Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/67DF9214C62311EFA7825D83762E951A.roa
File: 67DF9214C62311EFA7825D83762E951A.roa (raw, json)
Hash identifier: y32fu/1L0Vl/2kOSQS9q8BIsx0SR5yyujbkEGWvFUZM=
Subject key identifier: 04:81:5B:7A:64:29:65:33:27:11:DF:9D:FC:2D:CB:C4:61:D8:D5:8B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 012F80
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/67DF9214C62311EFA7825D83762E951A.roa
Signing time: Sun 29 Dec 2024 20:28:04 +0000
ROA not before: Sun 29 Dec 2024 20:28:00 +0000
ROA not after: Sun 12 Dec 2027 20:28:00 +0000
asID: 17561
IP address blocks: 154.217.163.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 77696 (0x12f80)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 29 20:28:00 2024 GMT
Not After : Dec 12 20:28:00 2027 GMT
Subject: CN=6771b0d4-bad7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:53:a8:cd:56:be:e7:1c:01:9f:a8:1c:1f:4f:
5a:3f:06:2f:88:d9:e1:ae:84:94:97:ad:78:17:bd:
6d:d5:79:dd:c2:d8:c4:ec:0f:a8:c3:45:26:36:b8:
22:cd:ee:5c:9c:ee:47:54:36:54:24:b5:24:8b:1b:
01:25:42:bc:87:7f:13:e8:53:65:5d:a5:2a:77:6d:
13:a1:d4:d7:7a:c9:d6:2b:17:26:d2:00:56:65:89:
47:66:4c:00:f2:d8:87:1f:f5:8f:09:2f:a7:f4:f5:
c0:36:06:eb:2e:3a:ec:1d:09:a5:7a:ab:89:11:2c:
00:05:68:18:41:bb:b3:5a:a5:3c:c2:83:3c:a9:d4:
a0:f1:60:9f:6c:68:0b:96:af:d9:30:07:c8:84:71:
62:ab:b3:05:6d:9a:b6:f6:c4:2c:f1:72:55:8e:77:
d8:37:c9:5d:2a:73:b0:22:cc:b7:77:9c:17:c5:6a:
c0:3a:89:e8:b9:c2:c7:bc:99:07:88:15:b1:87:4b:
e7:78:54:a7:9c:5e:29:5b:6f:e4:1a:1d:39:b2:32:
3f:8a:c6:04:73:ce:5d:eb:72:05:b1:99:39:fb:53:
7f:fb:79:0f:bc:09:f0:1a:0d:3a:e1:a3:22:79:31:
8e:34:62:6c:5c:21:90:b3:8d:3f:60:9a:fa:21:a9:
5b:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:81:5B:7A:64:29:65:33:27:11:DF:9D:FC:2D:CB:C4:61:D8:D5:8B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/67DF9214C62311EFA7825D83762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.217.163.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:66:07:26:f1:0b:1a:bc:1b:67:fd:6c:f8:94:b5:1e:ec:cf:
cb:99:df:2e:34:87:18:73:13:dd:66:b2:b2:a1:27:17:0f:54:
e1:70:41:35:f9:e3:08:49:5f:d2:17:67:17:d6:0c:08:a2:57:
38:61:dc:e7:8e:fa:00:d7:f7:e4:28:76:c4:2f:8b:c4:93:ef:
ea:5e:14:c1:07:e6:b7:5e:2d:9e:08:76:e6:39:2f:e8:c2:22:
6a:d4:a5:ea:f8:0b:a6:80:4c:ee:8b:5e:87:61:3d:11:c9:d0:
84:25:35:fe:d6:ea:f3:25:3a:26:43:34:f9:95:4c:fc:11:d3:
cb:0d:a7:6a:ec:35:03:7b:ba:eb:e9:e3:44:82:bd:9c:9c:20:
40:ce:82:63:5c:91:ee:28:97:fd:3a:67:d1:ea:b2:16:69:62:
ce:78:f2:3e:58:e8:81:56:02:5f:0d:ba:7c:31:32:13:82:39:
a1:35:4d:b5:a3:a3:da:4a:4a:c0:a5:dd:39:d9:6b:ac:ae:a8:
c4:ad:1f:36:53:7a:45:b7:60:02:2d:91:5f:7f:40:df:71:07:
8d:06:41:14:2b:64:6b:51:21:23:a0:e1:92:63:32:e2:5f:86:
5d:20:b4:30:cb:ed:c6:eb:5a:ba:1b:28:89:76:68:19:c2:11:
f9:f4:92:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 00:17:54 2025 by rpki-client