Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2D1A8666F2E211EF8C451869762E951A.roa
File: 2D1A8666F2E211EF8C451869762E951A.roa (raw, json)
Hash identifier: +ZI7LPloHA5Kv0X++BDkupitTb33u6ucSyAJ2lMOUg4=
Subject key identifier: 73:4B:27:FA:0D:84:0F:36:85:55:72:79:3D:CB:22:36:1C:51:96:EC
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 015CD0
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2D1A8666F2E211EF8C451869762E951A.roa
Signing time: Mon 24 Feb 2025 19:04:30 +0000
ROA not before: Mon 24 Feb 2025 19:04:27 +0000
ROA not after: Mon 07 Apr 2025 19:04:27 +0000
asID: 138915
IP address blocks: 154.223.34.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 89296 (0x15cd0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Feb 24 19:04:27 2025 GMT
Not After : Apr 7 19:04:27 2025 GMT
Subject: CN=67bcc2be-4991
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:63:ab:fd:0c:4b:55:14:d6:89:d8:d2:bb:03:
16:e0:f6:07:bc:1b:8d:80:5a:6e:50:b2:17:fe:7b:
13:19:fe:f4:c0:f7:c8:71:64:8b:a1:2f:b4:3f:9a:
34:9e:45:ba:54:fb:27:4d:15:52:4a:c6:f4:ac:48:
7a:38:b2:1c:86:b1:46:29:ef:48:dd:1d:98:c8:07:
f0:3b:83:18:d9:c3:01:60:2b:4b:0a:22:83:0b:84:
48:29:cb:79:62:01:55:c0:13:59:c6:64:0b:a8:26:
c6:72:47:7c:7e:45:80:e5:d7:29:de:14:63:be:0f:
0c:03:f0:a0:54:6d:ed:aa:9c:f0:33:d0:91:bd:df:
5f:bf:d0:29:1d:36:f6:2f:6a:90:b6:7f:7e:7c:54:
aa:41:96:a7:2a:06:1c:53:7b:b4:24:6e:41:87:85:
a7:1b:6b:8a:5c:c9:e3:f6:46:8b:85:d4:e6:54:46:
ba:f1:f8:97:57:01:e4:4f:69:c5:72:35:29:da:b6:
a2:ed:f4:1e:85:27:27:9a:e4:b8:8f:9d:23:9e:fd:
ad:7c:3b:7c:aa:9f:0c:58:b7:1d:d1:5f:36:2b:f1:
78:ff:5d:7d:83:a0:49:80:e1:34:44:b5:22:3e:ec:
db:bd:29:60:6d:1c:a8:30:9b:08:a5:4a:67:0e:f4:
2a:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:4B:27:FA:0D:84:0F:36:85:55:72:79:3D:CB:22:36:1C:51:96:EC
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2D1A8666F2E211EF8C451869762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.223.34.0/23
Signature Algorithm: sha256WithRSAEncryption
6b:2c:05:3b:e0:0c:b8:28:38:e7:56:14:fd:5e:a3:24:e8:58:
b4:a8:cb:dc:fe:0b:98:69:41:76:45:f9:20:06:6a:56:1b:1c:
63:86:33:d2:f0:60:2f:8f:d8:a8:5a:04:58:ca:33:fc:bb:bd:
23:92:ba:49:5a:d2:c4:17:ae:ae:4a:d8:22:7e:8b:d9:8a:82:
4c:e4:f6:55:ca:45:1a:15:51:6e:49:12:bb:59:28:73:ef:dd:
b0:40:7b:03:9a:9d:08:ce:4b:ce:10:28:1e:60:a7:3c:57:24:
61:32:da:e6:af:f2:3f:fa:79:a6:17:0e:50:fc:dd:ad:08:16:
04:79:55:b1:bb:ef:e9:18:8f:41:b7:dc:cd:b9:30:f1:91:4a:
1f:65:d4:2b:52:b7:fd:b3:fd:e0:c1:b7:95:cb:78:c1:37:48:
aa:5e:bb:ba:dd:93:3e:19:4f:6a:50:b8:2f:e6:91:8a:8c:22:
a6:88:21:ea:74:c2:df:3b:8a:ae:7f:ad:4d:77:c0:3e:60:8e:
0a:31:a2:53:85:3f:24:64:54:44:da:96:ea:54:5e:e6:da:8e:
fa:02:50:8c:b0:85:6e:99:23:d0:36:5c:ee:b6:21:12:f7:de:
f6:91:26:f2:93:f8:0b:b9:51:7e:b5:7e:21:91:f2:f5:e6:e5:
08:f8:cb:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 18:06:23 2025 by rpki-client