Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2BD566AECDDA11EFA064F39D762E951A.roa
File: 2BD566AECDDA11EFA064F39D762E951A.roa (raw, json)
Hash identifier: Syy2tbZrdmlbPffmbA+I3Tfixp72y/AYWHgJ++UGEdE=
Subject key identifier: 29:17:9F:E2:54:AF:10:F5:8D:53:37:11:D1:4E:BD:5F:A2:17:C9:80
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01378B
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2BD566AECDDA11EFA064F39D762E951A.roa
Signing time: Wed 08 Jan 2025 16:03:59 +0000
ROA not before: Wed 08 Jan 2025 16:03:56 +0000
ROA not after: Sat 03 Jan 2026 16:03:56 +0000
asID: 984
IP address blocks: 154.89.148.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 79755 (0x1378b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Jan 8 16:03:56 2025 GMT
Not After : Jan 3 16:03:56 2026 GMT
Subject: CN=677ea1ef-6c17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:22:fd:ae:9c:fd:74:bc:f2:a6:47:aa:4e:28:
e8:2e:a7:42:cc:5c:42:44:1c:0e:f0:8e:32:8f:5d:
e1:c8:15:a1:34:ea:68:5a:c0:5e:cd:f9:70:94:bd:
51:5c:49:01:67:a7:aa:f5:6f:94:57:08:a4:47:e4:
ac:51:1f:c1:e6:ce:ce:79:f7:21:df:b4:3b:36:82:
6f:b0:4c:6a:26:30:31:ea:12:1e:ad:97:c6:d6:25:
c6:34:7f:16:6d:41:4b:96:2a:44:ba:e9:96:b6:19:
c4:ae:48:31:cc:21:1d:bb:a8:69:c1:28:05:2d:91:
95:9e:79:16:37:9d:01:db:b2:88:5c:4c:4f:55:b8:
c3:56:59:87:d5:55:af:3e:e1:18:55:d5:84:ea:26:
37:8e:ee:61:20:3d:10:6d:d1:18:55:5f:43:9b:81:
e6:aa:d2:73:c9:5e:01:52:ae:7d:18:95:30:9a:2e:
38:86:76:8d:a2:aa:fc:04:50:e0:71:16:c7:d1:8c:
7a:c0:9c:99:6e:f5:d3:9d:ef:90:c2:e2:e7:11:8e:
63:02:80:06:44:d4:a4:60:7e:9c:39:4f:62:93:f0:
66:1e:54:f1:7f:62:0b:7e:5e:25:8f:21:08:6b:e2:
cb:14:8c:57:bc:9e:d2:25:dd:eb:6c:66:0b:8d:e1:
92:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:17:9F:E2:54:AF:10:F5:8D:53:37:11:D1:4E:BD:5F:A2:17:C9:80
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2BD566AECDDA11EFA064F39D762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.89.148.0/24
Signature Algorithm: sha256WithRSAEncryption
d0:f9:ba:70:c7:0a:8f:67:5f:47:8a:a6:99:d9:42:37:69:db:
76:55:0e:68:77:f1:4e:70:e6:57:85:84:84:67:48:c5:44:33:
b3:f7:ef:cf:78:c5:fc:04:e3:64:cd:f6:58:8b:1f:ea:1d:41:
68:06:29:95:6d:ac:8b:65:4c:34:4f:0b:a5:38:f1:22:4a:79:
58:0e:17:62:f1:2e:38:f5:c5:7d:8d:25:f2:b2:f2:7a:f7:1a:
b1:95:bb:4a:70:24:f8:59:7b:18:a2:27:7f:74:f3:7c:a4:2f:
fe:b7:c6:f8:3c:69:54:67:56:02:41:b9:9a:3d:83:43:c5:05:
e7:e3:8b:e0:4a:c9:4f:c5:5e:e9:ec:b4:e6:49:0f:b0:d1:0d:
ba:5c:de:8c:3a:2e:a1:06:5c:29:71:f5:85:07:a3:68:d0:61:
c8:09:9e:52:c1:d7:d5:3b:b1:25:55:2d:5b:ca:3b:b1:d5:39:
ec:2b:85:8f:ca:c9:6d:7d:aa:74:ad:22:3c:99:8f:c2:96:24:
af:10:fc:3d:d1:62:9f:38:65:64:8a:46:44:95:74:7a:27:30:
59:8e:54:a0:6d:8e:98:1a:cf:80:1b:4f:23:ce:da:5c:c9:ff:
16:b0:51:22:65:b0:a3:19:7c:28:0e:1d:33:c6:45:ab:7d:9f:
c0:ea:d0:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 03:59:39 2025 by rpki-client