Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2D215C54070811F0B98192B1762E951A.roa
File: 2D215C54070811F0B98192B1762E951A.roa (raw, json)
Hash identifier: kAou9/OBh+ZEUecuzDqL+WSzkDv+nLPbZDFJEylOGmQ=
Subject key identifier: DD:38:59:CD:C4:A6:63:19:C0:EF:69:E7:93:33:8A:F4:1F:15:ED:7A
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 017592
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2D215C54070811F0B98192B1762E951A.roa
Signing time: Sat 22 Mar 2025 10:26:55 +0000
ROA not before: Sat 22 Mar 2025 10:26:51 +0000
ROA not after: Thu 08 May 2025 10:26:51 +0000
asID: 21859
IP address blocks: 154.83.71.0/24 maxlen: 24
154.83.78.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 95634 (0x17592)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Mar 22 10:26:51 2025 GMT
Not After : May 8 10:26:51 2025 GMT
Subject: CN=67de906f-35bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:11:50:52:58:73:57:02:de:05:cf:6e:6a:c4:
6a:0e:31:30:93:5c:0d:22:57:27:93:b0:10:f6:86:
8b:37:15:ea:d7:02:14:38:a2:b0:76:a3:11:d2:b9:
9e:0d:31:de:8f:a2:1f:bc:b8:5a:cf:a1:ca:91:7d:
e9:1d:83:83:2a:ec:5c:16:a6:63:ca:f6:f4:67:a8:
dd:e7:f5:9f:12:c5:7d:18:ef:5f:48:07:9d:a2:ef:
d5:85:04:a8:b0:a4:75:f3:d5:35:40:f1:33:0c:93:
ec:8e:b9:be:86:7a:64:f1:f5:dd:22:3e:00:91:38:
56:61:6f:54:43:a4:b6:3d:d5:1c:e3:c3:a6:6c:28:
9f:d0:74:19:b1:19:56:5f:a7:04:4f:e0:f1:9f:8d:
3e:7d:92:79:94:12:e9:16:8b:5d:22:12:6e:04:ff:
13:20:b4:47:5d:69:41:6a:c6:75:ff:fc:ea:aa:9a:
25:4f:c2:b2:0b:43:33:ec:29:e1:ea:67:6a:dd:5a:
17:ed:eb:8a:76:c8:2d:3a:1d:31:bd:6b:e6:54:f4:
a8:a7:9a:f4:cc:87:5f:0f:88:f2:50:2b:ad:06:94:
ca:1a:94:65:6c:37:92:89:d0:6f:d3:58:34:51:cf:
3e:ee:91:07:61:a5:1f:b0:56:1e:6a:37:1a:37:8d:
bc:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:38:59:CD:C4:A6:63:19:C0:EF:69:E7:93:33:8A:F4:1F:15:ED:7A
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2D215C54070811F0B98192B1762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.83.71.0/24
154.83.78.0/24
Signature Algorithm: sha256WithRSAEncryption
03:ed:8c:76:98:b8:33:ea:65:89:b2:78:aa:08:a7:f3:9b:fa:
db:33:e0:e6:71:c1:cf:9c:04:ad:3f:f3:6e:05:a9:59:4f:87:
c5:6c:f8:c3:52:3f:d6:10:c7:0f:bb:ea:37:cd:8b:09:c5:89:
c1:da:d5:92:3d:36:10:04:34:64:f5:19:84:b1:43:d2:2c:c5:
64:9a:d2:d8:99:88:33:88:5f:bc:ab:40:62:89:5e:d2:17:a5:
c6:a0:e6:58:05:57:05:cb:cd:65:ba:b2:5c:8d:c1:c4:ee:e7:
f5:e6:a8:77:f1:be:51:62:3a:cb:10:fb:3f:62:ef:d5:7e:0a:
94:91:1a:98:c6:69:4f:a1:f7:76:b9:1e:5e:0e:5b:d2:e2:88:
8f:25:2c:d7:d3:04:20:cb:01:4c:50:25:65:69:b4:be:d5:73:
8d:03:20:b0:64:4f:f5:6e:57:10:db:2a:ca:73:c1:b8:3a:ff:
8d:ab:5c:ef:c0:7b:e3:c3:0f:d5:00:6c:8c:7f:27:dd:81:c2:
c3:01:60:61:5c:af:28:98:e0:ea:93:1d:80:0b:f3:be:3c:69:
14:22:85:cc:03:a7:dc:1a:c3:e5:ab:b0:db:f6:be:96:96:29:
e4:02:46:32:4d:88:72:4a:7c:6e:38:48:bb:7e:58:61:e8:da:
4b:e6:55:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:51:46 2025 by rpki-client