Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0D1F3FB0C65411EFB59BF141762E951A.roa
File: 0D1F3FB0C65411EFB59BF141762E951A.roa (raw, json)
Hash identifier: hhWrx+p4IGPTuoGxT02itPRsIk3QTd7Vf1DoiTO+tJE=
Subject key identifier: 7A:8F:45:69:4F:35:73:DA:71:B6:04:03:3F:57:65:1E:BA:56:15:A9
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01305C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0D1F3FB0C65411EFB59BF141762E951A.roa
Signing time: Mon 30 Dec 2024 02:16:17 +0000
ROA not before: Mon 30 Dec 2024 02:16:13 +0000
ROA not after: Fri 12 Dec 2025 02:16:13 +0000
asID: 984
IP address blocks: 154.218.43.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 77916 (0x1305c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 30 02:16:13 2024 GMT
Not After : Dec 12 02:16:13 2025 GMT
Subject: CN=67720271-6fd9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:16:13:ea:dd:64:92:7f:9e:7f:f8:c3:ac:b6:
c6:64:18:13:6e:e6:c3:16:ca:fa:cd:8a:43:82:3d:
76:08:97:44:5f:a2:9d:18:54:ff:7f:1d:aa:8a:37:
03:84:2b:c8:76:02:26:33:92:90:09:f8:65:19:c4:
12:c2:4a:d7:bb:6e:60:9b:d1:9d:f1:5f:5e:4c:b1:
df:68:df:0c:9b:20:9b:eb:92:4d:c2:a7:a2:a9:ed:
91:1e:66:a5:ef:bb:a1:27:3a:11:9f:91:61:7f:ce:
8a:93:f9:41:9c:77:c0:18:7a:eb:71:0c:92:0e:c4:
23:e6:6d:92:8e:5c:d7:dd:19:01:80:f7:70:53:2c:
cf:42:8b:e1:01:97:7c:2a:fa:4e:fc:98:f1:c5:d8:
dd:0d:ef:74:b5:29:ce:32:a0:76:83:0c:08:be:4b:
ed:17:13:4f:1a:fe:1a:0f:76:9b:fa:c1:d0:bd:e3:
d4:58:0a:28:55:17:68:14:84:c6:58:31:d8:d3:f8:
6f:b7:17:d5:49:b6:61:40:70:c3:55:45:3a:45:0a:
7f:ff:bc:fd:00:d5:c6:72:eb:ab:98:f9:89:87:87:
39:35:bf:c8:f1:bc:59:a1:8b:d8:c2:f0:9b:51:25:
3d:83:29:f4:e1:15:62:1d:0e:9a:61:5c:7e:cd:63:
12:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:8F:45:69:4F:35:73:DA:71:B6:04:03:3F:57:65:1E:BA:56:15:A9
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0D1F3FB0C65411EFB59BF141762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.218.43.0/24
Signature Algorithm: sha256WithRSAEncryption
66:61:09:d1:2a:5b:e3:24:c4:a5:aa:59:44:ab:0a:43:a6:d8:
69:d0:af:42:43:f5:c9:ef:f0:e0:33:90:20:6f:00:54:4b:bf:
37:ea:7c:a0:0d:32:91:f3:30:c2:14:0c:82:c4:8c:d2:ae:89:
58:94:e8:69:ab:e7:eb:71:58:be:1d:49:c6:4f:51:a5:ea:fb:
3c:7a:ea:15:fe:95:59:4c:8b:26:a7:53:41:66:df:87:44:74:
fd:04:f7:50:8a:a3:30:73:05:05:93:bd:06:1d:97:57:e8:45:
a7:99:1c:1e:2b:d9:5f:ef:68:99:bc:9c:22:e5:6c:d8:36:07:
5e:52:48:11:1b:62:d4:e6:36:a6:84:8a:71:d3:97:c2:6a:64:
b0:e2:28:fb:bf:b8:ec:5e:a3:40:55:50:43:1f:93:20:2b:cd:
ae:f6:51:92:df:0f:22:4c:40:54:5e:80:ab:d6:9d:22:16:39:
39:16:94:ad:6b:0f:59:58:fc:46:62:4d:b8:ea:83:8a:3b:21:
a7:f8:8b:a1:68:c3:3f:44:71:8a:ee:e9:ba:b3:95:ce:03:00:
5a:8e:fd:b1:60:ba:7b:ee:f8:2e:b8:99:a1:ee:64:0f:59:68:
d5:91:95:d3:4d:70:0b:1b:45:72:e9:10:4a:1d:7c:df:89:db:
5e:ed:9b:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 11:16:05 2025 by rpki-client