Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/289122A8C53D11EFA8513E54762E951A.roa
File: 289122A8C53D11EFA8513E54762E951A.roa (raw, json)
Hash identifier: C1NECNNiDhr4/ikfN4GrwPngLqiKn6fda1jqlT4vF1s=
Subject key identifier: D4:72:98:12:D6:A4:0B:20:34:AE:82:48:64:FD:A6:41:D8:6E:72:BD
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 012C59
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/289122A8C53D11EFA8513E54762E951A.roa
Signing time: Sat 28 Dec 2024 16:59:54 +0000
ROA not before: Sat 28 Dec 2024 16:59:50 +0000
ROA not after: Sun 12 Dec 2027 16:59:50 +0000
asID: 17561
IP address blocks: 154.205.253.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 76889 (0x12c59)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 28 16:59:50 2024 GMT
Not After : Dec 12 16:59:50 2027 GMT
Subject: CN=67702e89-065d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:1a:7e:12:d9:68:ff:ab:8b:35:0d:ab:e2:98:
38:a5:31:0f:4f:31:5e:81:ca:cc:bc:bd:ff:11:31:
a4:1b:af:34:e0:78:a3:24:1a:4f:d3:85:1e:b9:78:
7d:af:b9:60:da:cd:14:c9:12:fe:fb:78:64:81:88:
1f:78:02:c0:be:9b:4d:74:cb:d3:ec:a5:6c:a9:cd:
e3:bf:19:7f:b3:02:cd:00:16:ec:e0:7f:07:d3:0d:
d4:4f:0e:81:32:12:8a:82:27:25:f2:3c:05:ef:55:
04:23:a6:77:c3:47:e2:29:28:53:59:f1:0b:e5:8b:
6e:9c:cf:54:03:59:32:96:1a:5e:65:29:40:fd:79:
e9:43:18:c0:e1:c9:6a:5e:83:cf:e4:e4:67:80:9f:
e3:d9:1a:96:c1:65:17:9e:7c:c2:bb:3f:b7:0d:b1:
f1:de:b7:1f:f0:b7:14:df:78:6b:10:01:81:69:cc:
6f:2e:f3:07:0d:0b:e2:f7:a8:76:7c:82:a2:1a:0b:
57:95:4f:90:3b:11:e8:20:86:46:a5:b6:50:ef:d2:
32:9e:12:96:df:40:c5:32:c8:f9:e0:f7:11:bb:79:
2e:4e:d8:60:b8:84:01:75:df:54:79:5f:55:21:50:
7e:0d:58:47:05:b7:4d:60:51:a5:d3:ee:d3:6c:ac:
6d:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:72:98:12:D6:A4:0B:20:34:AE:82:48:64:FD:A6:41:D8:6E:72:BD
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/289122A8C53D11EFA8513E54762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.253.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:93:65:b0:76:09:4d:3f:31:5d:cd:bc:64:fb:56:50:d8:ea:
fc:ed:ab:7d:9f:3e:d3:26:7d:84:d0:b6:64:c8:74:07:ea:9b:
e2:44:74:78:62:c5:0e:ff:d9:ae:e8:88:88:12:40:c0:28:30:
31:16:fe:15:9c:5b:b0:1d:12:07:ce:4b:bb:43:0b:fb:a3:16:
9a:80:c8:36:d1:b6:ba:45:13:bd:ab:46:6a:31:95:25:60:4c:
cd:80:73:00:bc:dc:e2:d9:8c:4d:4b:3a:38:a1:fa:cd:d0:19:
4e:74:c6:72:f0:aa:82:42:82:47:36:34:0f:0b:c6:50:67:37:
6b:81:c4:bb:8a:d9:83:21:07:f1:ea:88:92:d1:80:65:b9:a5:
3b:5b:6b:34:5f:d1:de:ca:e6:fe:c7:bb:c5:84:79:b6:6d:5b:
b6:a0:49:f2:6a:17:9b:da:48:a7:7b:7e:03:66:a1:c9:75:b4:
d7:11:5e:e4:e2:84:e2:19:af:9c:32:ce:30:8a:de:1a:a2:98:
3a:7c:1a:12:8f:3d:f7:c8:ee:02:ed:a8:66:87:ad:5d:68:13:
50:46:92:84:b2:bc:6d:07:b8:03:09:cd:fd:2d:c9:40:8f:1a:
de:b2:76:cc:3d:17:80:a6:d2:dc:3a:80:b2:41:f5:73:0d:2e:
08:44:1f:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:51:39 2025 by rpki-client