Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/24BFD6E4C5E511EFB908657C762E951A.roa
File: 24BFD6E4C5E511EFB908657C762E951A.roa (raw, json)
Hash identifier: vnZ6FXDEqsQCUNCZyKNy+fVnh9kW9JIFNUJeO5CXLLw=
Subject key identifier: 14:9B:A0:95:85:0C:94:1F:32:F9:7D:CE:69:DE:2F:A8:58:73:AB:A3
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 012D72
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/24BFD6E4C5E511EFB908657C762E951A.roa
Signing time: Sun 29 Dec 2024 13:02:23 +0000
ROA not before: Sun 29 Dec 2024 13:02:19 +0000
ROA not after: Fri 12 Dec 2025 13:02:19 +0000
asID: 984
IP address blocks: 154.210.123.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 77170 (0x12d72)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 29 13:02:19 2024 GMT
Not After : Dec 12 13:02:19 2025 GMT
Subject: CN=6771485f-e704
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:e7:4c:06:f7:ea:24:b7:80:1e:65:21:12:97:
8f:d3:d9:c5:22:56:07:64:94:97:f3:0b:1a:b0:98:
86:72:ba:e3:f8:5e:e5:c2:a1:cc:69:ac:2b:ad:29:
a9:4c:00:89:61:77:40:45:9f:34:fb:82:fd:1c:c9:
ba:ab:d6:e1:21:fe:64:cf:24:8b:f9:5b:be:d3:68:
2e:fe:70:da:19:5b:e8:34:35:a6:f6:18:3c:0e:ea:
7f:b1:8d:83:34:65:71:d0:e9:c1:bb:4c:7b:55:69:
de:bb:95:f0:e3:09:18:de:f5:60:df:3b:d6:02:e2:
ef:3a:75:2d:18:17:18:a0:97:d9:04:d2:c1:94:46:
8e:49:fd:33:b3:4f:75:b6:ca:30:1b:e8:ab:be:f4:
8f:bc:c9:99:2c:f9:f7:a0:63:46:b2:58:bd:61:98:
c0:b1:d0:5f:de:0f:a3:9e:a3:14:74:c1:0a:bd:ed:
70:fc:31:89:14:c2:fe:1a:7d:ce:e6:c1:8e:50:58:
34:25:a3:1f:0c:3b:be:67:20:88:02:12:08:a7:89:
44:e5:13:4d:44:d1:8d:79:aa:64:33:c6:ce:fb:7e:
aa:5d:4b:fc:d5:16:37:fd:a0:e5:ea:3b:bf:f1:38:
e6:58:e2:5f:83:19:74:07:ae:13:ac:06:0e:7e:f1:
1c:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:9B:A0:95:85:0C:94:1F:32:F9:7D:CE:69:DE:2F:A8:58:73:AB:A3
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/24BFD6E4C5E511EFB908657C762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.210.123.0/24
Signature Algorithm: sha256WithRSAEncryption
d5:65:6e:b0:b3:3a:f7:6d:b0:24:47:af:f0:c8:b7:fe:ec:a1:
f2:39:e3:57:2f:02:95:04:b6:01:4c:c4:9e:2a:b0:c4:c2:5f:
45:1a:69:7a:d8:06:43:0d:86:a2:8b:12:5a:d4:dc:0b:bd:0a:
2f:34:b9:4b:db:5c:b8:2a:ac:d4:66:19:8d:a9:36:38:cf:a2:
56:d5:e4:e8:09:f8:ac:b6:80:0d:a7:2b:f7:4a:c0:8d:83:80:
ce:9f:dd:9b:f7:fd:a0:5a:14:ed:59:02:ea:5c:11:8e:65:ed:
62:24:03:43:c5:f3:ed:1a:d2:5d:1f:f7:8c:30:53:51:61:ed:
84:20:1b:f5:a1:f4:c4:ad:85:68:73:d9:0b:27:91:45:6e:bd:
22:0c:0c:03:e4:17:ed:68:ff:fa:6e:99:e0:54:0c:48:0f:19:
3e:10:ac:a5:e1:2a:93:61:03:b3:a1:cf:95:1d:f4:49:79:b0:
82:26:7e:04:43:14:0d:d2:73:21:a4:a9:23:ab:b2:3c:8a:fa:
c7:37:3a:41:85:d9:43:cc:74:53:64:e5:c3:e2:3d:4f:1d:c9:
8a:7b:dd:9d:df:1f:18:eb:32:43:09:79:ef:c3:33:2d:6c:d1:
fc:ee:88:9d:9c:a9:37:fc:2f:26:93:7b:1b:95:87:1e:75:69:
88:1e:7e:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:24:48 2025 by rpki-client