Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/44DB0F62C52111EFBF2A2EA3762E951A.roa
File: 44DB0F62C52111EFBF2A2EA3762E951A.roa (raw, json)
Hash identifier: b8nCTnL6eKnJch0Ov+PF/hulDPizyEXF6OSmtgzJ/lU=
Subject key identifier: 33:3D:B7:0B:63:52:E7:F8:04:4B:F4:7B:8B:DA:0D:96:B8:57:FE:F8
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 012B59
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/44DB0F62C52111EFBF2A2EA3762E951A.roa
Signing time: Sat 28 Dec 2024 13:40:15 +0000
ROA not before: Sat 28 Dec 2024 13:40:11 +0000
ROA not after: Sun 12 Dec 2027 13:40:11 +0000
asID: 17561
IP address blocks: 154.203.194.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 76633 (0x12b59)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 28 13:40:11 2024 GMT
Not After : Dec 12 13:40:11 2027 GMT
Subject: CN=676fffbf-b3f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:b8:3e:2e:17:31:c2:99:53:e3:47:bb:d1:5f:
7d:a8:c7:e8:e1:b6:b9:1e:c7:2f:91:fd:60:89:d8:
0d:95:f3:e6:b1:25:93:1f:24:3b:9d:48:e0:03:27:
0d:d7:99:bb:d5:f4:65:27:04:68:f8:1e:cb:2e:e8:
c3:29:9a:bc:89:93:ac:5d:fe:cb:69:fb:b6:ba:1a:
0d:0c:af:c3:eb:e4:cd:09:bd:1e:a7:5f:8a:49:ff:
0c:68:88:ec:20:61:b9:92:55:1f:2c:6e:fa:41:52:
a2:b2:cd:5f:54:33:bd:af:2b:b9:27:69:de:72:5b:
cb:2a:86:12:a9:96:59:7c:a5:25:d2:7a:d8:fe:39:
12:5c:3f:9a:58:fd:8c:8c:d9:b7:73:2a:c8:9c:01:
4d:cc:56:d5:90:53:52:98:0d:8f:4d:4d:82:dc:70:
3d:83:69:74:5c:ea:1a:26:01:b6:06:f0:8d:27:ec:
3d:7f:a8:7d:ae:96:06:ce:10:7a:8e:d5:45:5b:5b:
e4:92:00:97:17:7b:13:ea:f8:71:c8:0a:4e:87:24:
52:a8:d0:da:ec:9d:61:94:16:6f:7b:95:1f:49:ed:
f0:62:52:7f:3b:84:6a:79:74:9b:66:58:6d:54:1c:
7c:b4:ad:f7:69:fb:da:d2:d6:50:52:8d:be:1e:36:
04:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:3D:B7:0B:63:52:E7:F8:04:4B:F4:7B:8B:DA:0D:96:B8:57:FE:F8
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/44DB0F62C52111EFBF2A2EA3762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.203.194.0/24
Signature Algorithm: sha256WithRSAEncryption
50:30:4c:ea:b5:b8:37:24:5f:04:2c:cd:e7:93:81:c9:02:48:
73:49:52:c9:4d:1d:89:5d:c4:3f:de:23:24:8a:35:ab:8b:93:
8e:e1:5c:77:73:11:82:ef:1f:39:da:f0:f7:97:8f:5c:cd:d6:
d9:1c:f6:f5:5b:d2:22:b4:1c:2f:73:00:b8:2f:58:eb:11:2f:
8d:62:11:8b:02:25:ce:2b:6e:38:fe:10:66:e7:8d:ef:de:99:
11:e8:18:f6:d6:82:da:76:fe:72:fc:56:e3:30:12:e4:e1:ee:
c4:23:d3:ae:b7:7d:b8:ba:e3:0f:3c:38:9b:dd:39:c2:30:d4:
2f:61:4f:bb:a1:0a:8c:09:e1:45:d8:43:cf:fe:47:c1:f1:4b:
d9:b1:5b:21:98:46:61:55:0a:0c:45:c5:54:4a:da:3b:16:6f:
05:c7:11:bc:20:9d:89:5e:c5:aa:3d:85:77:8b:fe:fb:3d:a7:
48:79:03:06:a1:ce:e0:95:58:7a:b3:9b:5c:e1:0f:31:74:d9:
f2:37:96:77:b6:80:0b:05:56:5f:38:a7:3c:b0:af:21:75:fb:
4e:95:75:3f:7d:10:0d:47:86:4f:09:f9:94:b7:58:db:15:b9:
b2:4b:ad:6d:b7:47:d6:07:09:a8:e4:73:45:d6:cd:3d:cd:c9:
67:2a:54:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:52:00 2025 by rpki-client