Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/27CA75FEC5F611EFAD30B967762E951A.roa
File: 27CA75FEC5F611EFAD30B967762E951A.roa (raw, json)
Hash identifier: i2/4K0+W1aU7At65cG7eJvFBJmF5YzcZ4fhUy8STnZQ=
Subject key identifier: D6:CE:D5:FF:10:A9:16:C1:F2:B4:23:32:6D:0D:36:1E:B0:73:D1:02
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 012E02
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/27CA75FEC5F611EFAD30B967762E951A.roa
Signing time: Sun 29 Dec 2024 15:04:09 +0000
ROA not before: Sun 29 Dec 2024 15:04:06 +0000
ROA not after: Fri 12 Dec 2025 15:04:06 +0000
asID: 984
IP address blocks: 154.213.207.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 77314 (0x12e02)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 29 15:04:06 2024 GMT
Not After : Dec 12 15:04:06 2025 GMT
Subject: CN=677164e9-f5e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:cf:b1:26:0f:ef:0a:98:a3:f3:ca:7f:4b:3b:
d9:24:4c:7f:31:e6:31:33:57:bd:29:ad:f8:f6:20:
90:b8:e5:28:8e:a7:04:2d:5e:58:19:8a:4a:ec:e2:
8c:80:cf:6e:0a:c5:5e:f0:b5:d0:23:69:5e:16:2b:
62:8d:c5:a3:5c:e2:e9:83:f2:2e:b3:1e:f0:b4:95:
51:7c:7b:50:d8:a3:0c:9b:5d:a3:a9:b2:74:54:5c:
e9:66:3f:98:b2:cf:e2:76:5c:c7:d7:10:3a:cc:0e:
90:0a:0f:a5:a2:f7:6f:61:cd:80:83:9e:5f:4a:9d:
fc:b5:81:27:c7:2c:2a:1f:66:63:8b:90:58:b2:94:
82:8a:bb:77:a2:c1:d2:bc:47:f8:14:fb:78:cb:17:
42:5c:72:ef:2c:73:27:fc:fd:c3:4c:b6:6b:7d:b6:
01:ee:a2:56:6c:a0:cb:f0:1e:f2:c0:26:04:9c:42:
83:9d:d5:83:18:85:20:b5:9c:f4:47:90:1b:6b:73:
be:64:6e:d9:a5:8c:a6:db:15:6c:d0:a9:1c:11:35:
cf:dc:f7:68:fd:32:cd:01:75:83:8e:25:12:da:59:
ae:a0:cf:6c:30:88:53:09:24:59:80:0f:92:6b:e3:
a9:40:20:54:5e:86:8f:06:93:4a:99:c2:87:88:38:
c7:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:CE:D5:FF:10:A9:16:C1:F2:B4:23:32:6D:0D:36:1E:B0:73:D1:02
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/27CA75FEC5F611EFAD30B967762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.213.207.0/24
Signature Algorithm: sha256WithRSAEncryption
30:52:9e:2e:f1:85:ce:59:fd:b7:f7:ff:c6:65:97:f0:ff:f8:
ca:85:13:51:ff:b9:3f:ad:d4:4a:89:a8:38:c4:33:58:6c:9f:
4c:39:c3:ad:0f:5b:60:c1:dc:8b:6e:20:52:7a:48:18:72:ff:
af:fe:67:62:df:25:16:6e:2b:5c:41:1c:6f:bd:45:68:15:ef:
40:ba:b1:48:70:c4:33:72:fd:ef:e1:0a:9a:d0:8e:53:79:1a:
b7:39:ec:83:b3:96:a9:6e:23:24:63:b8:29:7d:c5:a8:a2:fc:
6a:91:ae:b0:94:54:07:60:f3:ad:3a:be:6e:b3:03:5c:d4:8a:
23:ed:ed:ac:8b:0b:e5:55:e8:2c:db:7b:60:e8:43:8a:5d:a5:
3f:64:af:bf:ae:05:74:2d:bc:f8:68:66:3e:e0:b1:0c:59:b5:
12:14:b9:43:3f:cb:ac:e1:fc:67:b6:cb:6b:55:80:0d:68:1a:
b5:a2:48:84:f1:23:40:7d:6b:23:5e:88:1b:67:93:df:9a:06:
8d:1a:4c:3d:a4:cd:ab:81:93:08:1d:e8:27:fd:d1:ec:49:7f:
33:74:34:f9:3d:a2:a2:32:28:9c:e5:b1:87:19:4f:17:cd:d9:
1b:82:7a:9c:e4:3b:4e:08:d1:be:17:76:a7:63:46:b6:f9:20:
11:4d:63:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:52:59 2025 by rpki-client