Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3B573368C54311EFBFA70479762E951A.roa
File: 3B573368C54311EFBFA70479762E951A.roa (raw, json)
Hash identifier: jFYzQB1WmUe4W4gJIemDlr5lYMEpZkUsROy2Q4MOPm4=
Subject key identifier: 0E:37:CC:6B:E8:AA:B4:26:41:A1:76:E7:B3:F2:EF:EA:B0:76:17:3F
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 012C91
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3B573368C54311EFBFA70479762E951A.roa
Signing time: Sat 28 Dec 2024 17:43:22 +0000
ROA not before: Sat 28 Dec 2024 17:43:18 +0000
ROA not after: Fri 12 Dec 2025 17:43:18 +0000
asID: 984
IP address blocks: 154.207.90.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 76945 (0x12c91)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 28 17:43:18 2024 GMT
Not After : Dec 12 17:43:18 2025 GMT
Subject: CN=677038ba-53c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:41:39:9a:cc:32:4c:00:9e:0a:a9:4d:87:0c:
18:b9:a2:8f:84:8a:38:19:e2:d8:95:b0:03:d6:87:
61:84:ea:29:33:c2:d5:0e:7c:49:d3:e9:8c:09:74:
73:ab:f5:4d:82:53:f4:51:97:4d:8b:bd:c9:54:b5:
11:73:66:71:6d:86:dd:ca:4b:8c:22:74:70:e4:84:
0d:57:e0:e2:73:1c:32:48:7b:10:5a:68:5e:b2:d2:
2f:dc:e0:ba:04:25:16:41:85:a5:80:0f:cc:27:44:
1a:48:d8:25:e9:69:bc:eb:89:ab:bf:96:ad:b7:76:
cc:f6:7e:65:b2:b4:13:9b:f1:ff:35:a9:b3:0d:5c:
b4:e3:a0:0d:6d:d1:96:8f:22:66:2e:84:ae:b3:d9:
00:e8:c7:f5:67:3a:30:f0:eb:d0:b9:8d:60:42:64:
df:c8:96:4e:44:a2:a5:06:22:01:26:1a:6c:6e:7d:
71:1d:a6:6b:31:88:71:f5:ec:e7:fd:97:96:10:19:
ff:6f:5f:5c:36:11:4f:ab:d2:78:0d:29:50:22:a4:
b5:27:d4:6b:14:69:94:61:2d:73:30:45:cc:bc:3a:
70:aa:74:14:83:db:7a:7a:e0:2f:3c:f3:5c:e8:db:
9a:77:7d:46:c4:db:d2:aa:e6:56:88:42:b1:4a:b7:
79:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:37:CC:6B:E8:AA:B4:26:41:A1:76:E7:B3:F2:EF:EA:B0:76:17:3F
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3B573368C54311EFBFA70479762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.207.90.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:9a:06:bc:26:6a:03:57:7e:04:f9:ce:ff:54:95:2a:e4:76:
fc:ea:4a:26:c1:ec:d2:4d:15:04:ce:e8:61:e3:12:7b:91:0c:
5c:d0:79:2e:8f:7f:3c:52:59:64:23:29:63:df:3b:77:1c:55:
b3:b0:34:83:8c:9c:3d:0e:34:f7:70:5c:4d:b1:3a:e4:e7:9f:
dc:ae:94:08:fa:36:30:d1:e7:66:a9:0e:ab:b0:36:bc:59:8e:
d1:4a:5c:1a:d7:78:aa:29:31:4b:14:67:93:96:08:48:27:09:
f4:1b:2c:e6:94:d8:d9:b6:cb:44:dc:de:a1:40:5f:e3:41:b4:
1b:c8:93:6b:a8:0e:0f:f2:73:08:80:af:c5:99:62:9a:64:09:
72:9c:90:7c:dd:ae:f2:81:d8:28:cf:87:14:b5:80:ee:91:f4:
3a:65:f8:a2:80:74:5c:ee:27:09:1f:93:d5:5c:38:4e:05:91:
dc:58:28:10:69:55:3d:9c:4f:32:06:28:13:9e:00:ae:0a:57:
d1:ff:ea:91:2d:98:8f:57:c9:6a:d4:5d:4c:4e:8c:19:68:1a:
ae:da:ce:ef:6c:46:98:0c:0a:28:e0:c3:1f:ef:62:98:4b:be:
1e:26:d8:61:fe:37:19:c1:1e:3d:77:f4:61:c1:18:2d:78:40:
a9:09:49:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:52:53 2025 by rpki-client