Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7C037026F62011EF9CF54FAF762E951A.roa
File: 7C037026F62011EF9CF54FAF762E951A.roa (raw, json)
Hash identifier: zdkClggKnXIZbziTcxF23jp50XiRYligKusRF5prLpE=
Subject key identifier: 8F:A9:A9:BD:E8:02:70:75:15:01:21:54:2A:A1:5E:69:C7:45:1C:81
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 016C77
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7C037026F62011EF9CF54FAF762E951A.roa
Signing time: Fri 28 Feb 2025 22:08:05 +0000
ROA not before: Fri 28 Feb 2025 22:08:02 +0000
ROA not after: Sat 19 Apr 2025 22:08:02 +0000
asID: 138915
IP address blocks: 154.90.56.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 93303 (0x16c77)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Feb 28 22:08:02 2025 GMT
Not After : Apr 19 22:08:02 2025 GMT
Subject: CN=67c233c5-33ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:e3:19:65:10:75:9c:17:64:a6:be:8d:55:a5:
c2:c8:45:19:d1:88:4e:c0:ac:20:53:00:3b:eb:ec:
2d:93:d6:9c:ff:34:a8:af:06:ab:e9:b2:2a:cc:29:
7c:73:97:3b:c9:22:90:d9:f4:46:a8:3b:8e:ae:dd:
f8:38:cd:05:a1:50:db:31:6c:8b:0f:39:2c:26:af:
17:03:c0:f5:86:8b:fa:d5:f3:ae:38:18:6e:84:e2:
c1:83:44:9a:9e:89:75:d8:08:3c:90:bf:95:c2:7b:
27:85:fb:b1:99:99:42:a8:90:7e:d5:20:eb:a1:5c:
bc:c4:e7:f5:0c:05:23:2d:18:eb:a6:09:fc:10:d6:
fb:b0:f6:6d:25:c3:b2:58:97:7b:a0:f3:f9:7d:5b:
14:77:bc:a7:a1:97:9c:ce:c4:60:4d:c0:d0:be:9f:
7f:35:d9:ae:34:c4:fc:63:f1:40:5c:07:82:2c:53:
9e:4b:2a:0c:fa:12:98:80:a0:6e:f4:7c:40:18:3a:
f8:6f:6d:78:3b:fb:3f:95:5a:dd:9a:b1:8c:87:23:
c6:54:10:4d:0c:9d:a8:ed:54:13:64:4b:98:dd:e4:
78:2b:f0:94:6c:0a:88:d9:4f:8d:8c:33:01:c0:b7:
2a:95:44:19:4c:d3:70:9b:17:6c:03:d6:b6:4e:d7:
3a:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:A9:A9:BD:E8:02:70:75:15:01:21:54:2A:A1:5E:69:C7:45:1C:81
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7C037026F62011EF9CF54FAF762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.90.56.0/23
Signature Algorithm: sha256WithRSAEncryption
20:50:06:39:ed:3a:32:6c:be:6a:f7:bf:cf:04:6c:96:29:da:
c4:11:f2:36:24:69:4e:e4:62:2d:f4:82:1f:37:02:c9:83:18:
ea:ac:f1:6a:e5:72:62:8c:2e:54:60:f4:34:4d:80:bb:ea:8f:
55:1c:01:05:26:47:ba:2f:69:80:16:ee:51:4d:b9:9d:4c:f9:
b8:a6:c1:33:03:b7:fb:0d:a2:d7:aa:61:c7:fc:ef:fc:a1:4a:
65:c3:24:b8:43:c9:e2:f1:78:c5:a8:98:ef:c3:bd:b9:3d:d9:
11:b5:1e:c7:48:d1:13:56:a7:75:e2:a8:5d:4c:2a:28:39:99:
5a:d3:c2:60:62:c3:df:14:75:bd:01:26:d8:0e:0f:16:61:9d:
6f:bd:b2:c7:4b:ee:27:04:aa:19:9b:b2:22:ba:24:45:e0:3b:
7c:d8:fb:63:03:47:68:54:ff:53:80:33:9e:3d:16:89:f6:de:
86:e9:3a:aa:2f:01:57:26:0f:55:e7:ac:8b:c9:cc:d3:94:7c:
ae:f5:de:44:23:97:b2:f1:5a:37:5b:5a:72:8d:f8:2e:e6:d9:
09:38:c7:69:78:2a:a0:d3:0a:f2:61:30:4c:24:31:e9:82:7f:
db:e4:23:55:fb:43:18:86:95:b1:e6:f7:82:b6:67:dd:dd:c0:
ec:02:c4:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:52:43 2025 by rpki-client