Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/42021998C40E11EF80E7365D762E951A.roa
File: 42021998C40E11EF80E7365D762E951A.roa (raw, json)
Hash identifier: 2HHQ0Fw5vVlSV79X/+FnlOduKxAhjRbxE8LKERAvZDU=
Subject key identifier: B5:A3:26:3E:52:96:AB:F5:C6:AB:9D:1F:18:4B:8F:9D:0A:6A:A8:7D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 012935
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/42021998C40E11EF80E7365D762E951A.roa
Signing time: Fri 27 Dec 2024 04:51:39 +0000
ROA not before: Fri 27 Dec 2024 04:51:35 +0000
ROA not after: Fri 12 Dec 2025 04:51:35 +0000
asID: 984
IP address blocks: 154.196.228.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 76085 (0x12935)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 27 04:51:35 2024 GMT
Not After : Dec 12 04:51:35 2025 GMT
Subject: CN=676e325b-670f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:a2:6f:62:52:cb:e2:da:d5:7d:ce:ad:ff:d5:
dc:87:47:b2:ff:de:ca:99:a8:1c:e7:20:3b:d7:99:
0a:83:6d:11:36:88:42:ee:bc:6d:fa:89:0b:2e:24:
d8:d6:ff:8a:2b:42:84:8c:bd:e0:45:5a:b8:6e:ba:
61:67:4f:f3:c6:c0:9b:eb:6d:43:fe:db:81:2b:9f:
e0:0e:0e:25:89:4a:f2:65:82:6b:9d:9e:61:14:dd:
57:cb:f8:b9:a3:ad:00:ec:b0:89:10:c9:48:12:54:
96:39:52:4c:81:6d:4b:c3:69:e5:3e:7a:79:b1:ef:
f7:df:c9:42:27:c6:21:25:8f:e5:75:35:e3:c7:c6:
1b:39:d4:3a:a5:5f:c1:f3:0c:0a:5f:f7:b6:7d:71:
8a:fa:f1:f2:d3:53:ef:0d:b6:e1:89:48:a2:7f:0d:
b6:25:f7:15:2b:b8:da:5e:a6:56:4e:df:2c:85:45:
88:ce:f6:78:ac:19:d0:cd:d6:93:b1:4e:75:28:53:
f9:34:8b:10:63:e2:d0:50:d5:3a:10:0a:ce:8d:fb:
71:f2:7b:ef:e1:57:e4:6e:09:33:c3:98:f4:6e:11:
41:75:ec:c2:7e:ac:a8:a1:50:74:14:8a:0b:e4:09:
b0:01:e1:79:29:fd:3e:91:75:f6:f0:ff:08:eb:28:
42:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:A3:26:3E:52:96:AB:F5:C6:AB:9D:1F:18:4B:8F:9D:0A:6A:A8:7D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/42021998C40E11EF80E7365D762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.196.228.0/24
Signature Algorithm: sha256WithRSAEncryption
66:4c:81:81:d4:32:43:38:66:b1:3b:8c:e4:38:c6:09:35:86:
a2:37:68:68:90:d9:59:1a:0e:29:5d:86:a2:cd:74:e6:51:a3:
e4:15:33:74:c3:33:13:ba:6b:99:f6:50:8b:92:78:3e:04:75:
8f:3e:51:ef:12:01:9f:bd:da:1a:48:70:d5:d6:8c:3f:2e:08:
1e:02:50:8f:ad:e3:af:cc:09:a4:e0:fe:36:49:a1:f8:2b:50:
16:1e:7f:00:23:db:ed:82:4a:ef:9b:d3:8f:55:d7:90:7e:52:
ff:ac:a5:e4:6c:72:4d:21:b1:41:ac:f7:97:57:54:fa:cf:87:
cc:8e:b1:5c:60:dd:a3:53:fe:39:24:69:10:b4:00:d7:97:11:
8a:96:b2:a3:33:fe:f9:e7:cc:e7:3c:a5:42:12:c1:44:55:d6:
c0:b1:fb:99:d9:9a:ce:af:cf:52:62:cc:a1:76:f6:5c:c2:f1:
d9:9b:78:5e:f2:7c:65:9e:81:70:f0:18:ae:05:4e:d2:b7:12:
35:7e:da:95:66:fc:f8:16:61:67:00:68:d5:02:c0:81:de:fa:
84:77:c9:29:c3:c1:30:11:b9:dd:0c:91:98:72:bb:6e:cb:3d:
75:70:79:67:78:e1:eb:3a:74:fb:71:54:ea:f0:70:41:88:6f:
a1:49:ad:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:55:05 2025 by rpki-client