Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/15298BFEC54E11EF8FDDBABC762E951A.roa
File: 15298BFEC54E11EF8FDDBABC762E951A.roa (raw, json)
Hash identifier: SMpAhYm4UpGkfXGJ3GEmmxpDkXUYmFPn8BNI5097yEk=
Subject key identifier: 70:29:12:8E:88:C8:02:9F:58:7C:66:BF:43:18:09:88:6B:CD:C9:42
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 012CF5
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/15298BFEC54E11EF8FDDBABC762E951A.roa
Signing time: Sat 28 Dec 2024 19:01:02 +0000
ROA not before: Sat 28 Dec 2024 19:00:59 +0000
ROA not after: Fri 12 Dec 2025 19:00:59 +0000
asID: 984
IP address blocks: 154.210.4.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 77045 (0x12cf5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 28 19:00:59 2024 GMT
Not After : Dec 12 19:00:59 2025 GMT
Subject: CN=67704aee-e0d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:5b:76:10:68:c5:cb:eb:d7:a7:d1:f7:18:f5:
a8:fc:17:ab:28:fa:fb:af:49:f1:f6:30:18:58:49:
e5:ef:02:a8:2b:47:46:c6:8d:82:c3:cc:78:87:f2:
8e:58:65:f0:3e:c4:73:15:7b:9a:88:17:01:e7:05:
93:c1:7b:64:93:cf:c4:fc:58:fa:f6:47:a7:18:1d:
fe:f0:48:c5:eb:f3:fc:2b:c6:a9:c1:0e:4a:f0:b1:
b3:93:8d:a4:d8:4e:e9:02:48:4b:63:59:19:6d:59:
00:6e:10:3f:68:f6:5e:ba:49:d0:20:b8:fe:63:3e:
c2:05:77:22:31:01:df:22:07:35:56:ff:8a:8d:52:
c2:c9:b5:7e:06:1b:49:28:b0:e9:d3:2d:87:ec:32:
16:34:65:80:87:d7:7c:c6:b9:44:63:cd:a4:70:16:
8e:f5:97:0c:29:04:7c:30:d0:26:62:ec:f6:08:29:
24:b2:c4:52:14:a1:f3:9d:29:f1:67:15:29:6a:93:
1e:79:e3:c1:42:e8:2b:da:11:40:f7:6a:ac:4a:2d:
81:7b:7a:83:91:e3:12:8d:49:db:51:15:2c:8a:15:
40:07:20:6c:8d:b3:f7:b1:e0:6a:c5:02:c3:03:cf:
de:ab:ef:3a:33:cc:df:f8:88:e5:85:e9:ea:8f:83:
2f:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:29:12:8E:88:C8:02:9F:58:7C:66:BF:43:18:09:88:6B:CD:C9:42
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/15298BFEC54E11EF8FDDBABC762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.210.4.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:0f:4c:72:91:eb:bb:37:94:62:91:35:68:c7:10:b0:49:ad:
87:fa:01:10:94:30:89:7c:8e:2a:66:f7:2f:69:6a:a0:39:5f:
bc:09:f6:7c:db:b5:fe:d7:d1:58:cd:fb:36:90:b7:0e:55:95:
78:62:86:65:b0:a1:6e:3b:cc:3a:74:d7:7c:6e:f8:2a:f0:13:
e3:27:a2:d2:d5:fb:f8:c7:7b:7d:9b:6e:87:41:d9:6a:be:e2:
7d:31:64:b7:6c:8b:2a:4b:fe:aa:27:45:f9:6e:72:33:48:9a:
e0:58:01:ba:cd:87:18:fc:49:27:0a:df:86:41:bf:ab:59:4b:
b5:2d:7c:32:96:f7:ad:2b:92:65:c2:94:5f:f1:ed:c6:fe:95:
25:b3:c9:7e:a7:4c:f3:fa:76:85:14:8f:de:49:21:5b:ed:2f:
d5:49:f3:22:8d:08:c2:46:83:92:55:11:09:4c:e8:5c:7d:10:
dc:ef:29:38:d5:52:0e:18:43:42:3f:f0:4f:e1:ac:ac:4f:2e:
4f:a8:3e:41:ff:ce:15:da:cb:dc:3b:c9:20:e1:c8:a9:dc:1e:
46:22:26:9f:50:8f:f3:e7:c1:c9:87:00:36:2f:c2:f6:f2:ec:
bf:43:28:b3:a0:27:7c:fb:93:2e:d4:db:01:17:99:4d:12:72:
e6:fd:a0:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 07:13:48 2025 by rpki-client