Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2D1DC6A6C3C511EF85EA747A762E951A.roa
File: 2D1DC6A6C3C511EF85EA747A762E951A.roa (raw, json)
Hash identifier: lCNmAdxT0vpQLg5o/RjKtD742ggEViYm1bevU8EgV+Q=
Subject key identifier: 34:39:C3:0F:AB:65:48:9A:E4:08:27:D8:33:83:79:CF:C7:F8:13:25
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0127C8
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2D1DC6A6C3C511EF85EA747A762E951A.roa
Signing time: Thu 26 Dec 2024 20:08:31 +0000
ROA not before: Thu 26 Dec 2024 20:08:27 +0000
ROA not after: Fri 12 Dec 2025 20:08:27 +0000
asID: 984
IP address blocks: 154.83.18.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 75720 (0x127c8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 26 20:08:27 2024 GMT
Not After : Dec 12 20:08:27 2025 GMT
Subject: CN=676db7be-a227
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:d2:af:74:31:2a:20:a2:2e:1b:57:ba:83:26:
cd:c2:34:30:62:9c:d9:62:90:ce:65:77:4b:72:a4:
e0:78:36:eb:e2:8b:b6:11:00:db:7e:f5:e1:13:5c:
14:b0:8d:94:f8:39:9c:a7:2f:38:07:43:f6:ce:2e:
bf:17:e5:55:0c:43:d1:85:1f:7d:eb:ba:2c:5d:ab:
91:b3:5a:7c:e6:77:f9:05:68:32:91:e4:4d:80:69:
07:7c:94:99:f1:e0:79:47:70:03:af:09:1e:27:a1:
55:7d:89:9f:50:e9:ac:06:0b:bb:9d:72:e5:8d:f0:
a2:ca:59:eb:b1:0a:8c:3f:24:66:43:c0:4a:59:4a:
5b:57:6c:ab:f6:1d:0e:ba:32:c7:25:34:80:dc:6e:
a9:c8:db:83:31:eb:af:f3:fd:34:6b:1e:35:27:22:
52:0a:a9:e3:c7:7e:0d:fd:f8:3a:bd:87:3a:88:10:
a7:3e:b2:b3:1a:a0:fc:ef:38:88:d3:98:1c:5e:75:
12:b8:78:43:46:8d:bc:c2:b7:9b:50:e1:e4:a5:f3:
2c:df:54:3d:1c:b8:3d:30:ef:9a:4c:8e:85:a9:be:
bf:1d:1f:b7:fb:df:a9:f6:a5:44:34:0c:86:53:8d:
39:c1:2e:da:a9:d7:c1:1d:74:e8:1f:29:99:53:2b:
f2:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:39:C3:0F:AB:65:48:9A:E4:08:27:D8:33:83:79:CF:C7:F8:13:25
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2D1DC6A6C3C511EF85EA747A762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.83.18.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:71:a2:6a:74:d2:35:dc:6b:c6:36:d2:13:65:1a:6a:e7:d3:
0f:e1:45:56:9e:f1:36:7f:75:3e:d9:a8:3a:43:28:0a:5c:b9:
66:8b:7e:21:24:62:d6:28:56:de:96:55:a1:c9:4d:1b:b9:3e:
a0:9e:d7:a8:cb:88:6d:7e:92:b2:c5:0c:36:d0:56:bd:24:b7:
52:c3:27:19:2a:96:da:ac:7d:65:65:e4:54:c0:ed:23:8d:d4:
c1:07:06:f1:a3:57:5e:07:d6:70:31:50:80:0e:4a:3c:7e:eb:
50:d3:60:00:a5:e9:63:68:a9:91:09:c4:af:f0:c2:bc:ab:54:
6c:c0:69:48:68:f8:a2:b6:82:30:f6:5f:dd:22:4b:76:44:6d:
6c:0b:8f:a0:05:e3:a4:c5:18:74:e6:11:b9:d4:31:7d:04:a5:
09:7e:1a:02:a3:c6:b4:01:41:f6:53:39:d3:10:62:8e:57:21:
df:18:e2:5d:3a:ce:c9:c5:6b:f9:53:e8:fe:3e:85:3b:a3:a5:
a9:37:99:7d:b4:23:31:bb:cc:e0:97:dc:43:24:0e:00:be:1d:
16:57:1a:d0:c4:ed:c0:f7:13:4a:b6:af:fa:ca:95:e6:a3:cf:
cc:b3:01:97:14:e4:1f:c7:cb:38:a8:fa:ec:6b:c6:19:2f:15:
6c:36:d1:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 20:23:36 2025 by rpki-client