Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/791063DAC8BF11EF9550D3AC762E951A.roa
File: 791063DAC8BF11EF9550D3AC762E951A.roa (raw, json)
Hash identifier: XAkvjlURw+ZicrxJnnFv1vxou7CQSFhKPQqmwFXkt1c=
Subject key identifier: C9:E5:8D:37:D6:5F:E3:22:00:27:06:A3:49:06:50:8B:89:88:0D:51
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0131F4
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/791063DAC8BF11EF9550D3AC762E951A.roa
Signing time: Thu 02 Jan 2025 04:10:17 +0000
ROA not before: Thu 02 Jan 2025 04:10:13 +0000
ROA not after: Sat 13 Dec 2025 04:10:13 +0000
asID: 984
IP address blocks: 154.221.200.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 78324 (0x131f4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Jan 2 04:10:13 2025 GMT
Not After : Dec 13 04:10:13 2025 GMT
Subject: CN=677611a9-a80f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:db:ff:e9:05:f2:73:1a:f0:17:5d:70:be:4d:
bb:c2:27:1e:fc:86:23:de:4d:af:d7:28:2e:46:d1:
fd:09:ee:40:d7:8a:21:23:20:33:45:81:67:91:3e:
e8:3b:46:8e:c4:81:a0:17:1e:21:4d:21:f3:9e:38:
17:4b:01:6c:84:e4:94:1c:9a:61:3d:5c:1a:2f:f0:
8c:69:d5:45:0f:01:47:be:5c:d5:05:e3:3d:fe:34:
39:08:de:b2:85:10:74:05:68:86:2e:ea:4c:18:49:
82:47:bb:43:15:09:8e:19:fb:9c:5e:13:8b:8a:11:
e8:7a:87:9c:75:df:18:5c:5b:83:64:a8:68:ef:af:
17:e3:5e:17:6b:dc:ea:ef:6f:01:a7:12:64:8a:3e:
2f:55:99:ed:0f:32:3e:b0:ac:fe:35:73:cd:a2:a6:
89:93:5e:86:4c:2b:9f:94:6d:f5:c3:7e:c9:86:93:
46:e6:3e:d2:81:5a:b9:92:cb:00:cb:6c:db:4e:c4:
ad:c3:6a:19:a8:af:07:0a:f6:62:0a:0d:03:2d:06:
9f:cf:d5:e9:7d:25:5d:32:16:d9:67:47:1d:98:76:
53:70:0c:27:ba:46:05:aa:d4:be:a4:48:0a:ea:e5:
4b:7f:d2:7b:15:6f:0d:6b:f8:b9:c8:f7:49:72:94:
7b:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:E5:8D:37:D6:5F:E3:22:00:27:06:A3:49:06:50:8B:89:88:0D:51
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/791063DAC8BF11EF9550D3AC762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.221.200.0/24
Signature Algorithm: sha256WithRSAEncryption
ae:10:74:d1:70:61:77:29:ab:24:7d:cc:18:4a:53:87:e7:57:
d1:bb:e9:4e:85:3b:8d:a5:d6:d5:16:3a:d5:bf:e6:20:c1:98:
cf:93:fb:19:b2:22:69:72:e8:1d:fa:e4:a8:42:1c:7a:a2:c8:
c8:53:87:d6:9e:ca:e5:10:48:72:6e:8c:03:67:c6:3a:51:1c:
e4:ef:a0:88:87:05:46:36:ab:9c:6b:08:90:7f:70:5b:e0:53:
57:ae:a5:51:70:e8:85:74:ad:b2:00:20:d2:0e:bf:ac:15:5d:
11:9e:de:cf:96:13:d5:6d:7c:99:15:41:37:42:fb:98:03:3e:
51:ec:2b:f1:ac:9e:09:da:ce:84:99:51:cb:de:e6:3b:3f:20:
3b:89:6f:d2:d6:ef:0a:26:c8:9c:52:93:f5:d0:38:20:26:1a:
34:c7:65:d7:c0:b0:b5:18:d5:e4:53:45:4d:d8:9d:7f:f9:16:
b8:c1:24:f6:10:78:ae:9e:14:85:a2:d7:14:74:4e:3a:9e:13:
ec:09:38:19:8b:68:71:79:5e:a2:3e:20:b4:46:1f:3f:ee:f5:
81:dc:01:f4:e6:32:1b:62:a8:d7:ff:1d:73:5c:55:05:9c:14:
4e:94:36:40:73:53:27:d4:6b:22:b2:1c:1b:2c:0b:7a:fa:f6:
a4:78:07:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 20:20:58 2025 by rpki-client