Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/63D89704C5E911EF8A41C997762E951A.roa
File: 63D89704C5E911EF8A41C997762E951A.roa (raw, json)
Hash identifier: CGcQL7jLsNMPyItxxaFvpIWf+0obbe6/sxtTn8p8ohU=
Subject key identifier: 33:EC:0E:41:3C:C0:34:96:AE:DB:3F:39:49:90:1F:F4:50:19:A6:7A
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 012D96
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/63D89704C5E911EF8A41C997762E951A.roa
Signing time: Sun 29 Dec 2024 13:32:46 +0000
ROA not before: Sun 29 Dec 2024 13:32:43 +0000
ROA not after: Fri 12 Dec 2025 13:32:43 +0000
asID: 984
IP address blocks: 154.210.250.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 77206 (0x12d96)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 29 13:32:43 2024 GMT
Not After : Dec 12 13:32:43 2025 GMT
Subject: CN=67714f7e-5a33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:8b:ad:a5:b9:31:00:b2:02:4a:49:1b:c5:fa:
92:a1:ed:42:1b:68:2a:3d:a7:36:48:87:b2:30:1d:
b7:1c:4b:2e:bb:30:23:49:2a:7f:e8:49:25:00:6c:
98:25:6e:ce:c9:e9:03:df:c4:79:77:db:e4:28:20:
cc:6d:e6:34:fb:51:50:46:f1:1a:0b:50:a0:9e:e1:
05:7f:85:62:29:08:12:9b:43:7b:98:38:8a:3c:94:
ae:3e:d8:e1:b8:0e:f0:2e:8d:2e:75:46:e4:43:4a:
1a:d9:8c:14:95:bd:cc:46:54:1a:fe:c7:6a:e5:f0:
c1:c0:d1:26:74:af:7e:bf:4f:4f:c7:fe:74:92:4b:
a0:6e:e3:67:5b:75:65:7d:a9:23:80:32:96:b8:5b:
a3:f5:30:cc:9a:09:aa:60:11:53:48:a2:ab:57:83:
5a:8c:a0:6d:95:ef:2a:1c:4a:87:dd:96:61:43:2f:
bb:54:3b:aa:00:56:37:7b:04:84:d1:9c:c0:d8:5d:
fb:fa:71:ff:7e:f2:e4:04:11:be:e7:5b:74:ce:83:
83:53:db:9c:5b:e0:f3:94:ff:6b:76:62:d8:ec:06:
95:be:4e:f8:2a:4b:b0:dd:ef:c0:76:36:de:80:6b:
4c:5e:5f:71:28:2b:82:0d:dc:08:ca:3f:93:43:da:
a3:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:EC:0E:41:3C:C0:34:96:AE:DB:3F:39:49:90:1F:F4:50:19:A6:7A
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/63D89704C5E911EF8A41C997762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.210.250.0/24
Signature Algorithm: sha256WithRSAEncryption
c2:37:a5:b5:72:16:69:b9:c7:6f:fc:65:76:71:c7:5a:28:ce:
e4:b4:7f:03:b3:9c:ff:71:d5:2c:21:c6:1b:53:33:2a:4c:2e:
bd:33:dc:24:3d:f5:9c:f6:7a:30:74:55:85:af:4a:10:f1:00:
0d:64:85:94:02:47:60:b6:ee:f1:cb:df:9c:91:50:23:68:d1:
1c:93:e1:a1:41:d8:df:4c:40:32:d4:e6:2d:13:87:8f:89:01:
f7:df:bd:b5:1f:13:2e:98:90:ae:4b:8a:b1:3a:59:09:3e:6d:
ec:7a:f8:29:d7:3e:d1:51:f7:3e:10:88:29:6f:aa:b4:81:c2:
94:25:c5:f8:50:09:16:6e:77:ac:a2:70:11:da:63:40:df:c7:
41:25:77:19:1c:f1:d6:5c:16:dc:70:d3:20:79:7d:2d:ea:62:
f3:dd:a7:c0:0e:e0:ae:ac:7f:ff:d3:4f:0a:7b:c7:e4:57:61:
55:1a:51:32:f8:b7:fa:72:7e:06:bd:ff:60:ed:4f:3c:c4:d4:
73:f2:78:cd:cd:3c:a5:c5:4e:19:e1:30:a8:69:d1:94:9b:8c:
55:42:d3:52:fd:dc:30:5a:cb:57:7e:2f:62:a7:6b:23:ed:e4:
c8:fc:e7:a6:9d:1c:b0:16:b2:84:82:70:e9:eb:f1:80:9e:34:
f2:e5:07:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:33:59 2025 by rpki-client