Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3AAAC96EC91911EF861CDC5C762E951A.roa
File: 3AAAC96EC91911EF861CDC5C762E951A.roa (raw, json)
Hash identifier: qEGYQNWG3aTqzPfUQxtr2YVVl6ddpwpo1Gng2jwlQJY=
Subject key identifier: 34:64:9F:10:53:42:12:64:96:54:66:64:21:0A:F2:42:9E:E0:E7:6F
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0132EB
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3AAAC96EC91911EF861CDC5C762E951A.roa
Signing time: Thu 02 Jan 2025 14:52:47 +0000
ROA not before: Thu 02 Jan 2025 14:52:43 +0000
ROA not after: Sat 13 Dec 2025 14:52:43 +0000
asID: 984
IP address blocks: 154.222.10.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 78571 (0x132eb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Jan 2 14:52:43 2025 GMT
Not After : Dec 13 14:52:43 2025 GMT
Subject: CN=6776a83f-c42a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:8e:07:8e:a4:9f:bc:75:19:04:8a:da:06:94:
a3:b1:73:18:e6:94:50:82:93:97:b0:c5:52:1c:cf:
30:ae:50:6d:fc:24:bb:64:91:df:7a:1d:3a:99:82:
b9:0f:9d:47:b1:9b:49:ac:89:26:c7:29:3d:2e:88:
94:6c:74:8c:90:f7:2f:25:41:2e:88:3e:f9:42:d8:
2a:91:f2:cc:a8:fd:15:0c:06:2f:fa:7c:1e:00:e5:
8d:7c:e7:a6:38:56:8d:c4:0f:a3:96:ad:c8:06:13:
81:43:ce:5e:30:a6:de:5c:5b:d7:25:4b:60:8a:22:
75:72:f5:21:44:09:d4:33:7b:1b:97:fe:b2:5c:5e:
22:c3:ba:35:f3:d8:9c:bf:b5:e1:36:db:7b:53:fa:
59:cf:cb:41:3b:b4:7d:e2:e0:66:a1:11:da:ae:55:
6a:77:bb:ac:40:93:3b:76:22:26:24:17:79:60:cd:
8a:41:fa:b8:b9:47:8a:1f:b8:e5:20:46:d1:bc:62:
ed:5c:ca:2d:03:56:01:71:ad:9c:26:af:60:0d:7b:
6e:94:94:0d:4c:b3:8d:ca:09:11:70:5a:2a:d4:d1:
c4:8e:82:01:19:85:c2:cc:4d:b2:4d:e2:f8:b7:4a:
d1:9c:6c:7f:01:49:f5:91:29:c0:2b:34:53:3b:40:
39:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:64:9F:10:53:42:12:64:96:54:66:64:21:0A:F2:42:9E:E0:E7:6F
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3AAAC96EC91911EF861CDC5C762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.222.10.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:41:6a:b8:65:4f:a5:9a:0c:e2:c2:93:06:e6:49:c8:e5:d9:
fa:67:6b:d6:b6:c6:5a:f6:53:c8:82:7a:12:c2:9c:f2:6c:32:
cf:89:89:e3:3f:ca:cc:bb:f5:ee:a2:27:53:a4:a7:fd:76:3d:
f3:d6:ba:52:75:7b:ad:18:17:29:0e:99:91:37:d3:c4:db:4f:
76:5e:1a:a0:66:02:98:1c:d8:7b:6e:d7:70:02:5a:06:d6:8a:
c3:d2:a6:5c:12:47:7f:3c:ab:b5:be:6f:08:9b:f2:46:aa:93:
52:95:60:4a:91:63:2b:5c:5a:68:68:5c:99:a2:07:01:a4:a1:
38:0e:a8:a5:4b:03:88:58:66:6a:8f:98:5e:8e:8f:42:57:69:
66:e7:d8:64:d8:94:e7:ab:fb:8d:c4:78:1b:85:36:69:80:9c:
b3:5c:91:7f:fe:a5:2e:50:5a:3f:b3:a5:77:e3:d0:0d:e4:29:
cf:0a:2f:c3:68:8d:cd:86:99:f2:70:a7:2e:2c:f6:84:92:d2:
f3:44:9b:ef:11:03:4f:e7:f0:06:6c:d0:c4:2a:ad:a0:d3:59:
66:70:ca:f2:74:89:d8:de:4e:26:36:41:92:f9:86:4c:a2:4c:
44:67:e5:e6:cf:50:7c:47:05:00:ae:c5:89:47:4b:be:49:9d:
61:91:ba:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 03:59:43 2025 by rpki-client