Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/420C96DAF44111EFA55EF74F762E951A.roa
File: 420C96DAF44111EFA55EF74F762E951A.roa (raw, json)
Hash identifier: AAvXqgTBTRuHA7VO7M204C53lWAiTm0KJeaf4K3ma54=
Subject key identifier: 29:66:40:34:1B:61:31:0A:C3:6B:D4:63:F1:19:D9:0F:B5:A4:31:A3
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01636A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/420C96DAF44111EFA55EF74F762E951A.roa
Signing time: Wed 26 Feb 2025 12:57:39 +0000
ROA not before: Wed 26 Feb 2025 12:57:35 +0000
ROA not after: Thu 19 Feb 2026 12:57:35 +0000
asID: 984
IP address blocks: 154.208.180.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 90986 (0x1636a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Feb 26 12:57:35 2025 GMT
Not After : Feb 19 12:57:35 2026 GMT
Subject: CN=67bf0fc3-3654
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:5a:c5:03:48:a5:c0:3d:79:52:38:7e:65:ec:
d1:db:db:9f:27:d7:37:ad:41:3b:06:b0:41:8f:a8:
f2:50:24:c7:bb:ca:a9:9e:f4:88:da:e5:40:1d:31:
13:93:1c:8c:54:7b:ad:c4:ea:66:71:56:06:d1:9f:
af:72:8c:47:04:a9:6e:5f:1d:3e:05:24:5c:87:ac:
6e:07:4e:27:86:c1:d3:3f:9d:ba:2b:c1:ef:1d:64:
89:30:c7:34:24:28:50:b3:b8:ae:78:49:6f:b7:9c:
a2:4d:37:fc:12:cb:f0:68:f2:3c:fa:5d:e0:20:e5:
8b:11:0f:51:3a:3f:e3:d7:45:cd:ed:03:dc:4a:37:
00:c7:0a:99:85:2d:46:26:13:3f:84:71:53:1f:a5:
91:00:bc:bc:fb:e8:9b:e8:76:89:7a:38:50:c4:54:
9c:44:de:2c:93:e7:21:e9:c2:6f:5a:f3:19:ca:8b:
fa:27:46:d0:3f:d9:8c:b7:0d:b3:de:a6:3c:c9:4e:
fd:d9:16:31:e6:0c:fb:eb:23:65:65:d7:4c:48:1e:
cf:fe:7e:f9:72:71:24:64:53:6a:31:90:37:75:3d:
67:c1:03:35:d5:8b:76:52:86:f8:d4:58:15:46:66:
3f:3c:e7:e9:77:7e:a7:0d:b9:86:ae:36:0e:c0:bc:
d7:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:66:40:34:1B:61:31:0A:C3:6B:D4:63:F1:19:D9:0F:B5:A4:31:A3
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/420C96DAF44111EFA55EF74F762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.208.180.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:dd:63:93:5f:47:cb:d6:23:34:19:6a:1e:19:48:3e:4c:ab:
38:ab:ae:44:67:3c:08:f5:87:7f:d9:37:13:90:f6:0b:7c:11:
1a:ec:c0:ea:c7:fe:3b:9d:70:3b:65:b2:99:ef:f7:6b:70:af:
f9:cc:35:cc:70:1a:2e:30:8a:46:bb:85:d2:e2:fc:b7:b1:1a:
e0:e3:71:71:19:d6:21:cd:2f:53:49:d2:cb:80:2a:4d:90:5e:
34:b7:63:65:5c:a2:84:2b:fd:20:7a:d8:03:84:c0:f8:41:21:
ce:c3:9c:33:6c:43:e4:a7:da:db:94:7d:02:20:cd:99:1f:8e:
42:f4:05:1a:e0:a0:d9:7a:b5:73:cc:02:32:d8:ff:d1:f0:5c:
78:ee:fc:79:0c:0c:dd:a6:69:b1:8f:bc:ca:a0:40:c3:d7:19:
53:2a:c1:14:7f:a8:5a:af:e9:aa:95:7c:af:bd:5c:a7:29:0f:
48:e8:fc:3b:ce:44:c9:7c:4e:11:22:1c:5b:2e:8a:d6:e4:85:
f0:50:4c:7c:38:4e:83:0e:09:07:fb:36:8f:99:2d:11:e2:3d:
da:23:ca:1b:33:35:b8:52:ba:05:19:b1:f3:3f:15:92:f4:1e:
ba:7a:91:c5:fe:b7:53:27:93:7c:11:35:c7:70:ee:9b:41:84:
d7:68:ad:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 01:46:39 2025 by rpki-client