Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5AC70344C8A511EF9FBA1D72762E951A.roa
File: 5AC70344C8A511EF9FBA1D72762E951A.roa (raw, json)
Hash identifier: ml0+MiwN6ceUsu2jMH/+RK20li1bEfMpfEeOuehu6/E=
Subject key identifier: C1:F7:EB:7D:80:C7:48:15:C9:57:41:54:88:EB:9F:B2:14:EB:54:AB
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 013144
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5AC70344C8A511EF9FBA1D72762E951A.roa
Signing time: Thu 02 Jan 2025 01:03:19 +0000
ROA not before: Thu 02 Jan 2025 01:03:15 +0000
ROA not after: Fri 12 Dec 2025 01:03:15 +0000
asID: 984
IP address blocks: 154.218.63.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 78148 (0x13144)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Jan 2 01:03:15 2025 GMT
Not After : Dec 12 01:03:15 2025 GMT
Subject: CN=6775e5d7-a00b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:f9:97:52:60:35:3e:db:2e:62:5e:13:84:57:
a8:a7:18:ce:2c:dc:e9:fc:d9:2e:13:02:3e:c6:0a:
78:68:ca:67:70:3c:0c:57:ba:4d:b3:d0:d2:1c:fe:
7d:34:a9:01:07:d3:77:89:0e:73:c4:6e:de:56:83:
df:b0:75:1a:89:7e:62:75:5e:aa:6b:10:aa:0f:05:
72:b7:40:e5:55:52:ea:d5:7d:2b:36:80:6b:28:f6:
50:b2:9f:e0:72:23:ac:41:97:8c:0f:b3:6b:61:a5:
68:2e:ca:5b:af:e4:a8:f0:c2:1f:09:17:ce:64:0e:
79:1c:03:4e:c8:1d:2b:07:a5:39:bf:20:08:8f:31:
1a:ac:b8:d6:22:f6:2e:67:85:e1:83:38:31:42:88:
be:f8:8e:e0:24:e3:e3:ac:f2:c5:88:c1:2c:8f:5e:
fa:79:37:25:c4:45:25:92:94:83:d7:d0:8b:97:70:
d0:a9:82:56:81:4d:2f:16:aa:4f:d7:1e:ff:a3:a1:
58:5f:56:bc:f6:6b:99:d6:64:38:da:0f:c3:0e:70:
29:27:a5:ec:54:0b:72:84:89:f1:be:1d:8f:fb:ce:
e1:4e:70:89:1c:bb:83:d5:cb:f4:0e:61:c6:7e:d5:
16:e7:c0:c7:29:c3:9a:3b:c0:6e:a1:47:be:29:9e:
50:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:F7:EB:7D:80:C7:48:15:C9:57:41:54:88:EB:9F:B2:14:EB:54:AB
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5AC70344C8A511EF9FBA1D72762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.218.63.0/24
Signature Algorithm: sha256WithRSAEncryption
03:13:f3:eb:1b:a1:47:42:13:10:f6:0c:9c:65:95:b7:a4:78:
c0:39:96:f8:34:f7:bf:96:d0:20:88:c5:6c:56:5c:94:6d:b4:
7a:61:03:7e:d5:e0:0b:aa:da:ac:ca:8f:7a:08:0e:21:c0:3b:
aa:ad:a6:3a:62:79:84:88:93:5d:37:e0:29:a9:f5:75:56:aa:
58:90:67:fc:da:54:43:7c:82:a8:c4:67:1f:37:bd:a1:c0:d8:
b5:10:fe:85:62:20:71:14:6d:19:d3:da:d2:6c:53:20:bf:26:
a3:a3:96:27:05:3d:40:c9:01:8e:0e:a8:7a:82:78:7f:72:e8:
8f:d4:fe:12:b2:c6:c3:81:71:d1:e5:d8:28:c5:03:89:53:58:
af:1c:a8:ca:99:84:5b:ba:7a:0a:5c:3b:78:49:56:af:d1:46:
41:b3:42:fc:6c:36:d5:ad:4c:cc:25:8e:38:8f:d9:83:ab:54:
c7:5c:bb:1b:ed:10:3d:70:a5:2e:d3:93:b5:a8:1b:14:81:2f:
f0:a2:28:fb:fb:92:d2:f9:a4:6b:1f:6c:40:12:b1:bc:08:ed:
3b:f5:8f:0a:f7:df:be:18:3f:3e:5c:52:9b:a7:e0:c8:99:6b:
0b:60:eb:f5:70:08:79:09:8f:ac:85:8c:e8:f6:e6:b0:b0:76:
6b:d3:f4:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:34:38 2025 by rpki-client