Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/59ADC3E4C38711EFAA4E4A76762E951A.roa
File: 59ADC3E4C38711EFAA4E4A76762E951A.roa (raw, json)
Hash identifier: XF4j5BD7cPHCMiQSVLmbJZeJzXpdFdWqK9ceck4Ek/M=
Subject key identifier: 72:59:F1:5F:B2:59:FC:8C:17:56:83:83:15:95:12:1A:30:77:33:74
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0127A0
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/59ADC3E4C38711EFAA4E4A76762E951A.roa
Signing time: Thu 26 Dec 2024 12:45:56 +0000
ROA not before: Thu 26 Dec 2024 12:45:53 +0000
ROA not after: Fri 12 Dec 2025 12:45:53 +0000
asID: 984
IP address blocks: 154.94.244.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 75680 (0x127a0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 26 12:45:53 2024 GMT
Not After : Dec 12 12:45:53 2025 GMT
Subject: CN=676d5004-424c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:b2:99:a1:58:fe:f5:07:78:ee:7f:5e:93:10:
86:84:a1:5a:02:9c:e2:28:ee:d8:22:b9:ca:c2:03:
97:91:bd:6f:fe:d5:fb:22:d2:72:d8:34:d4:26:a2:
e5:a0:05:87:76:c4:53:ca:dd:f3:45:05:45:16:69:
79:ba:42:6e:32:76:ee:08:a4:ce:86:be:c3:9f:01:
4e:20:3b:58:f9:91:b1:19:dc:5d:fe:fc:95:c5:46:
6f:e4:27:25:61:e8:68:7c:06:0e:a6:d8:12:ac:8c:
00:1a:0f:90:ad:48:4f:ba:cd:19:b3:87:42:ed:88:
95:ee:0a:31:c6:28:b7:a5:89:e9:fe:f4:a7:19:52:
52:0e:03:41:e1:03:f0:ed:1b:2f:91:43:3d:3c:34:
b8:08:bc:0b:a1:7e:70:bd:e0:98:bd:ca:41:a2:47:
92:37:aa:76:46:42:c7:3c:74:ba:0b:6f:99:cb:3a:
41:f5:88:48:ff:c7:be:d2:7d:fd:69:0d:4b:60:39:
9e:af:ca:ec:7e:ef:b5:17:d4:4d:ce:55:fa:91:c9:
63:45:12:4c:6b:8e:e5:bd:2f:13:69:c9:f4:a0:ae:
f3:e2:1b:14:f6:c6:02:35:76:1e:b3:c4:35:6f:c6:
90:58:3b:c5:ea:c2:75:19:e2:f0:5b:d5:32:9f:40:
be:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:59:F1:5F:B2:59:FC:8C:17:56:83:83:15:95:12:1A:30:77:33:74
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/59ADC3E4C38711EFAA4E4A76762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.244.0/24
Signature Algorithm: sha256WithRSAEncryption
c8:6b:cb:7d:fb:3b:00:66:fc:c1:f3:4e:27:38:b5:e0:d5:17:
a9:70:de:1e:d3:8a:7f:cb:84:f3:a1:51:1b:40:36:b3:50:78:
7a:bd:00:61:6f:f5:67:bf:a8:f9:b2:96:b2:a0:99:fe:cc:6a:
1d:c8:b8:95:57:fc:11:64:32:05:fa:dd:8a:0b:c2:31:4f:07:
a8:ee:00:45:a3:8b:45:df:dc:39:85:b9:67:f2:2d:c8:26:6c:
38:90:d4:91:1a:31:51:69:ca:3a:d5:0f:6d:cb:47:aa:b9:4a:
3c:42:aa:23:51:42:f1:2a:e1:54:3f:38:e3:64:1a:5d:24:e8:
55:f6:7e:c4:f4:9b:6e:9a:50:d4:2e:fa:71:86:ad:51:42:29:
7d:56:78:b1:99:24:da:41:1d:f2:30:db:51:26:45:f3:96:ad:
25:0f:fe:16:48:6b:cf:4f:90:41:20:b1:8d:58:2e:48:b2:c7:
2f:0f:12:de:da:2f:3d:cb:25:06:c9:48:b7:7b:62:f7:c7:3d:
fe:47:66:0d:5e:7d:18:8d:ff:a1:96:00:c2:7e:49:12:3b:4c:
e8:3f:76:e0:d6:f5:b3:28:0f:00:5e:a6:34:03:f5:3d:84:5f:
ee:9f:19:fa:62:84:69:8f:17:54:a5:4f:3a:d1:49:03:e8:89:
4e:13:83:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 08:04:03 2025 by rpki-client