1c:36:99:a7:a6:dc:e8:c8:ea:c7:d8:
38:e4:b8:86:13:f2:6d:93:d5:58:81:d0:c1:dd:e6:40:33:e1:
50:37:a3:45:e6:9c:ac:cf:a2:4b:ba:77:2b:3f:ba:e2:d1:fc:
e2:bf:c3:2c:dd:3a:d7:88:d4:c1:03:0a:f6:05:09:de:75:12:
1c:26:c0:ce:b9:5d:b6:f2:91:1b:08:5f:e0:2f:81:1f:cc:98:
f5:d7:e8:46:f6:e9:5c:67:c5:1b:87:a0:6d:4c:54:4c:e7:65:
7b:d5:d3:e1:20:f9:3f:b0:7b:03:f9:84:f0:fd:7f:b4:4f:0f:
e9:67:cd:21:36:8b:64:73:61:82:ca:4b:ca:68:36:92:e4:61:
3a:c7:57:ea:29:f2:16:0d:9e:c2:64:81:ff:25:0e:10:59:47:
8c:5c:60:ee:75:47:00:7e:12:9d:58:27:c6:82:6f:2f:dd:c6:
6b:ea:62:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 00:49:12 2025 by rpki-client