Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/79DF1DF0C62711EFBFFA2F9B762E951A.roa
File: 79DF1DF0C62711EFBFFA2F9B762E951A.roa (raw, json)
Hash identifier: unz+XmAvPOHS/e5JmJAZGjD9KLvRDaLkGHoL/8UD6ek=
Subject key identifier: 1C:7D:83:4B:1B:B6:35:C1:DA:53:7F:69:44:28:7D:2C:36:68:3D:72
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 012FA2
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/79DF1DF0C62711EFBFFA2F9B762E951A.roa
Signing time: Sun 29 Dec 2024 20:57:12 +0000
ROA not before: Sun 29 Dec 2024 20:57:09 +0000
ROA not after: Sun 12 Dec 2027 20:57:09 +0000
asID: 17561
IP address blocks: 154.217.180.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 77730 (0x12fa2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 29 20:57:09 2024 GMT
Not After : Dec 12 20:57:09 2027 GMT
Subject: CN=6771b7a8-0290
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:b8:22:42:da:b5:b3:87:9b:34:16:ac:94:ee:
57:d6:4a:5a:6b:7a:a6:72:ca:f4:d1:3e:e0:02:7d:
56:07:e7:64:23:f7:b4:1d:87:4f:f3:66:46:04:b5:
e1:24:50:b4:c2:2b:c1:ab:22:e0:f4:b0:4c:35:07:
34:15:04:f7:3a:ce:9b:76:94:20:d3:18:cd:88:03:
75:53:0c:b2:3c:39:4f:c0:65:31:2a:d2:a3:a2:1d:
6d:7f:d5:b1:6f:23:8d:87:27:b9:cd:d5:59:66:87:
07:db:08:b3:5a:ff:97:da:41:b7:9a:c0:8f:61:27:
64:d8:29:e8:58:ba:a7:83:aa:f7:8c:4a:fb:46:fc:
e7:81:83:b7:2a:41:14:23:95:62:55:5e:be:8c:7c:
26:43:89:80:db:62:0d:ef:bf:05:4b:a0:0a:80:02:
bd:8f:df:ca:b2:89:ed:b4:48:35:75:11:d6:c6:a7:
07:08:fe:c3:aa:1c:73:c1:43:00:0e:68:00:32:d9:
32:08:d1:52:22:55:76:35:8c:94:0b:00:9e:1d:87:
29:7f:c7:35:7d:76:07:f1:01:cc:84:ea:51:9b:77:
dd:6d:aa:5f:08:71:79:83:a1:70:dd:0d:a0:12:57:
1e:54:32:ec:bc:5a:94:b8:49:c2:15:a4:29:36:31:
71:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:7D:83:4B:1B:B6:35:C1:DA:53:7F:69:44:28:7D:2C:36:68:3D:72
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/79DF1DF0C62711EFBFFA2F9B762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.217.180.0/24
Signature Algorithm: sha256WithRSAEncryption
41:86:cb:27:2c:75:b6:f4:fd:10:7f:a5:e4:66:3f:7d:b7:71:
b4:d5:46:38:2e:b0:c2:ce:ff:2a:7b:fc:22:d0:e4:c5:0e:8e:
0a:f6:f8:60:f5:b3:bc:63:99:1e:0a:a4:90:fa:88:c9:a7:5d:
7d:30:df:1e:60:e4:27:cb:23:ea:9e:70:45:2f:8d:e9:26:f4:
f7:29:3d:eb:3f:d2:a1:ab:b0:b1:91:a3:cc:65:56:27:bc:0d:
c8:d1:a6:ac:8f:12:c6:82:80:96:54:de:0c:19:41:01:3e:4e:
9e:8b:2c:1a:12:27:75:6e:47:bc:a1:29:15:20:d5:e8:23:60:
6f:20:67:3e:d0:03:f6:2f:d2:e1:97:0c:04:c8:e6:48:ff:4f:
a7:29:06:a3:05:fc:7a:65:15:a6:81:19:dc:bc:62:bb:09:ab:
df:97:c9:4b:cb:6e:bf:6b:86:fc:b7:08:b4:e6:c9:58:70:b6:
e4:88:d4:d8:7c:3b:4b:f3:c9:4e:ae:9f:2f:43:45:88:b0:48:
87:30:a9:39:e2:b4:ea:a0:90:4b:0b:80:76:b5:bc:be:fd:02:
73:ec:c7:00:00:93:77:80:97:fb:a1:31:68:94:bc:86:f6:9d:
54:66:d6:06:c2:03:40:ea:5a:74:20:31:63:c0:22:e9:dd:d0:
e4:74:61:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 02:05:17 2025 by rpki-client