Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/117B48E6C0DD11EF99FB5384762E951A.roa
File: 117B48E6C0DD11EF99FB5384762E951A.roa (raw, json)
Hash identifier: pDPp8EqIl7yHuzEGKYZq/l0nN0bSMePFvz+sZzxH7Tk=
Subject key identifier: 30:22:D0:45:CA:DE:BD:E7:E3:FA:D9:91:16:B3:74:B0:AA:C3:34:29
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 011EB8
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/117B48E6C0DD11EF99FB5384762E951A.roa
Signing time: Mon 23 Dec 2024 03:21:58 +0000
ROA not before: Mon 23 Dec 2024 03:21:55 +0000
ROA not after: Wed 10 Dec 2025 03:21:55 +0000
asID: 984
IP address blocks: 154.89.186.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 73400 (0x11eb8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 23 03:21:55 2024 GMT
Not After : Dec 10 03:21:55 2025 GMT
Subject: CN=6768d756-c6f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:64:bc:37:71:41:3f:89:61:f5:d7:35:0c:a0:
58:60:67:a3:7e:94:c0:16:ca:69:8d:58:17:3b:15:
d4:c5:e5:11:19:b6:70:0c:e0:60:d0:c8:44:5c:26:
36:22:e2:5a:38:d6:fa:3b:f1:a6:19:8d:69:26:cf:
d5:c4:7d:74:ca:58:12:5b:07:d1:79:85:7f:bc:82:
3e:fa:12:2d:ea:99:60:d7:e2:c4:31:f5:7b:96:97:
b6:19:bb:a9:b9:ab:96:06:ca:ff:ec:25:12:1b:85:
51:d7:30:52:67:60:cd:e9:37:7b:cb:90:a1:2c:91:
9a:b8:8a:3c:a0:a2:5b:2c:1c:64:46:69:53:14:65:
4a:7e:3e:59:d7:16:37:2d:55:a5:fc:86:14:e3:13:
15:95:d4:b2:b2:2b:c5:09:27:c9:5b:f0:87:8a:03:
b0:f9:56:6f:c0:e9:28:8a:c6:f6:b4:f8:07:57:2a:
37:b7:84:a3:9e:a5:7a:74:57:8c:1a:c3:ee:99:e2:
eb:92:32:bb:6d:56:0e:40:84:88:78:f4:e9:1b:dd:
d1:da:33:37:aa:48:cf:81:93:0e:7b:bc:9e:ef:60:
84:98:b0:3e:18:bb:41:e0:f2:d1:d3:90:ff:87:87:
da:d9:7a:e2:e9:c4:ab:3c:7a:18:02:b3:5d:bc:f1:
2c:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:22:D0:45:CA:DE:BD:E7:E3:FA:D9:91:16:B3:74:B0:AA:C3:34:29
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/117B48E6C0DD11EF99FB5384762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.89.186.0/24
Signature Algorithm: sha256WithRSAEncryption
47:f6:1d:64:a8:a1:a4:71:93:a6:a7:c0:58:48:65:b5:e7:dc:
88:59:b0:29:5b:33:5a:85:1a:e6:dd:3b:62:52:71:11:6f:ba:
a5:6a:ea:e4:aa:f0:33:f9:e9:9e:7d:27:e8:30:57:31:8a:ac:
8e:36:32:d1:fa:16:3b:a9:4f:42:87:1f:7d:be:59:b8:24:4c:
62:2d:55:34:30:24:c3:a4:46:19:4c:a8:c5:03:0d:6c:6f:18:
6a:e4:05:dc:d7:f9:bc:ac:ea:12:91:d8:ee:0f:e2:df:17:65:
96:4d:79:5e:de:29:53:da:72:25:a0:70:bb:3e:9e:5c:bc:5c:
8d:c6:8e:87:4e:27:95:e9:61:d7:29:0c:0b:d1:3e:fa:16:97:
5d:60:df:71:27:3b:22:41:af:f6:fb:65:7c:74:92:5e:2f:63:
13:ca:29:f3:6f:ed:0f:42:7e:69:41:6d:41:02:54:ac:f2:9d:
08:77:a8:95:43:41:5f:42:66:72:30:ee:92:94:70:74:cd:1a:
fe:dc:15:86:ba:0b:1a:ff:ef:21:bb:4d:cb:fd:84:b0:86:63:
51:e9:fa:3d:b6:72:cc:b1:07:b5:5a:3a:2f:08:44:0f:4f:df:
a4:fa:f0:4f:b7:42:7a:08:06:05:8d:6f:30:2a:73:20:20:60:
2c:e1:b1:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:51:39 2025 by rpki-client