Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6BF675DCC3C311EFA220AD6F762E951A.roa
File: 6BF675DCC3C311EFA220AD6F762E951A.roa (raw, json)
Hash identifier: 25tF9BRc8xmjAPg3l2448LG0yAdOGYsJkmb90BuTJes=
Subject key identifier: F7:77:59:82:09:43:94:A8:3B:9D:62:80:82:75:A7:B8:C9:7B:A7:AB
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0127B6
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6BF675DCC3C311EFA220AD6F762E951A.roa
Signing time: Thu 26 Dec 2024 19:55:57 +0000
ROA not before: Thu 26 Dec 2024 19:55:53 +0000
ROA not after: Fri 12 Dec 2025 19:55:53 +0000
asID: 984
IP address blocks: 154.81.223.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 75702 (0x127b6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 26 19:55:53 2024 GMT
Not After : Dec 12 19:55:53 2025 GMT
Subject: CN=676db4cd-313d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:ae:32:f1:f0:6b:0e:86:59:4d:42:62:e3:73:
2c:d4:87:fd:40:16:5d:29:35:43:99:45:f1:9d:23:
10:20:f9:5c:6b:73:7c:89:1d:3c:d2:b3:b0:6a:1c:
23:99:f3:63:74:71:25:f7:d3:94:be:b9:92:86:59:
1b:82:40:1b:13:85:5c:a3:b8:01:68:e2:8a:1e:22:
00:2a:54:e9:34:0e:d4:e4:88:5c:13:8f:53:bb:8e:
70:7e:06:b3:ce:c2:4a:28:59:de:24:e1:f7:de:fb:
14:9c:52:af:4f:c0:d0:bb:63:11:73:3c:8d:e8:d4:
6c:2c:19:42:9c:99:74:2e:a3:fd:03:58:82:76:06:
39:ef:ba:5b:80:ff:f9:87:2a:bd:6a:a3:2c:55:14:
aa:de:9e:11:db:0a:3c:c8:39:84:0b:ae:aa:83:1c:
53:bc:c4:2d:e3:dc:a5:95:6f:fe:03:9b:2f:09:47:
f5:59:c9:36:69:94:ae:4e:9a:87:22:ab:38:a2:5c:
bb:50:87:ca:65:91:1b:a4:05:71:4f:66:b5:38:4d:
8b:7b:86:5e:63:20:1c:08:76:db:d3:b6:86:c2:b8:
eb:f9:01:17:03:8b:dd:7b:27:2c:8b:ee:2d:a4:e3:
7d:dd:08:d9:8e:fe:b1:52:b5:62:ca:2a:0a:41:4e:
26:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:77:59:82:09:43:94:A8:3B:9D:62:80:82:75:A7:B8:C9:7B:A7:AB
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6BF675DCC3C311EFA220AD6F762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.81.223.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:1a:18:16:40:68:80:9d:79:08:ec:d8:47:b4:f7:a5:a3:08:
28:f2:ee:42:49:dc:d5:7a:e0:d0:e5:57:ab:01:9d:2f:1e:9e:
4f:8b:f9:20:56:36:67:c6:1a:fd:85:9a:68:b0:ac:3a:b0:79:
1d:83:49:a4:e9:a7:6e:2b:9b:90:41:90:fc:df:dc:b6:85:e0:
61:ce:8c:4c:71:6d:aa:c4:fc:14:7c:e5:d8:29:2b:da:e3:d2:
32:5a:7e:ce:ac:ed:bf:11:bf:46:42:cf:50:fb:62:de:1b:bd:
34:f2:8d:70:5e:a8:de:5f:e4:0c:10:8e:6d:20:f8:27:80:4f:
f6:d7:40:ff:9d:5e:14:79:67:66:3b:4c:7e:5b:85:b6:5a:30:
55:40:f7:39:eb:6f:02:39:07:48:78:86:ac:c2:dc:83:24:25:
43:36:67:d3:7e:ba:e7:91:49:5e:c5:20:b6:74:9f:b2:8b:b9:
ac:47:e7:b7:ac:f2:31:b4:ae:9a:51:1f:3d:0b:09:35:e2:94:
fc:71:e4:92:1b:01:ac:99:4e:2c:1d:68:f2:19:96:f8:8e:87:
e8:5a:98:85:eb:71:f7:ee:a8:fe:61:e5:dd:87:6a:46:43:4c:
b1:f5:0e:a8:c4:31:da:b9:d4:82:46:3d:de:17:6f:7c:f4:d3:
0e:b1:20:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 16:44:11 2025 by rpki-client