Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/50B272C6F44211EFA306A355762E951A.roa
File: 50B272C6F44211EFA306A355762E951A.roa (raw, json)
Hash identifier: x94CY+Ns0YcJX5nzHUcOFPjvRF3wYn0WrBZCV3QCxcI=
Subject key identifier: 04:DD:31:AB:79:80:07:4F:EF:83:52:68:44:77:43:65:E7:C9:39:65
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01637F
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/50B272C6F44211EFA306A355762E951A.roa
Signing time: Wed 26 Feb 2025 13:05:13 +0000
ROA not before: Wed 26 Feb 2025 13:05:09 +0000
ROA not after: Sat 19 Feb 2028 13:05:09 +0000
asID: 17561
IP address blocks: 154.82.170.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 91007 (0x1637f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Feb 26 13:05:09 2025 GMT
Not After : Feb 19 13:05:09 2028 GMT
Subject: CN=67bf1189-4e3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:43:9c:f8:71:d5:40:5a:44:73:ed:35:5c:b1:
5f:b5:cb:b6:16:68:83:86:43:19:df:80:80:5b:26:
a8:8c:d5:e1:a3:f8:1c:bf:c5:b7:5f:79:e5:23:82:
d3:25:bf:c9:fd:52:c4:9e:03:6c:f8:c2:38:48:3c:
ad:8e:14:84:c3:3c:4a:07:a2:e9:58:3a:be:a3:6b:
68:5f:47:2e:6e:c7:ca:c9:2c:1c:16:e7:eb:ce:39:
6b:a1:c7:e9:eb:86:54:57:9e:a3:e0:5c:51:d5:24:
9c:8f:e2:67:8e:03:2a:d3:7f:23:39:93:b3:21:ff:
08:4b:48:e3:3e:21:b0:a1:91:a9:9e:9e:82:7c:a4:
cc:8e:e4:5a:99:1e:ec:96:6b:6c:6d:94:c9:51:3a:
e3:bb:de:3f:24:a2:75:cc:d6:d8:32:a3:d7:99:ac:
c6:4b:68:24:ed:75:58:da:91:45:e1:e1:c8:60:b0:
c5:18:49:7e:a3:65:00:0a:bd:26:f2:94:0b:36:f4:
28:d2:b4:b0:c9:91:e3:21:22:01:cf:dc:7d:3d:60:
b4:cf:ee:f4:9f:75:aa:84:df:f4:00:53:84:cd:3d:
4d:3f:ad:2d:87:fc:b5:66:1a:41:04:0f:78:2a:d6:
13:bc:85:ca:1a:0e:ac:88:43:54:98:a8:21:c9:dd:
3d:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:DD:31:AB:79:80:07:4F:EF:83:52:68:44:77:43:65:E7:C9:39:65
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/50B272C6F44211EFA306A355762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.82.170.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:06:88:a6:37:53:c4:44:ab:56:a5:2f:8b:8a:fe:4d:44:94:
37:97:91:d7:c0:da:79:4b:e0:2d:49:81:34:70:bd:15:01:96:
fd:96:ed:fc:da:e1:ec:da:e5:e4:1f:66:ae:71:0a:d4:76:cc:
25:76:3d:4a:76:6d:d7:bc:87:7a:87:f4:3f:45:47:95:ee:db:
b0:94:b3:6e:58:d3:33:17:39:6d:8c:ff:fd:7e:19:d3:86:04:
79:3c:8d:a4:55:a5:2c:df:96:e4:f4:29:0b:85:c6:3e:84:51:
f3:0f:00:87:39:4b:14:cb:25:ad:33:4a:28:c7:75:fa:28:f6:
3c:b5:27:01:c2:fe:4a:3b:75:b8:29:25:e1:6b:bf:88:62:7e:
95:b9:d9:e3:fa:fd:e6:62:20:16:a0:ac:aa:cc:1e:5e:d6:0b:
08:92:56:85:6c:50:18:e3:fb:d9:ab:f3:83:ac:c3:c8:b3:db:
f8:c4:58:10:2e:c2:0d:20:a8:e2:57:fe:47:41:cc:c4:09:52:
5c:30:3d:19:84:34:ba:b6:90:c3:18:8b:70:02:d5:1b:fb:bb:
eb:1a:ee:e2:7a:94:25:46:82:18:7a:29:fd:c5:10:51:5e:f4:
a1:13:0c:67:37:c1:4a:1e:23:a0:d7:e5:42:c8:9c:76:df:a0:
e9:6a:cd:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:53:13 2025 by rpki-client