Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/70F8023AC1B111EF9C8E8243762E951A.roa
File: 70F8023AC1B111EF9C8E8243762E951A.roa (raw, json)
Hash identifier: YmV3RCBNIviWMg1BBw1iYX2yx2jBS8tqd7exkB9QMGM=
Subject key identifier: 8A:3C:66:EE:2F:DD:FF:3E:3B:30:5A:36:58:7E:33:E2:91:5D:01:DD
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 012179
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/70F8023AC1B111EF9C8E8243762E951A.roa
Signing time: Tue 24 Dec 2024 04:42:12 +0000
ROA not before: Tue 24 Dec 2024 04:42:09 +0000
ROA not after: Wed 10 Dec 2025 04:42:09 +0000
asID: 984
IP address blocks: 154.193.102.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 74105 (0x12179)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 24 04:42:09 2024 GMT
Not After : Dec 10 04:42:09 2025 GMT
Subject: CN=676a3ba4-6202
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:21:47:18:7b:66:39:96:4d:0e:c1:d0:62:d4:
17:b4:bc:94:ac:a4:37:52:b2:a9:b4:15:73:ca:0d:
e7:61:1d:18:06:ec:53:1d:81:9b:e9:91:da:d8:02:
ad:ff:b1:7e:f0:7f:3d:67:13:66:cf:e2:4a:f6:0f:
21:66:62:d1:16:c3:f8:d1:ed:76:ba:a5:20:8b:85:
17:85:87:6a:36:bf:97:98:82:33:25:51:46:14:15:
75:3e:15:a4:cb:96:8d:78:17:fd:0c:ac:90:10:b6:
66:7a:58:d4:cb:25:63:73:28:e7:c7:9f:b8:46:90:
b3:93:fe:31:cb:b3:15:7d:c1:c4:7b:50:18:09:a7:
6e:df:3c:6e:76:ee:de:3f:69:d2:65:39:5c:77:70:
d1:ee:12:1a:55:bb:bc:6f:cf:d9:75:55:be:30:e5:
f1:f2:91:99:4e:cf:38:0c:00:8b:b4:cf:7f:b7:40:
7a:31:65:6c:59:3c:45:dd:f5:1d:61:d1:18:cd:79:
33:21:6a:82:fa:4e:86:19:53:f6:1e:0f:b4:ba:eb:
54:dd:67:df:3c:67:34:5a:a2:11:1c:8d:0f:0c:6e:
f2:22:0c:fe:46:d6:87:af:29:ef:be:31:20:e7:b0:
55:58:a8:ca:06:dc:cb:78:c3:cf:76:4a:4c:b5:b4:
1c:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:3C:66:EE:2F:DD:FF:3E:3B:30:5A:36:58:7E:33:E2:91:5D:01:DD
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/70F8023AC1B111EF9C8E8243762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.193.102.0/24
Signature Algorithm: sha256WithRSAEncryption
85:0d:9b:da:6a:77:c6:9a:7a:ca:fd:2e:78:5a:c3:fb:b3:e2:
a1:e5:65:97:d4:d4:29:b1:16:70:2f:64:ee:2e:38:8e:08:6d:
0e:b1:e2:a6:31:d9:67:1c:bf:66:d3:a5:9c:e2:84:73:ac:7e:
08:7f:a9:c5:f4:6b:ce:37:4a:46:ba:40:01:a9:09:6e:2d:53:
31:9a:14:64:84:c4:53:ab:c9:7f:6e:ec:cd:fc:b0:31:49:78:
05:b7:ca:a3:64:95:41:25:f5:af:0a:e3:3f:33:ac:24:72:d8:
1d:89:e7:c8:65:56:03:7f:e9:92:59:64:70:2f:5e:8b:55:1a:
47:52:47:b6:cf:4d:36:ae:21:b0:c3:a5:1a:07:55:b3:c8:b0:
82:3a:3b:35:2a:ac:23:0d:ee:ea:20:37:5a:8d:04:cf:76:00:
72:81:19:ed:51:8b:f3:09:d4:de:74:e0:72:5b:b5:db:ff:93:
bc:22:ba:0b:9a:51:61:93:21:fd:b7:d9:02:ea:24:8e:42:a7:
40:6e:d8:63:f8:11:72:14:db:68:b7:44:f5:9a:c7:38:c9:7d:
e4:1f:8d:d0:e0:31:92:7c:1c:58:6f:cd:d1:c5:f8:97:2b:ba:
b4:3a:0e:b4:74:84:a5:1d:35:fe:e7:e4:c4:c6:88:c3:44:63:
16:33:4f:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:56:28 2025 by rpki-client