Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/71019820C5E111EFBAE1A966762E951A.roa
File: 71019820C5E111EFBAE1A966762E951A.roa (raw, json)
Hash identifier: JzBahoYI5Xxu5sBxdMRJOCWJcH5+/X001IEmx1sZpg4=
Subject key identifier: C7:A0:1A:13:21:2E:68:99:8C:33:B7:20:44:99:FD:FC:91:2D:D4:5B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 012D52
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/71019820C5E111EFBAE1A966762E951A.roa
Signing time: Sun 29 Dec 2024 12:35:53 +0000
ROA not before: Sun 29 Dec 2024 12:35:49 +0000
ROA not after: Sun 12 Dec 2027 12:35:49 +0000
asID: 17561
IP address blocks: 154.210.107.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 77138 (0x12d52)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 29 12:35:49 2024 GMT
Not After : Dec 12 12:35:49 2027 GMT
Subject: CN=67714229-2772
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:52:34:a7:49:c1:ac:5b:6b:c8:59:86:11:ce:
3e:00:df:40:5e:48:86:81:16:4b:be:64:22:a8:75:
0b:de:21:b1:76:d0:47:3c:b7:24:11:94:67:0f:ba:
26:99:7b:d7:55:7e:ba:65:bf:2b:f8:25:4d:43:9d:
24:51:75:33:26:ff:46:23:a5:28:19:b1:9a:9c:34:
d1:a3:c8:32:61:ff:a2:fb:e4:cb:2e:fc:98:99:fe:
1d:a6:df:b4:c1:6c:15:32:7b:b0:36:fb:83:f5:e0:
18:fd:80:36:67:eb:88:6f:bd:86:0e:a3:a5:83:a6:
d5:72:5f:c2:fc:e0:ad:70:d2:f6:39:66:4b:d8:9c:
e5:41:36:c5:50:19:11:62:e1:80:82:fb:9e:dc:de:
5e:94:75:5c:10:ea:29:32:25:00:75:c7:3c:83:3a:
95:ff:26:70:fb:88:9a:c8:f3:ce:83:7e:23:a7:0d:
4b:9c:96:e0:dd:06:f9:7e:0d:1c:21:15:10:94:e2:
70:f3:41:bd:4e:77:cf:44:00:08:51:df:01:d3:b0:
75:d7:18:f3:b3:ad:cc:21:ec:90:23:35:a5:72:26:
45:bb:c3:36:dd:db:39:56:80:95:00:cb:85:ab:ad:
49:43:8e:d6:39:cb:7a:86:1a:b9:67:23:69:60:c0:
ec:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:A0:1A:13:21:2E:68:99:8C:33:B7:20:44:99:FD:FC:91:2D:D4:5B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/71019820C5E111EFBAE1A966762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.210.107.0/24
Signature Algorithm: sha256WithRSAEncryption
9e:81:aa:90:d9:8a:12:1c:81:60:8c:93:33:cf:6a:22:03:f9:
db:fd:77:27:68:08:94:27:2c:f4:3c:52:4d:c5:64:ec:a2:08:
b7:63:6d:d4:e9:a9:30:4a:dc:31:7d:4f:ab:8e:f2:98:b9:01:
b3:03:71:77:48:15:d6:51:f3:50:8d:8f:f0:98:ee:28:dc:04:
f5:7e:5c:62:4c:4c:2c:9a:0c:09:ed:28:84:de:5b:63:23:2d:
4e:88:f1:ea:a8:b3:7f:6f:04:e2:9d:92:ae:49:37:9b:0d:8d:
f2:92:f1:a8:c0:41:26:04:a2:01:17:5d:6b:85:ba:13:98:c7:
c6:77:f8:b6:dd:92:24:8c:b0:2b:e3:5d:b4:79:47:b5:fe:9f:
13:02:8e:65:75:b8:c0:0b:fb:6e:de:7d:d5:30:3c:77:0d:33:
98:62:72:71:d4:90:48:9b:ee:05:6f:1e:fb:7e:84:46:5b:c4:
14:19:fd:26:72:17:94:98:c8:e1:f8:9c:07:9c:1d:57:ff:27:
1f:f8:e1:ee:b8:d5:d4:33:11:14:7a:f2:83:2b:92:3b:6b:2c:
6b:fc:2c:87:82:c9:bc:94:82:53:1c:49:01:43:e6:eb:9c:7d:
05:00:08:a3:b2:14:19:b2:80:c1:0d:d9:69:e0:30:fa:f6:44:
69:9a:a5:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 20:23:20 2025 by rpki-client