Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7648B6C6C1D911EF99376BBD762E951A.roa
File: 7648B6C6C1D911EF99376BBD762E951A.roa (raw, json)
Hash identifier: PHeFkpN6BLWiRioP/BNx0B4wk4vonXlN6XeGi0Otk1E=
Subject key identifier: 86:D4:DA:74:42:80:00:7E:BC:D2:E7:6D:AD:5B:43:D2:54:0B:79:91
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0122EF
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7648B6C6C1D911EF99376BBD762E951A.roa
Signing time: Tue 24 Dec 2024 09:28:41 +0000
ROA not before: Tue 24 Dec 2024 09:28:37 +0000
ROA not after: Wed 10 Dec 2025 09:28:37 +0000
asID: 984
IP address blocks: 154.194.236.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 74479 (0x122ef)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 24 09:28:37 2024 GMT
Not After : Dec 10 09:28:37 2025 GMT
Subject: CN=676a7ec9-7087
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:ab:7f:db:62:54:d0:b0:3b:ac:22:0e:f7:8a:
46:3e:80:1f:1d:89:4b:57:f2:67:9a:75:3b:a4:b3:
c9:f4:45:cd:20:3b:79:9c:23:53:a1:7e:e5:88:fa:
67:a8:d7:72:9a:af:a1:c1:60:cd:01:91:ba:dc:cd:
a9:dd:c7:7e:17:55:72:22:68:e8:8d:23:03:33:ac:
6c:3d:e3:8f:c4:c9:27:54:fd:b8:2d:ac:b7:d4:52:
aa:0a:ed:61:59:18:06:81:9c:f1:51:19:1a:fe:7c:
02:71:b3:c9:0c:1b:17:77:e3:60:87:b8:32:eb:32:
6c:3b:3e:25:4e:47:a5:74:14:f7:d8:8e:cd:dd:09:
06:06:18:05:c9:33:0b:4d:93:1b:82:61:82:51:55:
23:4d:d5:80:c2:09:7b:d6:56:8e:43:d2:fe:87:5f:
da:46:ad:f5:fd:89:97:1d:e0:91:56:60:b1:5d:12:
41:93:94:a0:cd:28:bb:6d:0b:5a:47:cb:1e:c9:1f:
58:1d:7b:6c:f2:81:c3:96:9d:20:f0:d8:31:7e:4a:
7b:e0:8e:3c:34:6a:10:3e:97:fc:80:7e:4d:b9:ae:
11:2f:dc:1c:86:0c:ad:73:35:20:46:67:8d:4b:3f:
99:2d:9e:f0:96:63:ca:c2:41:59:fa:47:ce:2b:19:
4a:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:D4:DA:74:42:80:00:7E:BC:D2:E7:6D:AD:5B:43:D2:54:0B:79:91
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7648B6C6C1D911EF99376BBD762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.236.0/24
Signature Algorithm: sha256WithRSAEncryption
11:31:8f:17:51:09:6f:a5:37:1b:60:34:df:62:8a:62:5b:99:
20:5c:55:03:7b:59:de:a0:df:be:57:18:e3:9c:24:64:a0:1d:
f4:82:a5:cd:77:9e:71:03:7f:bf:13:c5:2c:05:f8:82:4b:ed:
cf:e8:1d:9f:6c:9f:9e:18:b5:73:82:4a:0e:d6:44:66:d9:ea:
a2:84:d6:77:2f:c2:90:86:74:24:70:45:10:07:fa:a3:3e:5d:
87:61:98:01:8b:6a:d9:99:55:55:67:bb:40:3a:1f:1d:df:24:
1b:64:13:59:ff:ba:85:17:28:ea:72:75:aa:e7:a7:f2:93:d9:
1b:cb:d1:38:50:14:5e:84:24:b9:f8:f7:21:03:75:47:70:4c:
90:e4:87:c3:44:fb:5a:bc:c4:22:d0:7b:54:6c:92:f1:b0:3e:
a2:61:4f:f0:26:d6:29:f3:ad:7e:3e:17:7b:1a:5a:ad:00:a0:
d7:b1:ef:87:e5:a1:53:c0:6e:96:c3:1d:92:85:5d:2f:9d:78:
25:42:b2:86:e6:ac:6e:de:9b:bc:d7:04:4f:bf:e6:ab:01:25:
1d:34:d9:c3:82:e0:8a:51:0e:aa:ce:f0:e7:c0:99:ea:5f:e1:
2b:d9:3e:ee:93:f2:25:64:1e:ce:a6:69:16:84:05:45:a2:bd:
9d:28:64:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 11:00:17 2025 by rpki-client