Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3A3116A8C60511EF84998F46762E951A.roa
File: 3A3116A8C60511EF84998F46762E951A.roa (raw, json)
Hash identifier: yPKS7jqbcPeSu1A07jZcKyV8mjPxQPIhbfM9W3YaMiY=
Subject key identifier: 99:50:11:8A:D7:90:6A:39:DC:2C:88:02:9E:79:FE:75:EC:91:41:47
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 012E82
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3A3116A8C60511EF84998F46762E951A.roa
Signing time: Sun 29 Dec 2024 16:52:02 +0000
ROA not before: Sun 29 Dec 2024 16:51:59 +0000
ROA not after: Sun 12 Dec 2027 16:51:59 +0000
asID: 17561
IP address blocks: 154.217.36.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 77442 (0x12e82)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 29 16:51:59 2024 GMT
Not After : Dec 12 16:51:59 2027 GMT
Subject: CN=67717e32-bcdb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:68:b9:7d:bd:cf:b8:e9:1f:ab:80:e3:04:ee:
08:70:ce:ea:bd:62:52:8f:c5:91:5f:11:af:e8:1b:
2f:de:13:54:f2:89:af:59:8b:01:46:fc:e8:f8:93:
a3:38:ec:cf:06:20:20:20:ba:ce:68:96:49:43:c0:
17:f3:b0:90:8b:66:ea:6a:2e:6f:15:20:e5:ec:a6:
f8:38:51:fe:87:aa:5a:21:7c:ca:59:c5:35:12:d9:
ea:09:c3:73:a5:b2:0f:c1:f3:8e:3a:66:12:73:cb:
2a:4a:82:e4:34:23:2e:3f:26:54:fd:81:79:a7:0c:
69:b9:52:36:4b:c5:7a:b1:77:31:21:c1:3a:9a:f5:
ab:9c:7f:a1:90:a8:d3:6e:48:29:4c:4e:fc:6d:ae:
41:ef:f8:5b:68:9c:85:12:59:b6:26:29:07:19:11:
3a:82:f9:98:dd:82:2d:6e:67:0e:9e:06:0c:f1:a6:
00:c1:5e:fb:01:ca:aa:e0:4a:02:8c:c8:6a:10:14:
df:94:f7:8c:29:af:97:fb:df:b1:00:49:f7:6a:02:
81:1d:98:21:af:a2:d7:1f:78:9c:83:f6:7a:48:e3:
2f:38:b0:f3:99:36:41:8a:7b:6e:9a:90:b8:5f:48:
22:a9:ee:54:65:df:54:ef:d2:7c:0c:3a:a6:de:f9:
22:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:50:11:8A:D7:90:6A:39:DC:2C:88:02:9E:79:FE:75:EC:91:41:47
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3A3116A8C60511EF84998F46762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.217.36.0/24
Signature Algorithm: sha256WithRSAEncryption
b5:8c:54:d6:ca:7c:85:c0:b3:e8:87:8b:8a:f1:a5:06:ba:c0:
c3:33:33:ae:f6:bd:35:10:f0:49:51:88:06:59:a8:0e:ee:5a:
a4:f5:ed:66:7e:9b:22:02:af:e9:85:5b:c8:1c:0c:35:50:0e:
40:be:71:ce:73:55:39:01:f2:36:70:5e:cc:8d:f8:d1:98:26:
bd:92:2f:3f:a9:64:ce:00:a2:d5:04:cf:78:db:e7:81:0e:97:
fa:93:84:a4:9f:6c:5c:4b:91:db:e6:83:b9:02:12:de:34:ea:
95:5c:8f:89:d8:1e:1c:11:85:44:d2:d0:7c:35:0c:03:02:2b:
57:94:23:08:76:10:3f:18:98:43:0b:dc:6e:9e:db:7b:70:91:
80:cf:84:17:0a:db:86:9a:83:31:8e:42:f8:9f:cf:50:ca:2d:
2d:9f:cf:a2:fe:83:38:9a:ac:1d:aa:cb:e5:70:36:a0:e0:02:
e7:6a:3e:bd:37:02:10:15:35:00:9b:0f:4f:6d:1f:b4:f1:8f:
11:d9:86:50:66:b9:12:fd:de:b6:9b:44:9e:6e:99:9b:2e:d4:
b4:f7:0e:b5:e2:44:31:a7:7d:d4:ee:bc:13:91:77:c4:ea:4b:
de:23:f4:8d:4c:a9:16:73:85:cc:24:90:a0:3e:da:ed:27:f1:
93:a7:d9:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:46:44 2025 by rpki-client