Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/424E7916C63C11EFBFFE2D9F762E951A.roa
File: 424E7916C63C11EFBFFE2D9F762E951A.roa (raw, json)
Hash identifier: wUlGntzyeEa/THy3flpb8M2ao+/v0lK8YXizuLkG4V0=
Subject key identifier: 72:51:9A:A8:65:4F:9C:F7:6E:EB:79:5A:2E:93:5B:3A:3A:EA:65:03
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01304F
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/424E7916C63C11EFBFFE2D9F762E951A.roa
Signing time: Sun 29 Dec 2024 23:25:59 +0000
ROA not before: Sun 29 Dec 2024 23:25:55 +0000
ROA not after: Fri 12 Dec 2025 23:25:55 +0000
asID: 984
IP address blocks: 154.218.38.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 77903 (0x1304f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 29 23:25:55 2024 GMT
Not After : Dec 12 23:25:55 2025 GMT
Subject: CN=6771da86-955a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:7e:81:a9:b2:eb:a7:d6:9e:ea:60:a2:ec:f7:
27:a1:20:6e:bf:ed:32:4d:88:8f:f8:6f:3f:2b:44:
d4:16:a2:c6:d0:5c:b8:80:eb:53:cc:08:de:0d:ac:
3b:65:fb:0b:7b:ce:73:ba:62:2b:60:c5:50:cb:44:
7c:c0:3f:01:8c:4b:94:bc:c8:99:f6:77:e8:61:bc:
16:60:ce:35:19:9f:d4:df:8c:1e:fd:0b:4a:83:95:
8b:30:7a:e0:4b:f4:88:e1:29:33:86:7b:8d:d9:ae:
9a:10:d8:67:98:92:9c:0f:0e:9c:45:11:7d:f9:9d:
9a:6a:c2:68:3a:58:a3:97:e5:54:9f:f7:b7:58:41:
eb:81:54:89:a3:ab:01:7b:29:85:ef:bb:f3:d0:9c:
fb:47:23:4e:b2:1d:fa:2e:cf:31:69:70:5c:13:57:
01:69:2e:50:41:4c:3b:1e:64:a7:4f:6f:e4:da:dd:
fd:da:43:06:43:d1:d7:04:21:86:0a:3b:8f:10:df:
0a:10:a8:e3:db:5f:7e:5a:90:bc:d6:37:98:85:6b:
c9:61:c7:02:10:3b:9f:29:81:cf:0e:db:5d:1e:25:
cd:99:41:9c:6e:a4:f6:7e:4c:47:d0:27:c4:6b:fd:
f4:1d:51:87:b9:05:0a:5b:6c:91:f1:c0:79:49:c0:
d9:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:51:9A:A8:65:4F:9C:F7:6E:EB:79:5A:2E:93:5B:3A:3A:EA:65:03
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/424E7916C63C11EFBFFE2D9F762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.218.38.0/24
Signature Algorithm: sha256WithRSAEncryption
32:8a:c2:fe:95:b9:dc:09:70:a0:23:c4:58:dd:17:93:b2:ea:
2b:1c:93:ae:3b:e2:ae:23:54:db:e1:ba:a7:dc:b5:37:54:fe:
e3:24:5f:f9:83:2a:0d:03:c2:93:4d:15:a6:b0:ef:c7:92:e1:
74:d9:3a:d8:3b:20:7f:98:26:86:e2:73:82:62:5f:13:24:70:
e1:81:2e:2e:b1:e4:9c:cb:b2:8f:f8:37:49:f1:e3:cd:ef:f1:
9d:1b:cd:30:30:1f:ee:90:da:a9:3b:b8:e2:78:b2:9f:ab:ba:
74:7d:6f:e8:84:3d:14:fc:c7:a6:42:84:91:2c:7c:de:6a:84:
f9:16:63:5d:5a:1d:19:ea:49:5d:a8:4f:e7:69:71:6c:a6:ec:
90:5e:c6:28:78:73:6c:37:34:43:c1:7b:69:e9:1b:12:da:28:
52:fd:25:5b:4a:59:86:73:96:0c:a0:b0:53:15:00:ec:85:72:
e2:77:53:88:d5:0a:32:27:57:74:e2:66:29:b8:48:e5:8b:45:
8e:ed:61:b1:7b:68:fa:0f:e5:cf:5d:79:f0:a2:81:a5:e5:89:
c0:d4:85:c9:84:01:8d:45:5d:17:72:dc:dc:9d:71:b4:e7:f9:
5d:8a:b4:a1:c7:ab:15:9e:83:2e:f2:5e:9d:c2:ce:2c:bc:b3:
fc:b3:0d:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 23:16:33 2025 by rpki-client