Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/32FA8C6AC51B11EFBEB1E77C762E951A.roa
File: 32FA8C6AC51B11EFBEB1E77C762E951A.roa (raw, json)
Hash identifier: DIoRKzDC0VPD3sJM4V7ss9NDx7FBe2HEQ9WSOBaEQtI=
Subject key identifier: 0F:F4:36:C0:8E:EB:0D:31:56:44:98:9F:C0:C0:82:95:0D:87:C8:94
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 012B21
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/32FA8C6AC51B11EFBEB1E77C762E951A.roa
Signing time: Sat 28 Dec 2024 12:56:48 +0000
ROA not before: Sat 28 Dec 2024 12:56:44 +0000
ROA not after: Sun 12 Dec 2027 12:56:44 +0000
asID: 17561
IP address blocks: 154.203.12.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 76577 (0x12b21)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 28 12:56:44 2024 GMT
Not After : Dec 12 12:56:44 2027 GMT
Subject: CN=676ff590-3318
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:d9:a3:aa:7a:e9:e0:3e:fa:f3:f3:01:d5:50:
89:27:25:4e:56:b4:20:7e:b4:6b:f6:9d:9e:fc:c8:
3f:75:e7:ee:23:74:89:0d:f5:dc:13:b9:74:32:86:
24:00:75:6a:22:d0:13:df:65:58:45:22:67:b9:74:
06:cf:32:e5:3e:10:b3:b3:67:33:b9:4a:3d:d0:0c:
99:3b:1d:eb:3c:19:c6:df:8c:c9:34:e3:7b:46:fa:
62:f4:01:01:18:38:70:23:f2:96:fe:81:d4:67:e3:
8e:91:45:b4:57:05:c0:22:75:a4:bb:0a:97:0a:e8:
13:39:3a:6a:06:2e:c3:34:f5:cb:3f:97:31:ff:8e:
df:56:ef:81:13:56:20:47:c5:5f:b8:87:24:94:b7:
36:d2:15:8c:68:83:62:c6:d0:02:9b:8c:bb:5d:68:
35:ee:47:f2:cf:49:06:10:38:f5:85:60:7b:7d:08:
49:8b:ae:ba:10:ae:ab:db:35:34:c1:c5:54:4e:7c:
86:e8:3b:bf:80:5f:cf:cc:dd:00:e5:5b:25:1b:d6:
80:d3:30:d7:73:f0:6a:89:ab:49:1e:a6:98:d0:46:
72:a9:ed:3c:22:a4:ce:bf:ed:6c:e7:cb:6a:3b:74:
7d:bb:97:f3:90:95:01:fc:69:c8:88:95:ab:97:f8:
a8:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:F4:36:C0:8E:EB:0D:31:56:44:98:9F:C0:C0:82:95:0D:87:C8:94
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/32FA8C6AC51B11EFBEB1E77C762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.203.12.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:43:a9:07:d7:28:66:99:b5:90:a8:62:a3:3e:20:eb:54:01:
a6:53:4d:5a:0c:3d:c3:1a:a4:c3:30:9d:ad:00:21:a4:b5:f4:
e6:c2:12:46:6b:26:60:30:41:e2:1c:27:7e:55:af:d0:b7:22:
30:da:bd:53:3b:c2:9c:bc:5b:66:d2:4a:75:b4:e6:2c:7f:90:
a8:da:5e:8e:79:f8:0c:4f:57:ef:dc:7e:70:8c:ce:bf:4f:6b:
18:d4:58:31:4b:c2:a2:8c:01:84:d3:de:73:19:0a:8b:af:b4:
82:46:b2:51:88:88:c7:f7:9c:12:48:7c:48:40:29:18:85:45:
9c:22:6d:d6:ce:ae:ff:88:69:b2:3a:17:f1:81:13:0e:22:bc:
de:a0:a3:07:ac:72:66:0b:0c:85:a9:01:ab:d1:6c:bd:4a:8d:
3b:77:c9:09:22:3c:9c:9b:66:2a:69:47:f3:2c:46:99:1e:52:
f2:7e:b0:20:e1:e1:92:95:48:82:38:ea:c4:aa:ad:d4:d0:94:
49:68:97:8b:57:35:43:da:19:6f:5c:33:66:f2:c8:e5:5e:a7:
4a:68:1e:6f:34:5c:3b:cb:0d:37:50:2c:bc:9b:9e:db:3b:41:
01:bf:ec:74:bb:ea:16:cf:e6:96:84:b5:61:a1:b3:ab:08:90:
92:f6:9c:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:55:20 2025 by rpki-client