Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1CBC2B6AC5F311EF9A5BBA54762E951A.roa
File: 1CBC2B6AC5F311EF9A5BBA54762E951A.roa (raw, json)
Hash identifier: r+iyEoYFcO0N7GZXkqafcmJiBg4YSMqYOnyzrDe/QOs=
Subject key identifier: 68:B5:E4:35:1D:AD:34:E9:62:86:93:27:90:E7:91:D4:D9:42:B9:EF
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 012DE8
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1CBC2B6AC5F311EF9A5BBA54762E951A.roa
Signing time: Sun 29 Dec 2024 14:42:22 +0000
ROA not before: Sun 29 Dec 2024 14:42:18 +0000
ROA not after: Sun 12 Dec 2027 14:42:18 +0000
asID: 17561
IP address blocks: 154.211.62.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 77288 (0x12de8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 29 14:42:18 2024 GMT
Not After : Dec 12 14:42:18 2027 GMT
Subject: CN=67715fce-6dd6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:14:d7:b7:29:d2:90:48:3e:84:a9:db:49:c3:
16:03:91:48:29:c2:25:06:e2:d0:01:aa:c1:26:ef:
a8:86:d6:18:39:2b:da:2a:a3:d8:93:46:13:cc:9f:
17:f5:86:17:ca:40:4d:cd:df:d6:d7:e2:57:42:b2:
ca:9d:d7:e1:2d:f5:e0:2b:96:fb:e6:78:b8:e7:08:
11:4b:44:e3:50:fe:92:15:37:0f:c4:81:fd:a3:e2:
1e:7e:da:a6:c7:f0:d3:81:cb:c9:2c:17:35:98:1a:
64:46:24:74:e7:d4:a4:64:fa:c0:9d:3a:af:6e:72:
9a:6d:6b:c2:06:66:f1:63:ec:5a:53:dc:53:63:51:
5d:cf:ac:39:19:03:40:4b:22:cb:12:e7:de:8e:98:
e0:27:ab:9e:42:97:aa:a0:f9:ed:fc:d4:03:11:cd:
3c:b3:41:52:cd:60:e5:7a:cc:f4:3c:25:c5:ac:86:
5c:34:1d:8c:74:f4:82:f7:c6:42:85:e7:68:7f:1c:
89:56:2c:3a:13:66:66:7b:30:0a:7d:b8:61:48:54:
1e:f3:eb:5d:07:a9:b7:fd:9c:42:d0:75:60:02:47:
9b:59:d7:c6:4f:e1:cb:d4:a6:10:38:b4:2c:0b:39:
d8:a1:9c:49:17:e2:20:31:09:a4:58:2a:05:6c:32:
db:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:B5:E4:35:1D:AD:34:E9:62:86:93:27:90:E7:91:D4:D9:42:B9:EF
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1CBC2B6AC5F311EF9A5BBA54762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.211.62.0/24
Signature Algorithm: sha256WithRSAEncryption
87:df:66:29:56:69:6b:0f:89:41:e8:e8:9b:9e:5a:01:6f:2e:
13:5a:44:20:39:de:98:22:57:7b:0b:9e:66:21:b6:15:98:1e:
7c:5a:93:87:a2:92:46:72:a6:ba:8d:43:89:00:79:4c:e1:d6:
81:61:4f:51:af:ff:3b:d8:4d:eb:05:23:6e:f7:63:67:5e:ff:
bc:74:76:04:04:2c:19:de:56:00:39:03:05:42:33:b1:d2:07:
b8:c1:9b:49:fc:a5:c0:78:90:9d:d7:94:3c:76:d3:99:03:55:
e1:79:25:ec:89:18:84:ec:8b:12:d4:99:20:97:cb:fd:a6:d7:
71:f7:0d:26:70:ae:75:b8:86:ae:b2:04:b7:14:ea:0d:87:ae:
94:34:60:76:0f:48:d3:4e:bf:f8:15:ab:8d:36:a6:eb:48:c6:
09:30:d6:29:47:00:93:e9:81:aa:26:62:25:e8:23:81:51:4d:
aa:a2:2b:b6:f2:1f:5f:dc:d3:78:63:0e:68:f2:67:8a:a0:99:
ea:ed:0d:39:05:25:f8:a0:f2:48:b2:a2:9f:34:dc:0e:ad:f8:
e2:65:be:65:82:fd:91:69:d3:0a:d8:ee:95:11:6f:25:71:b4:
0c:06:ed:9a:4b:68:92:c7:eb:50:20:1f:df:2c:9a:19:e1:90:
af:e4:1f:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:55:03 2025 by rpki-client