Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/434C93D4C92011EF9331BD87762E951A.roa
File: 434C93D4C92011EF9331BD87762E951A.roa (raw, json)
Hash identifier: UoHgWb/zByPRt8wVf2ZIp12vX+/a0NuJuCmvdylSWOA=
Subject key identifier: 39:AC:FC:1F:AC:E6:58:48:A0:A9:5F:06:06:1C:E6:C8:7B:7A:8B:3F
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 013325
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/434C93D4C92011EF9331BD87762E951A.roa
Signing time: Thu 02 Jan 2025 15:43:08 +0000
ROA not before: Thu 02 Jan 2025 15:43:04 +0000
ROA not after: Mon 13 Dec 2027 15:43:04 +0000
asID: 17561
IP address blocks: 154.222.87.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 78629 (0x13325)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Jan 2 15:43:04 2025 GMT
Not After : Dec 13 15:43:04 2027 GMT
Subject: CN=6776b40c-abae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:11:29:a9:12:ec:bc:1b:5c:b8:b7:70:ef:55:
70:d7:c0:28:52:1b:fe:85:61:0b:64:c4:e9:e7:9c:
a3:60:99:a3:9a:de:19:f1:6e:c3:c7:c2:7e:9c:d8:
14:b7:73:23:5e:a1:6b:62:3a:51:cd:86:8a:6c:bf:
e1:79:b7:7d:1a:b0:3a:79:8e:c5:fa:c2:1b:cc:07:
9a:8f:ac:07:3f:f2:35:ff:c7:2d:60:20:fa:b0:92:
77:4f:83:2b:d7:89:17:01:5f:ab:3d:6c:fc:42:82:
25:a1:d0:f8:b1:3d:9f:19:4b:2b:ec:c9:3d:b6:0a:
9a:b8:c3:81:38:f3:11:8d:18:90:19:3b:d6:2d:4f:
51:3e:82:d1:02:71:8c:4f:3b:70:4a:18:8d:75:02:
88:83:c8:a7:51:3f:48:4a:0a:18:4a:18:68:a0:18:
fc:f6:97:c0:20:8b:ea:fd:63:99:12:c2:7e:e6:5e:
d7:32:7d:de:09:de:0c:d8:72:79:96:46:e2:ff:3b:
59:89:79:94:96:8c:9b:75:bd:3d:58:5b:09:85:35:
70:44:0b:45:ae:54:d6:89:c7:79:45:1e:7f:45:13:
cd:62:c3:fa:f6:55:ee:e4:86:0a:fe:59:fb:a4:cf:
49:52:71:5a:67:11:a2:e2:05:77:4a:9c:ff:d3:52:
ef:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:AC:FC:1F:AC:E6:58:48:A0:A9:5F:06:06:1C:E6:C8:7B:7A:8B:3F
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/434C93D4C92011EF9331BD87762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.222.87.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:21:4d:a7:e0:3f:74:4f:66:11:2d:68:ca:c1:8a:8c:b6:bb:
b7:68:51:e0:0b:25:82:59:13:65:bd:36:32:bd:34:1c:26:86:
0c:f8:6a:96:e1:85:83:25:13:9f:2a:32:05:f0:65:c4:b0:fb:
d1:4f:0a:52:52:ce:b8:6d:7c:8e:a0:2a:90:e5:5e:0d:44:6e:
25:8b:2e:0d:a9:bd:98:ce:44:07:10:32:7d:55:f9:f0:3b:56:
16:aa:bf:49:5a:e6:3e:d2:af:5d:c5:18:c7:f6:ad:29:1f:2e:
f5:58:21:03:89:47:b3:fe:d3:8a:6f:66:01:7c:ec:f2:32:50:
4c:36:32:1a:4e:ed:b5:25:f4:81:9f:c6:04:2b:68:6d:db:78:
d6:e1:9d:eb:71:c6:2c:8e:ed:4a:1e:3a:67:3a:f3:55:64:f0:
db:8b:02:c1:28:89:67:fc:e1:77:8a:1e:0a:09:3d:92:0c:0b:
0f:39:71:4b:8d:f0:c3:d9:4d:e0:86:d1:7e:01:67:dd:d1:16:
d4:82:bd:1e:37:a5:6b:47:84:2b:51:9f:fe:dc:6b:30:7b:48:
9a:01:f7:68:6e:fa:c7:98:58:3d:69:05:87:34:35:29:73:88:
09:a3:0d:14:64:b4:c8:da:1a:e3:82:52:be:a6:3c:ff:53:45:
6c:c8:76:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 03:59:26 2025 by rpki-client