Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/20CE09D6C0F711EFB21766AA762E951A.roa
File: 20CE09D6C0F711EFB21766AA762E951A.roa (raw, json)
Hash identifier: tbnQ5NeCs+GYvqMUTS+9tmVqGYd2ph70ORx3zwmoiLA=
Subject key identifier: 8C:46:A4:5F:0D:5D:35:1D:95:69:81:FC:B1:23:30:FF:10:F3:0B:9F
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 011F9C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/20CE09D6C0F711EFB21766AA762E951A.roa
Signing time: Mon 23 Dec 2024 06:28:31 +0000
ROA not before: Mon 23 Dec 2024 06:28:28 +0000
ROA not after: Wed 10 Dec 2025 06:28:28 +0000
asID: 984
IP address blocks: 154.90.146.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 73628 (0x11f9c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 23 06:28:28 2024 GMT
Not After : Dec 10 06:28:28 2025 GMT
Subject: CN=6769030f-22cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:eb:96:37:03:43:95:b9:64:68:2d:ce:08:63:
21:39:db:e8:7f:4d:48:ed:f9:46:71:92:c5:1e:a4:
c3:30:1e:dd:6d:c4:7e:f2:01:ed:2e:71:bd:53:28:
cc:f4:57:21:85:1a:fa:d9:c8:56:91:a8:8f:6a:e9:
f9:bb:8a:c2:43:b3:af:b4:18:27:18:80:1e:e7:29:
f2:7c:f1:c7:ee:37:41:e8:90:5e:89:62:96:11:46:
d7:f9:bd:21:80:d9:1c:a7:f1:51:10:1f:c6:13:f5:
7d:d1:6c:8c:9c:35:2a:c4:1b:5f:6d:1a:45:d8:b1:
88:da:5d:1f:95:3c:da:fd:2c:8d:a5:38:a6:d2:6c:
56:40:85:2f:71:3e:37:aa:b6:2d:fe:40:80:3b:3b:
43:9c:55:57:af:7c:e1:62:09:b7:a5:27:4c:cc:35:
06:b3:c5:85:ce:18:a7:c5:7c:7f:21:ce:33:c9:3c:
87:eb:6b:7d:99:df:c4:e0:b4:b0:f1:0d:27:a5:96:
bf:e6:1e:b3:06:44:16:1f:98:32:25:12:fc:08:95:
4a:ae:6a:c9:1f:28:f2:9d:cf:71:0f:31:37:1c:f4:
5e:36:6b:73:99:1d:7b:53:95:8b:78:a2:b9:c4:1a:
a0:54:44:e6:be:86:d4:29:0c:c0:ff:90:78:9d:1d:
08:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:46:A4:5F:0D:5D:35:1D:95:69:81:FC:B1:23:30:FF:10:F3:0B:9F
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/20CE09D6C0F711EFB21766AA762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.90.146.0/24
Signature Algorithm: sha256WithRSAEncryption
29:9a:9d:5c:41:21:00:c3:b8:e9:a2:c4:94:6e:db:03:e7:6a:
ff:51:c3:05:d1:57:dd:36:f1:a5:00:84:ce:6c:e9:1e:52:6f:
0c:6d:8c:e5:e8:24:50:34:3f:cd:98:ab:1f:cc:b4:50:d6:7d:
aa:9a:ab:8a:d3:c1:86:43:69:2a:57:be:87:41:a0:7d:93:de:
6e:5e:e3:b7:80:7a:c2:3e:0d:28:e8:bf:4e:65:dd:5c:af:65:
b5:26:19:a8:03:1b:1b:d4:c5:62:55:07:5b:63:de:4d:79:8d:
f5:9d:3b:4d:5a:b1:f3:37:0a:8c:b5:5b:62:39:97:79:ed:5b:
ff:82:2a:e4:de:9a:6e:24:1f:ec:34:66:8d:b4:24:da:83:cd:
75:80:e4:34:f8:a9:55:f4:3c:bb:63:5e:8c:e5:70:03:9b:1e:
2c:1d:77:cf:27:46:86:d6:c6:a8:28:ab:56:99:44:f3:03:6d:
32:a2:42:b5:96:6d:79:35:d5:5b:0c:9c:4b:48:32:9f:23:47:
0b:15:25:86:c8:2a:c0:83:b1:77:67:58:fa:1a:c8:4e:af:4f:
7c:60:33:12:7b:4e:eb:16:cc:e6:6f:8f:60:89:57:2e:f2:7a:
5a:4d:fb:2d:14:e3:8c:88:11:39:cd:7b:ed:58:a4:40:95:b0:
24:7b:b3:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 03:59:42 2025 by rpki-client