Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3657560AF47C11EF8D038669762E951A.roa
File: 3657560AF47C11EF8D038669762E951A.roa (raw, json)
Hash identifier: E/s+asjnPbvxQWKoZn8vT2aezn15s27zQu4Knry4Ai8=
Subject key identifier: D7:CC:DD:7C:22:AE:B6:9F:B7:57:CE:37:DA:36:39:57:7F:BB:08:30
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0165D5
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3657560AF47C11EF8D038669762E951A.roa
Signing time: Wed 26 Feb 2025 19:59:40 +0000
ROA not before: Wed 26 Feb 2025 19:59:36 +0000
ROA not after: Sat 19 Feb 2028 19:59:36 +0000
asID: 17561
IP address blocks: 154.94.232.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 91605 (0x165d5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Feb 26 19:59:36 2025 GMT
Not After : Feb 19 19:59:36 2028 GMT
Subject: CN=67bf72ac-6921
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:16:34:0a:34:c1:37:4f:f2:ae:e2:82:29:df:
8f:43:fe:32:58:ab:cf:3a:08:ab:0f:b7:4d:db:94:
28:62:11:8c:64:d6:70:2a:db:c3:17:7a:af:94:35:
95:ae:b4:5d:7c:0d:6f:9d:cb:f5:b1:5c:69:ca:0a:
5b:bd:6c:03:71:03:93:0c:7b:01:78:6b:03:b5:e5:
d6:87:49:1b:f6:27:5a:cd:12:ec:ae:ba:9c:e7:e8:
15:d0:1f:7d:e3:f6:11:7e:4e:9f:1b:9e:11:ee:20:
21:d1:2d:9d:72:31:bb:71:6e:bc:ad:6a:70:02:bb:
24:f2:3f:9e:c3:bc:1e:69:2e:28:12:d2:fc:be:a2:
1a:4d:21:57:63:72:02:ea:b7:95:b3:ca:1c:c6:70:
f4:3f:b9:5c:07:a1:aa:e1:fb:7e:c5:64:df:17:b2:
31:13:8a:db:61:cf:d0:a7:af:df:69:a3:40:45:44:
aa:e3:06:7d:11:86:f7:f1:00:d3:23:9b:8f:a4:4a:
80:b1:24:cc:60:8f:bd:7a:ae:f6:70:9d:76:3b:d6:
ae:51:aa:15:4a:fc:85:3d:bd:83:e1:d5:31:bc:44:
d9:43:f3:7a:09:42:ed:f1:7f:ee:a0:54:33:a6:ec:
df:03:7a:9c:30:ec:aa:40:6b:22:92:6c:73:da:64:
8c:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:CC:DD:7C:22:AE:B6:9F:B7:57:CE:37:DA:36:39:57:7F:BB:08:30
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3657560AF47C11EF8D038669762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.232.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:06:9a:a4:77:bb:09:de:49:8a:49:a3:f1:e0:a1:68:e9:ee:
75:ea:79:0a:06:c9:03:62:f2:0b:d6:ba:84:c7:db:67:a4:6e:
42:fa:9e:ba:a7:b6:a6:a1:c5:1a:70:4a:ab:d2:1e:9d:08:df:
c2:8a:4c:d3:d7:46:19:40:48:83:61:29:38:c6:9e:e1:ca:cc:
9a:5f:f1:f0:1a:9f:61:d3:8e:07:a9:23:75:9c:a7:6a:9d:10:
5d:19:e0:76:bf:12:20:0d:99:4c:c0:12:c5:20:44:8b:5d:06:
92:90:76:b1:c6:38:bc:8d:0e:99:1f:91:be:74:39:e6:23:b3:
4a:03:b6:2c:e3:ef:aa:54:3d:e0:0f:b2:a6:90:02:33:40:64:
71:50:12:29:d3:63:a3:24:6c:ca:e6:ee:cb:54:bb:6f:38:11:
01:f8:df:7a:7d:74:cb:c5:58:dd:d7:70:d7:ef:c9:02:41:e4:
2c:a4:14:4f:da:0f:f8:d3:13:a1:2f:6a:74:a0:df:98:be:bd:
d1:dc:85:9f:82:cd:15:2d:75:16:1a:01:0b:cb:23:38:62:37:
6b:8d:90:5c:83:99:0c:0c:4c:bc:be:a8:38:fb:85:10:89:c5:
6c:d3:98:d2:80:66:5d:34:17:b6:54:f9:b5:39:3f:cd:45:e3:
ef:b3:70:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 00:48:33 2025 by rpki-client