Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/20D12878C61F11EFB7C0DF67762E951A.roa
File: 20D12878C61F11EFB7C0DF67762E951A.roa (raw, json)
Hash identifier: 7RzEfZuvrjZt0G3+z4cpgANSu4+Vs/kKxZI8xwmj1lM=
Subject key identifier: 7A:53:5F:CB:48:3C:4F:6F:C6:66:D9:1A:6B:10:30:BD:4B:23:A4:69
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 012F5C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/20D12878C61F11EFB7C0DF67762E951A.roa
Signing time: Sun 29 Dec 2024 19:57:27 +0000
ROA not before: Sun 29 Dec 2024 19:57:23 +0000
ROA not after: Sun 12 Dec 2027 19:57:23 +0000
asID: 17561
IP address blocks: 154.217.145.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 77660 (0x12f5c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 29 19:57:23 2024 GMT
Not After : Dec 12 19:57:23 2027 GMT
Subject: CN=6771a9a7-b138
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:17:3d:c5:61:fa:9f:5e:e3:9c:c8:21:f1:46:
db:69:7c:81:93:d6:8b:4c:d7:cb:c6:e9:03:a7:49:
53:56:79:2c:13:00:99:7b:99:a8:1d:51:1a:26:0c:
1a:21:6f:45:7e:29:4b:59:de:38:9f:a6:f6:ad:00:
6d:cd:c3:14:0d:40:6e:34:3c:6b:10:08:cf:34:5c:
ce:73:cd:a9:a9:02:64:7b:7d:6a:25:90:c4:e2:56:
81:98:c3:bb:14:9e:d8:0c:fa:90:97:14:17:94:b2:
ae:99:d8:93:2e:f8:41:5c:6f:75:79:d8:92:3e:ea:
c9:b9:b1:a1:1e:af:71:1a:68:8b:9a:90:67:3a:a8:
2f:4f:78:0f:c7:07:d1:96:cc:20:cd:42:15:f4:99:
5f:0a:9c:8f:02:07:17:d9:16:eb:ec:23:d3:dd:2b:
0f:7f:0b:cd:8c:28:a4:c9:24:e0:8f:8e:4d:75:6c:
7f:ab:20:a7:35:2e:a4:b2:16:ae:d9:3c:f8:f4:68:
c2:28:f6:5b:41:df:45:3b:63:aa:a0:a5:93:44:79:
21:d6:9d:5c:52:0f:27:72:fb:5c:d6:97:6c:87:f3:
90:bd:3c:bc:f0:0e:44:23:5f:34:90:9c:c0:78:19:
a4:b0:4a:33:dc:4b:d6:85:5d:b6:3c:5f:b0:42:43:
08:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:53:5F:CB:48:3C:4F:6F:C6:66:D9:1A:6B:10:30:BD:4B:23:A4:69
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/20D12878C61F11EFB7C0DF67762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.217.145.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:66:aa:c1:68:e4:16:27:05:c9:4e:e1:78:d0:08:56:9a:bd:
0b:40:a8:25:d7:c1:7a:66:3f:02:f8:40:3d:c1:95:1a:95:85:
c5:38:55:3f:11:19:01:0a:fd:8b:ba:c7:30:58:0c:e7:46:4c:
fe:e1:a3:fc:88:1d:70:6d:12:9c:44:d3:86:de:72:cd:d3:ff:
c4:0f:64:20:76:42:01:d0:95:d4:ef:bd:79:92:ec:33:5e:5b:
06:03:f1:73:ff:ea:98:3e:4f:7e:a3:72:24:98:af:f7:02:35:
09:10:9b:e3:1f:10:26:ed:fa:89:da:91:c0:47:91:4c:70:03:
8d:e4:66:db:c3:20:f8:95:44:aa:2e:b5:06:53:7c:d7:19:53:
4f:5b:49:06:4a:15:6f:f1:a5:44:93:d4:4e:2b:8f:22:5d:73:
b3:a1:4b:51:8c:ab:47:cd:4e:43:29:e0:e6:3f:81:c9:c6:9d:
8a:a4:2f:bb:ec:19:2f:ca:29:72:6b:60:13:bb:ae:59:fb:f5:
d9:b0:5a:10:50:6b:01:45:2e:e2:f2:ae:88:76:30:9f:03:56:
49:9e:99:54:0a:40:70:97:ae:13:c6:e1:79:27:2d:4f:bb:36:
de:2a:74:60:a3:7b:09:75:63:d6:d6:37:0f:b0:3f:6d:18:21:
4e:cd:b0:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 20:21:11 2025 by rpki-client