Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/27BCADE4CDD911EFBA7DA597762E951A.roa
File: 27BCADE4CDD911EFBA7DA597762E951A.roa (raw, json)
Hash identifier: 0NOs2TphGlUmU9Iaa+RiWXgWuletUsw0160MM0nLgdQ=
Subject key identifier: D5:2D:B7:27:5E:02:34:9A:4F:53:0D:CB:1D:BC:73:93:A2:97:37:AD
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 013783
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/27BCADE4CDD911EFBA7DA597762E951A.roa
Signing time: Wed 08 Jan 2025 15:56:43 +0000
ROA not before: Wed 08 Jan 2025 15:56:39 +0000
ROA not after: Sat 03 Jan 2026 15:56:39 +0000
asID: 984
IP address blocks: 154.89.144.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 79747 (0x13783)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Jan 8 15:56:39 2025 GMT
Not After : Jan 3 15:56:39 2026 GMT
Subject: CN=677ea03b-9cce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:d4:e1:aa:61:a7:a2:95:dc:04:a8:4c:34:c8:
7e:ad:ae:78:cb:2b:e8:ea:62:6d:c4:86:9e:a7:0f:
3e:b0:ea:bd:47:82:11:f3:76:8f:96:e2:76:86:af:
5a:ec:0c:4a:3b:6b:62:c9:c0:be:40:71:7c:ae:cb:
be:37:1a:f5:6d:69:47:ec:77:f5:dd:71:68:c4:00:
e5:f2:8d:b0:24:1f:9e:ac:b5:a1:b2:1f:ca:2f:b8:
c9:53:7e:e9:f4:4f:51:46:b9:3d:36:3e:1b:5a:8a:
a2:04:f9:b0:4b:2d:15:9a:10:4e:b2:0e:c9:da:ee:
8e:a9:89:19:71:08:f9:27:98:4b:45:83:8f:63:df:
6d:9c:f1:c1:e4:0a:a6:ab:c0:3e:72:b9:da:fd:56:
f8:17:d6:34:4f:87:e8:9c:ef:12:4c:15:d0:e4:c3:
8d:67:f8:db:b1:a5:56:54:02:94:65:26:44:30:06:
47:b0:01:e0:61:42:33:32:83:57:80:8e:4c:7b:7a:
7b:8e:8c:6c:63:8d:91:97:14:0d:a6:23:42:98:68:
eb:d5:19:fa:72:67:8a:a8:46:54:86:41:9d:ba:49:
47:64:84:46:b8:39:2e:15:0e:d3:28:c5:2c:b4:ef:
48:cb:58:d7:dc:62:bb:fe:ee:c6:ff:f8:61:81:cf:
5c:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:2D:B7:27:5E:02:34:9A:4F:53:0D:CB:1D:BC:73:93:A2:97:37:AD
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/27BCADE4CDD911EFBA7DA597762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.89.144.0/24
Signature Algorithm: sha256WithRSAEncryption
d4:f8:49:49:06:26:64:ba:a5:78:50:29:37:8d:4a:b7:de:f4:
e8:b3:96:69:cb:6d:59:ca:99:59:e8:98:02:ac:95:7c:f0:16:
7b:ea:7c:ea:45:96:8b:74:35:66:ad:fd:15:9d:e8:78:ab:9b:
df:f2:34:97:61:85:42:41:ab:e4:40:b1:12:3a:c5:09:d2:44:
74:be:e1:f0:ef:09:08:ba:c4:39:e6:17:47:f3:38:5d:b4:4a:
fa:de:fc:66:b0:a6:6e:28:42:d3:81:92:b4:0d:77:5f:d3:09:
5a:1e:01:f7:a4:dc:7c:75:4d:33:9b:89:29:c5:07:dc:b3:29:
77:bf:c0:79:cc:e4:be:2e:0b:0a:9c:be:8b:8a:e8:47:5e:f2:
32:79:aa:d6:4e:9e:70:37:43:ec:e5:90:68:1e:24:3d:54:cc:
98:10:52:dd:c3:80:a6:04:3f:a2:2f:06:50:46:7a:c5:92:4d:
d8:a1:6c:e2:22:51:c2:01:42:63:0c:f5:ea:b2:5a:bd:8f:0c:
de:f2:4f:2b:40:3f:43:b7:97:4b:da:1e:a9:ee:78:fb:5d:f1:
b6:be:a2:64:67:7b:ea:28:e5:fe:c0:64:3f:48:6e:61:24:bb:
3f:2f:ad:51:c1:02:2b:5e:ec:0f:68:a5:0a:dd:a4:9a:ce:7a:
f4:a4:a9:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 06:47:46 2025 by rpki-client