Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5D8C64C2F3E111EF87557EA9762E951A.roa
File: 5D8C64C2F3E111EF87557EA9762E951A.roa (raw, json)
Hash identifier: CDrwZBogCukXGnNwts4LFH+mYJPEbxOjNYG3E6yTdT8=
Subject key identifier: 76:20:A8:C5:54:DA:99:18:05:41:4E:5A:C4:67:8E:B1:AA:71:12:66
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01605E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5D8C64C2F3E111EF87557EA9762E951A.roa
Signing time: Wed 26 Feb 2025 01:31:14 +0000
ROA not before: Wed 26 Feb 2025 01:31:09 +0000
ROA not after: Thu 19 Feb 2026 01:31:09 +0000
asID: 984
IP address blocks: 154.92.236.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 90206 (0x1605e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Feb 26 01:31:09 2025 GMT
Not After : Feb 19 01:31:09 2026 GMT
Subject: CN=67be6ee1-fd45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:5e:ed:b1:0f:09:7f:9c:47:44:f3:c8:98:28:
ad:ba:f6:5c:a0:87:4b:e8:af:09:81:28:5e:28:44:
94:3d:e7:3b:17:fd:fa:af:09:d0:44:30:f9:e5:f9:
c1:78:a8:ce:d2:3e:db:52:48:28:a1:0c:cf:25:c5:
05:92:b8:d5:32:04:f8:41:64:fc:db:88:78:c8:5d:
94:82:29:a6:bd:0c:e4:54:84:04:91:c9:20:34:00:
d2:de:89:bf:42:01:ae:33:3c:be:78:fe:ab:fe:db:
19:64:d4:fb:bb:80:5a:bd:cc:b4:53:35:9e:06:c6:
80:7a:22:83:11:6b:4e:23:17:80:70:ba:42:01:09:
0f:bb:bb:a0:34:e5:6b:81:7f:f7:1d:51:b0:fb:32:
cf:1a:cb:4c:91:b5:92:87:22:97:d1:ff:4d:cc:93:
36:6c:39:c0:b2:c6:b9:61:e9:76:5a:6c:a9:8e:a7:
f2:4a:93:6d:69:0e:00:fe:3f:6b:9d:42:fc:dd:9c:
71:1f:e6:cd:57:6f:cb:2b:89:17:82:be:6c:14:4b:
62:85:a4:14:7e:2e:f9:2b:2c:86:5f:4e:74:aa:76:
be:8a:86:19:aa:e5:c5:7c:ba:6d:91:d7:a5:5a:5e:
14:14:64:32:da:12:41:cf:12:84:ac:65:6c:65:6b:
cf:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:20:A8:C5:54:DA:99:18:05:41:4E:5A:C4:67:8E:B1:AA:71:12:66
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5D8C64C2F3E111EF87557EA9762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.92.236.0/24
Signature Algorithm: sha256WithRSAEncryption
30:43:cf:af:e4:68:5f:04:c9:e2:6a:e5:58:0c:c3:d5:e3:a9:
8e:35:3e:cd:32:2a:1c:9c:81:fe:74:8b:ef:bf:50:69:72:22:
9c:72:5d:aa:8c:d7:cd:dc:7a:d3:58:a3:5a:ee:a0:af:4a:36:
7b:f6:86:32:af:fd:8f:c9:a4:c3:d6:4e:1d:02:7d:f3:73:cf:
4e:a2:45:03:6f:79:61:27:42:ef:fb:32:4c:5c:b1:ec:8b:69:
b3:2b:ac:9d:32:bb:73:3d:77:1c:63:e5:79:83:5d:a4:95:d6:
06:7a:d1:54:ed:b7:87:cc:04:76:df:d5:66:27:6a:68:94:b3:
a1:da:ef:9c:5a:22:62:fd:a3:5b:66:c4:35:af:6f:39:a6:07:
fb:6f:1e:f4:14:54:07:e9:8f:8b:dc:25:b6:94:42:94:b5:bb:
3f:92:68:88:dd:89:24:ee:3f:1c:8b:22:4c:2e:5f:a0:3a:79:
c3:05:8b:c3:07:ea:a8:12:b0:62:73:92:fa:80:67:11:05:5a:
bb:87:3f:a4:e9:07:bd:59:9d:39:40:a4:0b:68:ea:da:1d:85:
95:0d:60:73:08:d7:9f:78:1f:a6:e8:2d:05:43:16:86:3a:5d:
4f:d5:d8:6a:77:ae:b6:5c:b7:1f:4f:6c:c0:0c:72:81:15:28:
f2:a4:90:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 20:23:33 2025 by rpki-client