Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1E5F7316F41D11EFA90B6D51762E951A.roa
File: 1E5F7316F41D11EFA90B6D51762E951A.roa (raw, json)
Hash identifier: baHHy8dwaHUfGTqN5xMEOEAXx2vzaNBa8esAbNz+eU0=
Subject key identifier: 95:97:1B:D9:E9:97:23:FE:66:74:71:E5:2F:F6:D6:7A:F1:59:D8:7D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 016169
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1E5F7316F41D11EFA90B6D51762E951A.roa
Signing time: Wed 26 Feb 2025 08:38:57 +0000
ROA not before: Wed 26 Feb 2025 08:38:54 +0000
ROA not after: Thu 19 Feb 2026 08:38:54 +0000
asID: 328608
IP address blocks: 154.200.195.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 90473 (0x16169)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Feb 26 08:38:54 2025 GMT
Not After : Feb 19 08:38:54 2026 GMT
Subject: CN=67bed321-2c2f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:8a:44:9c:ae:f9:c6:37:ba:0b:be:5f:e0:7c:
f1:fb:2f:bc:18:18:87:ed:8c:e2:61:6f:50:65:c7:
81:93:4d:20:5a:23:a9:0f:5b:74:ff:79:f8:1c:76:
34:d7:cf:69:02:a0:67:db:ae:17:fd:a1:a8:ec:0a:
be:8c:c8:3a:11:bb:20:08:af:c5:6d:f2:0c:ae:00:
a8:31:85:73:0a:1d:ab:0b:9b:54:c1:ca:98:9d:3a:
47:1e:27:be:87:d7:f8:1e:2b:3b:30:0b:61:f2:7e:
8a:41:86:e3:c2:4c:c7:a3:f6:21:e7:e4:75:27:11:
9d:3b:de:bc:46:f1:6d:fd:37:e3:30:45:dd:09:60:
86:6b:45:e5:34:21:d2:c6:dd:f6:2a:ba:e2:28:92:
fa:6e:bf:4a:79:6c:42:49:92:bd:ca:81:92:9e:37:
aa:72:4b:6f:9f:57:23:71:72:02:68:68:a4:cc:4a:
09:d8:26:55:82:ed:25:6b:76:39:3c:37:f6:40:29:
d6:54:16:25:2e:a5:6a:8f:3f:d4:f7:0c:e9:da:ea:
bf:53:e8:fd:f6:13:01:6a:97:eb:ba:c1:ca:59:27:
7c:0a:25:ab:88:36:51:3a:54:9d:ed:42:91:ce:6f:
71:d9:c3:df:e2:06:3c:d8:76:02:17:60:13:be:f4:
aa:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:97:1B:D9:E9:97:23:FE:66:74:71:E5:2F:F6:D6:7A:F1:59:D8:7D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1E5F7316F41D11EFA90B6D51762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.200.195.0/24
Signature Algorithm: sha256WithRSAEncryption
67:4f:86:c4:c1:19:52:84:b8:64:3d:7f:f4:cd:ed:76:8a:1d:
66:db:8b:30:9d:48:92:6d:44:9e:d9:91:e5:09:6f:51:a5:44:
c8:8b:1d:a6:98:ad:c7:43:d0:77:c5:5d:5e:3c:ee:84:92:9e:
46:9c:a8:0a:38:1f:97:5a:09:df:36:5d:94:df:8b:32:11:8a:
37:fd:2d:60:ff:04:e1:dc:9c:51:4e:e9:5f:1c:fe:af:2c:e7:
28:a7:7e:35:32:74:37:b8:4a:22:5c:5b:7a:92:1f:0a:9a:a4:
a2:77:01:d2:fc:3d:5b:fe:82:e1:17:16:bc:5a:8f:7a:42:5f:
bb:21:b9:03:80:b8:59:a9:8b:f8:19:3c:0e:70:8f:08:72:81:
81:1c:f1:7a:6a:d9:91:a3:db:6c:65:90:6f:e5:57:73:5e:94:
50:93:e9:93:2b:8d:a7:44:4c:67:5b:78:8d:a9:b8:db:49:3a:
43:25:f2:e2:b7:3d:58:a2:7b:c5:6f:9d:12:6a:7e:99:19:5a:
03:04:64:39:16:1f:99:07:cc:d2:87:12:1f:02:83:20:7b:c0:
d2:61:27:e0:00:d6:3a:b7:20:f5:f2:e4:29:bd:a5:39:a7:a7:
24:63:11:d2:dd:95:3d:4b:0c:3a:f5:c4:d0:4e:04:8a:78:82:
46:aa:65:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 01:48:13 2025 by rpki-client