Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/163542CC070711F0A74ECEA9762E951A.roa
File: 163542CC070711F0A74ECEA9762E951A.roa (raw, json)
Hash identifier: iBOxJdhEH8t3QyeHxuChbFIfAarksKybE4Tg+zMUosM=
Subject key identifier: 83:76:CA:1E:B4:DD:72:6E:07:88:D0:05:2D:BB:B9:DF:9A:5D:C5:AD
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01758D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/163542CC070711F0A74ECEA9762E951A.roa
Signing time: Sat 22 Mar 2025 10:19:07 +0000
ROA not before: Sat 22 Mar 2025 10:19:03 +0000
ROA not after: Thu 08 May 2025 10:19:03 +0000
asID: 5068
IP address blocks: 154.83.71.0/24 maxlen: 24
154.83.78.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 95629 (0x1758d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Mar 22 10:19:03 2025 GMT
Not After : May 8 10:19:03 2025 GMT
Subject: CN=67de8e9b-604e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:e3:72:9b:e4:8f:58:79:7d:d2:10:52:21:3b:
88:31:3f:b5:a5:df:58:4f:1d:c1:a1:08:73:f8:7d:
0e:ee:bf:89:16:ed:d6:8a:f6:d0:6f:e9:a4:9c:ba:
41:42:79:56:30:3b:b4:dc:ae:82:c4:b3:12:b9:72:
9c:2f:f0:fe:3c:e4:07:48:d7:91:c9:09:76:41:fb:
cf:88:b0:7c:02:99:22:b4:7d:d0:7f:43:71:d8:66:
8c:9a:e1:35:4b:2e:df:ff:bc:59:54:6b:c9:c7:5f:
6f:a0:83:4c:18:eb:2c:2a:7b:ed:85:41:e4:27:cb:
d4:f8:b7:dd:42:1c:33:da:b7:5b:d9:af:74:50:68:
c4:cf:4d:b1:e3:7d:49:e8:59:d0:ab:fd:32:e7:80:
40:26:fe:a7:a6:66:e0:36:22:f7:7d:25:4a:62:37:
c3:20:2d:18:a0:95:43:c6:2e:c0:b9:9c:e6:16:22:
35:b4:9d:05:9c:30:49:09:35:74:2c:5b:b3:e5:72:
b4:9b:c2:ef:e5:ed:9d:20:7f:98:dd:e6:aa:24:b5:
01:3c:85:4c:c7:d7:96:46:86:ce:ac:10:80:4e:5b:
0a:7f:4b:bf:7f:52:45:6a:fd:f3:85:f6:ae:bd:7b:
07:3d:c5:92:36:79:dc:cb:b9:9e:84:16:6a:8b:4e:
35:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:76:CA:1E:B4:DD:72:6E:07:88:D0:05:2D:BB:B9:DF:9A:5D:C5:AD
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/163542CC070711F0A74ECEA9762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.83.71.0/24
154.83.78.0/24
Signature Algorithm: sha256WithRSAEncryption
ca:d9:54:ca:c9:53:e1:c1:fe:cd:93:ae:ba:b2:ac:26:7b:df:
0a:0b:cc:4d:2f:75:40:59:dd:fa:93:36:4f:dc:e3:46:77:fa:
fd:5a:45:ee:a7:e2:e0:e2:41:d2:19:0f:cb:ce:ee:c5:7c:e1:
f2:26:c3:0f:bc:6f:7c:66:f6:21:21:85:45:7b:b7:d0:de:b2:
8a:48:85:e8:b9:a9:25:09:20:17:9c:0e:e7:7e:d0:63:0e:59:
00:02:25:ae:4e:92:2e:c3:84:ad:a3:3b:0b:85:00:f8:c2:52:
4f:8d:94:85:37:fb:8f:f1:31:2e:98:ea:e5:ac:a9:ca:e7:08:
69:15:f6:6b:3b:d1:76:d1:85:fe:3e:db:23:41:22:84:ea:ef:
9b:6b:d8:4e:29:ab:48:04:6a:9c:88:2e:4a:99:e9:b8:50:2e:
c1:99:7b:34:df:a3:94:48:d9:d8:5a:42:fa:6f:9c:5c:12:9f:
0d:d5:28:05:1e:48:ea:5f:74:36:32:95:d4:70:f6:67:3e:f0:
c5:73:9e:ea:49:39:f4:67:9c:85:ca:1d:af:31:79:24:a1:6e:
23:4c:24:48:3d:bd:cd:d7:20:0e:08:ce:79:d1:48:80:26:0d:
07:61:e7:bd:05:7e:6c:50:2d:6c:60:4c:c5:32:08:11:30:e8:
00:a6:28:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 18:03:03 2025 by rpki-client