Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5866EBF6C3C711EFA85E5E87762E951A.roa
File: 5866EBF6C3C711EFA85E5E87762E951A.roa (raw, json)
Hash identifier: nWmRSUi6uoZbxvBzxd0j1yRYroeLYAVdUkc6avgWweg=
Subject key identifier: 0E:2F:A4:3C:81:D2:16:F0:43:2B:5D:4D:BF:3D:F2:E9:58:D7:99:2E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0127DE
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5866EBF6C3C711EFA85E5E87762E951A.roa
Signing time: Thu 26 Dec 2024 20:24:02 +0000
ROA not before: Thu 26 Dec 2024 20:23:58 +0000
ROA not after: Fri 12 Dec 2025 20:23:58 +0000
asID: 984
IP address blocks: 154.83.132.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 75742 (0x127de)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 26 20:23:58 2024 GMT
Not After : Dec 12 20:23:58 2025 GMT
Subject: CN=676dbb62-4db5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:e1:bd:d5:61:a2:5f:08:e9:6a:a1:57:74:08:
2b:ec:98:a7:f8:60:aa:39:a9:f1:90:06:3a:65:4a:
76:4b:63:f4:9a:fb:19:18:db:6e:1f:56:ea:30:8d:
4e:83:52:3e:91:3a:f9:1d:de:3a:74:f7:8c:89:38:
a2:2c:34:09:1d:79:5a:b3:45:fb:33:f1:e5:9c:ba:
2e:52:9f:65:86:04:a5:b3:35:89:11:de:19:4e:e6:
39:b3:4e:91:e7:43:f2:9d:7a:28:54:92:c3:6c:2a:
6a:b6:25:9a:35:e9:4a:cb:b6:a9:6c:9d:a8:93:57:
08:24:3a:94:62:f5:96:6b:65:31:a0:d6:bb:4a:67:
a6:87:01:8b:c1:ee:63:1b:9b:80:f3:e6:db:59:04:
b0:79:e6:f5:5f:5b:b7:79:7f:77:a4:de:00:3b:d7:
10:a2:6d:a1:a8:c0:96:ec:bc:c3:25:ba:a3:1e:d5:
29:bd:44:bb:e2:8e:8c:e1:06:bd:2b:ea:b0:ca:31:
05:a1:42:fa:03:7c:cf:99:e9:d9:49:f5:eb:27:23:
c2:52:18:fd:fd:21:78:da:c0:24:35:31:00:fc:f4:
37:e4:ac:e1:0e:19:9e:96:dc:5a:e1:a1:d1:aa:97:
c3:10:54:09:8a:a0:1e:43:f1:62:c2:1e:93:d5:30:
da:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:2F:A4:3C:81:D2:16:F0:43:2B:5D:4D:BF:3D:F2:E9:58:D7:99:2E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5866EBF6C3C711EFA85E5E87762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.83.132.0/24
Signature Algorithm: sha256WithRSAEncryption
83:63:46:d1:e0:bd:1c:1e:1d:30:aa:d4:ae:37:67:33:36:d3:
2c:a0:83:36:d3:0e:87:3c:9d:be:d7:ad:53:81:27:ea:a0:36:
f5:3e:91:22:90:04:7b:5c:f3:79:7a:ef:0f:4f:ed:cf:c5:b9:
a1:67:6b:db:81:0b:8e:ea:9e:06:b2:fb:96:5f:c5:d4:7e:19:
d6:2e:3e:e5:f5:59:49:ae:f2:51:53:fe:2f:94:2e:3d:99:a9:
b7:33:bb:22:7f:6d:0f:4c:96:54:6b:23:76:ed:75:3f:3d:c4:
d9:69:17:2a:89:bb:26:ae:20:d5:03:b9:20:78:4d:f2:bd:4f:
f9:a9:6a:a4:d2:48:97:1c:75:fc:eb:ec:d6:32:61:08:d0:3a:
79:d2:2d:7a:85:aa:97:bb:24:4e:17:24:a3:25:7f:58:c0:67:
58:e9:ac:de:9f:48:fb:66:5c:3b:5d:ae:40:2b:46:f7:2f:52:
d0:c1:0c:71:29:5d:2c:d7:84:dd:ad:59:4e:88:e0:ec:bd:fd:
db:df:03:10:a8:9d:f8:ad:ee:5f:dc:04:93:ff:9d:fa:75:c4:
0f:2a:b4:7a:06:da:92:23:6a:31:ec:0d:59:0d:eb:f6:e1:59:
d7:01:3a:32:be:e7:de:f1:37:09:cc:e6:5c:a1:fe:83:a8:e7:
91:cb:e9:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 11:51:54 2025 by rpki-client