Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5934217CCDBB11EFAC896F5C762E951A.roa
File: 5934217CCDBB11EFAC896F5C762E951A.roa (raw, json)
Hash identifier: vuzxDwzeKbQRsTZWaM3oCEF2ElVqZQmozzpfub5AfCA=
Subject key identifier: 96:6B:56:73:27:A5:CD:7A:B4:BD:DE:20:E1:A6:85:AC:06:02:E8:B6
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0136E2
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5934217CCDBB11EFAC896F5C762E951A.roa
Signing time: Wed 08 Jan 2025 12:23:21 +0000
ROA not before: Wed 08 Jan 2025 12:23:17 +0000
ROA not after: Tue 16 Dec 2025 12:23:17 +0000
asID: 984
IP address blocks: 154.200.186.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 79586 (0x136e2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Jan 8 12:23:17 2025 GMT
Not After : Dec 16 12:23:17 2025 GMT
Subject: CN=677e6e39-9ffa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:d2:b6:31:36:19:a7:e6:b9:3b:da:b7:db:9e:
5b:ea:be:33:19:f5:4d:b1:38:4c:4c:c8:fb:ae:64:
8b:8b:09:24:17:34:d3:05:9b:72:b1:88:5d:cc:da:
91:bf:df:9c:d6:15:0b:59:f6:40:c6:c2:6c:09:c3:
6b:e4:be:a1:41:fd:63:2e:46:3a:9a:e3:eb:e0:86:
27:14:9c:d4:0b:04:36:be:ab:13:6b:b1:06:38:ed:
a6:8b:95:fc:0d:c3:06:ac:64:e6:2e:44:28:07:0c:
d8:01:60:58:e7:05:7f:26:b0:36:89:e9:73:c8:45:
de:65:e6:14:39:a6:ce:55:bc:ea:52:eb:a6:99:25:
c4:0e:40:6d:93:09:50:3b:2f:eb:8b:0d:d7:89:fe:
8f:01:3c:2b:b1:db:25:cd:89:12:38:18:14:92:15:
8d:25:7d:d7:cd:15:e5:09:7b:ff:33:15:9f:96:28:
5a:4f:2f:d9:e1:63:f0:ab:88:ba:67:a9:97:da:c2:
74:74:00:bf:6a:3c:a4:d3:0e:d3:f1:93:58:c6:04:
53:bf:07:c8:ec:ed:fb:6c:9f:f6:5d:b0:18:bd:b3:
3b:e3:17:c0:38:f1:6d:69:82:e1:c2:78:90:4b:d5:
ed:39:5c:63:a2:9b:dd:45:32:0e:58:9b:24:47:29:
d9:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:6B:56:73:27:A5:CD:7A:B4:BD:DE:20:E1:A6:85:AC:06:02:E8:B6
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5934217CCDBB11EFAC896F5C762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.200.186.0/24
Signature Algorithm: sha256WithRSAEncryption
cd:af:76:dd:1c:5f:1e:cd:1c:49:c9:32:c4:79:ef:41:ca:51:
6d:fd:ee:3f:58:01:b4:05:98:b7:e5:8d:7f:24:18:5e:44:84:
df:3f:c1:be:39:e1:a1:02:a7:2e:c7:75:3f:69:f2:72:ab:b1:
48:16:df:d1:49:1d:83:69:f0:7e:5c:f5:08:a5:ed:a8:11:fa:
00:d9:68:41:ad:ee:03:9e:30:64:36:dc:75:58:7a:3a:ba:b9:
7e:6b:21:f8:d0:f4:df:5e:68:a0:06:35:c5:b0:fb:e4:40:e2:
7d:bc:c2:25:cd:ab:20:9c:b6:05:5f:06:79:a8:be:16:94:3b:
ad:40:77:19:79:e7:18:71:08:08:1e:05:4f:17:73:6a:e7:4b:
2d:45:83:71:97:0c:55:8c:1f:88:f2:a8:1d:bd:81:dc:83:4c:
96:dd:e6:ba:97:86:62:99:c8:a3:c0:70:61:7e:49:fe:da:8c:
2b:8e:8a:23:43:4b:3a:57:ba:6d:5e:b8:58:21:47:6f:6c:e1:
f1:53:f3:0e:8e:7e:2b:9a:99:31:43:de:78:5e:3b:58:91:98:
e5:fb:5e:09:9a:3b:55:08:09:db:b4:95:48:76:6c:13:e4:7b:
f1:4c:6e:ef:a9:dc:ca:ad:b4:fd:b7:55:12:c2:4a:54:b3:23:
de:08:76:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:51:38 2025 by rpki-client