Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5FDB0A22F81311EFADD36477762E951A.roa
File: 5FDB0A22F81311EFADD36477762E951A.roa (raw, json)
Hash identifier: tAfrTz3f9za5FsaphkoRZ4gKq2LnZNKMnGZ6p3azQoc=
Subject key identifier: EC:5E:92:CE:8D:5C:7F:A2:14:60:9F:54:CF:4D:04:87:94:1D:CE:30
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 016FC8
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5FDB0A22F81311EFADD36477762E951A.roa
Signing time: Mon 03 Mar 2025 09:39:17 +0000
ROA not before: Mon 03 Mar 2025 09:39:13 +0000
ROA not after: Wed 30 Apr 2025 09:39:13 +0000
asID: 63139
IP address blocks: 154.94.111.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 94152 (0x16fc8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Mar 3 09:39:13 2025 GMT
Not After : Apr 30 09:39:13 2025 GMT
Subject: CN=67c578c5-84b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:21:4f:de:e1:21:34:f9:db:90:9b:4d:86:c1:
8d:d6:ad:14:58:d5:5a:f3:49:9c:90:8a:88:c8:09:
ed:40:ca:e0:87:e6:b3:ae:d5:ca:9e:a7:73:5f:d6:
d4:fa:04:da:cc:6d:c6:de:47:4f:02:04:72:6c:05:
43:cf:17:53:40:00:b7:c1:fa:1b:72:94:4e:0f:cc:
88:9f:59:71:ce:69:bc:5d:e6:17:f1:de:11:02:3f:
2e:19:80:46:64:a2:71:cb:5a:e3:e9:cc:74:ba:18:
ce:ba:ed:69:56:92:81:5c:e2:fe:0d:27:73:0a:c8:
d3:cf:cb:c4:ad:20:ac:4c:91:ea:04:a9:cb:7f:1a:
35:a8:3d:27:03:6a:ec:47:f3:0b:5f:5c:b3:21:22:
0f:c0:3f:6d:51:ca:71:97:1e:10:f4:d7:ae:52:b0:
ea:e6:3d:08:08:13:1d:7e:a1:da:60:c3:99:b6:ea:
e9:0d:f1:62:08:17:41:c6:1d:d3:08:1d:29:dd:b9:
0d:01:50:68:e7:95:0c:2d:a5:a1:f3:8c:39:93:8a:
5d:62:d7:24:ed:f1:01:86:a5:9b:42:cb:a1:66:2b:
c5:59:39:b1:2c:15:b9:8e:40:0a:34:f1:88:f6:3e:
ee:11:4a:1b:58:d4:31:40:45:4b:41:a6:42:af:e4:
c9:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:5E:92:CE:8D:5C:7F:A2:14:60:9F:54:CF:4D:04:87:94:1D:CE:30
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5FDB0A22F81311EFADD36477762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.111.0/24
Signature Algorithm: sha256WithRSAEncryption
44:a9:02:57:d7:11:0d:75:b7:ee:c1:b0:5a:8a:b8:8f:ee:1a:
b7:5e:4e:65:6b:e8:d3:a7:99:69:6e:c6:a1:fc:3f:7b:22:95:
54:8d:c2:0b:f5:c5:b6:0d:63:3b:e0:e5:70:0d:db:d9:35:e1:
80:21:dc:63:31:e8:29:1c:6b:28:21:b4:16:38:8a:a0:e5:a0:
3e:e9:cd:dc:5c:ca:71:a8:d1:30:08:5c:53:be:79:f5:d4:d2:
60:c3:ad:92:a2:13:c3:89:4c:ea:84:5f:91:4f:98:13:1b:b0:
34:87:11:b0:9c:2d:9e:3c:5e:03:54:05:de:e3:86:c6:9c:c5:
aa:c7:cb:7d:50:ee:1c:48:66:ce:eb:65:1b:2d:ca:b5:b2:a7:
ce:42:fc:14:bf:6a:88:65:5f:7c:26:08:83:0a:00:f0:50:0c:
78:f5:84:45:9e:d0:1a:9b:d2:59:ec:5c:e9:86:0e:53:ec:b1:
5d:3a:26:7a:1e:bf:86:8a:47:4d:ee:da:50:c7:92:cd:b1:28:
8b:5d:8d:19:0f:55:b9:85:c3:96:7d:dd:0f:99:50:f5:cb:75:
09:35:9a:e7:5e:f6:3d:2f:1e:bf:d0:51:71:ce:e2:37:8c:9e:
57:82:83:45:69:3f:b8:c9:42:45:a4:21:86:c5:5c:2f:3c:57:
fa:08:56:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:53:01 2025 by rpki-client