Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1C3AAE5E018611F090EBC8BD762E951A.roa
File: 1C3AAE5E018611F090EBC8BD762E951A.roa (raw, json)
Hash identifier: feCT17E4mcjEonAUwAblPVQ8swP8BavMjDAYix+f/TQ=
Subject key identifier: 91:E7:1A:B3:D4:33:F2:48:74:4C:20:33:B9:9A:98:83:AB:7B:67:AE
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 017463
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1C3AAE5E018611F090EBC8BD762E951A.roa
Signing time: Sat 15 Mar 2025 10:13:16 +0000
ROA not before: Sat 15 Mar 2025 10:13:12 +0000
ROA not after: Fri 25 Apr 2025 10:13:12 +0000
asID: 174
IP address blocks: 154.214.0.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 95331 (0x17463)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Mar 15 10:13:12 2025 GMT
Not After : Apr 25 10:13:12 2025 GMT
Subject: CN=67d552bc-9fc3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:6a:48:eb:ed:fd:79:3f:11:eb:4c:d3:ae:b2:
f5:0d:c7:5f:31:34:86:e4:61:cc:47:8a:fd:f3:f6:
5a:c8:46:b1:cd:31:f8:fa:97:f9:c1:da:af:e0:5e:
b5:df:e9:22:2b:66:97:3b:d7:2d:2f:d1:f2:5b:95:
8a:07:c6:c3:90:29:36:cb:73:3c:fa:17:ef:ad:3c:
75:7a:7d:b2:36:f8:de:9c:9b:64:6e:16:6e:b2:2f:
eb:00:09:39:94:2e:0f:68:e6:bf:9a:13:12:9a:85:
c6:e9:6e:d5:73:a6:8e:56:15:10:18:da:6f:b7:a6:
ca:a8:5a:fb:53:71:ce:cf:dc:3a:f0:9d:1c:44:fe:
31:c7:96:bc:50:5e:b8:96:2e:21:3e:45:56:d1:9f:
47:99:5c:29:7c:7b:fa:20:14:8b:e4:31:12:c2:18:
9b:78:99:75:8d:dc:8f:b3:82:8e:26:d1:74:c6:dd:
53:41:1a:cf:b2:78:4e:51:d5:af:8b:09:45:02:3c:
f5:74:5d:f5:29:95:ad:b4:46:6b:86:19:81:9a:40:
10:a1:cd:59:61:2e:b8:1f:cc:f7:1c:81:60:65:2f:
b6:1a:39:5c:dd:a1:c8:42:c3:0a:a6:a1:30:8d:4f:
49:48:2d:4e:f4:5d:08:01:30:0a:17:cb:51:7a:f5:
08:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:E7:1A:B3:D4:33:F2:48:74:4C:20:33:B9:9A:98:83:AB:7B:67:AE
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1C3AAE5E018611F090EBC8BD762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.214.0.0/24
Signature Algorithm: sha256WithRSAEncryption
c7:58:4e:a1:08:72:cf:f1:31:f9:23:71:3f:80:2c:80:bf:9d:
7b:af:ee:e7:cd:bd:29:db:51:90:25:01:3b:4d:31:d6:d5:0e:
7f:07:00:14:c7:d8:1b:07:85:b4:58:0a:83:3e:08:0d:f5:3c:
72:0f:f4:5f:65:0e:36:91:cf:27:d8:82:ef:23:25:dc:e1:08:
e0:8d:9b:dc:fe:b0:01:0e:e8:6c:64:2c:e8:6a:9b:3f:e6:29:
2a:94:2c:49:65:55:0a:2c:c1:9b:9f:cc:a1:38:f1:7f:f6:19:
d5:95:02:6a:db:35:3b:2a:fd:29:7a:af:a5:ca:0a:ff:1b:8d:
dd:37:c6:0f:b3:8b:1b:d5:51:32:68:67:b6:0d:13:7d:62:db:
9a:e9:3a:3c:50:4f:36:ed:4b:7c:ed:6d:95:f3:7f:70:95:40:
91:5f:95:12:bf:c7:c5:9a:d0:24:b4:a2:3f:49:b8:b3:f6:cf:
e9:fe:de:ea:2d:8f:c2:5f:3a:21:b9:b0:5a:03:5d:2b:31:e9:
d1:5b:c3:b7:16:78:78:21:81:4b:0d:91:28:71:fa:c5:8b:43:
d2:7e:34:df:04:2b:94:13:29:9f:80:f5:cb:40:49:54:16:42:
b2:97:3a:c3:4f:36:e5:cc:4d:c2:5e:eb:23:fb:e0:5a:62:62:
44:c7:73:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 16:50:30 2025 by rpki-client