Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/63522FFEC60A11EF9E6D6E66762E951A.roa
File: 63522FFEC60A11EF9E6D6E66762E951A.roa (raw, json)
Hash identifier: C/3LW6It9sCMSDX6dCq4Mce9c1epf3tSFzWuelgM3hE=
Subject key identifier: 08:C0:8A:45:A0:BE:3A:5C:1B:36:C0:B2:E6:93:3E:E0:D5:F2:24:2D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 012EAE
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/63522FFEC60A11EF9E6D6E66762E951A.roa
Signing time: Sun 29 Dec 2024 17:28:59 +0000
ROA not before: Sun 29 Dec 2024 17:28:55 +0000
ROA not after: Sun 12 Dec 2027 17:28:55 +0000
asID: 17561
IP address blocks: 154.217.58.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 77486 (0x12eae)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 29 17:28:55 2024 GMT
Not After : Dec 12 17:28:55 2027 GMT
Subject: CN=677186db-f3ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:cb:21:36:6e:69:a2:f5:85:bb:d3:8f:a0:0c:
5c:48:dc:07:1e:70:c3:9e:e6:cd:81:70:58:36:45:
1b:3f:49:52:8e:33:55:3d:2b:0a:87:0c:f8:2b:5e:
cf:98:ff:5f:97:d4:cd:a2:88:9f:ed:9c:4d:be:9c:
05:9d:f2:74:9c:75:c4:68:5d:76:1e:68:a6:98:d9:
52:3b:6b:4a:68:ef:87:b9:9c:f7:17:51:b6:4b:d8:
0a:07:76:08:04:28:39:6f:64:0a:2d:cd:24:a0:f5:
2c:06:4a:ff:92:6d:7d:3b:2c:57:08:6f:ab:3b:c8:
a6:3f:3c:d0:37:af:15:d9:be:83:b3:80:bb:f2:8b:
3b:86:04:95:08:6c:5a:1c:f1:31:11:01:51:ba:b5:
1a:97:d8:13:d8:44:cb:b0:c1:5d:17:21:60:df:cc:
57:a2:9c:cc:5d:71:b7:be:f0:7d:97:8c:5b:52:91:
00:07:58:84:8b:a1:25:34:43:5e:4b:b9:f7:48:fd:
a1:cd:8a:33:c5:94:5d:57:b7:49:52:d9:87:96:2c:
c1:68:b1:89:5d:a4:f1:4d:71:e2:13:dd:29:15:5a:
43:67:42:e9:49:5c:cd:a9:bc:72:b3:ee:65:28:6a:
62:88:3c:43:c3:a4:71:5d:59:14:39:d3:20:d1:c0:
e2:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:C0:8A:45:A0:BE:3A:5C:1B:36:C0:B2:E6:93:3E:E0:D5:F2:24:2D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/63522FFEC60A11EF9E6D6E66762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.217.58.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:0a:d8:da:09:eb:95:13:f3:d4:dc:64:69:67:a0:b4:35:7e:
77:81:6c:a2:72:0a:24:7d:a2:8f:97:f5:d0:91:61:55:72:52:
a0:a0:ee:01:a6:78:06:94:63:21:5b:fd:bb:67:a8:95:b8:5f:
ff:76:e1:9b:04:c9:78:f4:6f:ca:79:af:43:ad:1e:a7:3a:11:
04:3b:68:5e:d6:d9:05:f9:7b:4f:ad:bd:40:74:7e:28:19:73:
21:a4:49:7a:e1:1c:f9:2c:fb:0e:21:76:22:de:4f:08:b0:a8:
14:82:f2:fd:61:b5:62:d2:33:83:99:ba:ff:f8:12:76:04:e3:
6f:0e:02:5a:97:04:60:d2:33:ca:c2:00:64:28:68:df:fa:c8:
bf:ed:aa:e3:7a:c4:f0:7d:29:c2:0f:63:50:a0:fe:3e:bd:38:
8b:95:d1:be:f8:04:fb:85:c2:b1:8d:55:41:ad:bb:bb:e4:a4:
6b:6a:7e:20:95:d3:fe:30:7c:40:12:2c:d7:68:35:69:c2:ca:
c5:2c:9a:67:47:e2:1b:54:85:3a:58:c5:56:ef:a4:7b:ac:22:
b2:d5:28:e0:72:bd:56:d5:7a:d3:3e:ce:10:aa:31:fb:4a:57:
1a:f1:3e:c8:04:dd:db:a2:44:4c:4d:5a:dd:21:9f:3e:6a:56:
d0:7c:ae:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:52:57 2025 by rpki-client