Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7E1156B0F41F11EFBE162360762E951A.roa
File: 7E1156B0F41F11EFBE162360762E951A.roa (raw, json)
Hash identifier: Rqb0TAfVrzJUh6+MmUSZsjuG+MwF2nyXuDH6JvoALF8=
Subject key identifier: 25:2E:26:1B:21:32:A0:64:12:B6:F0:2D:82:2D:A2:50:DB:48:D2:90
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 016183
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7E1156B0F41F11EFBE162360762E951A.roa
Signing time: Wed 26 Feb 2025 08:55:57 +0000
ROA not before: Wed 26 Feb 2025 08:55:53 +0000
ROA not after: Thu 19 Feb 2026 08:55:53 +0000
asID: 984
IP address blocks: 154.206.222.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 90499 (0x16183)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Feb 26 08:55:53 2025 GMT
Not After : Feb 19 08:55:53 2026 GMT
Subject: CN=67bed71d-a6c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:dd:e8:d9:22:d5:c9:e6:ad:cd:be:f4:e9:3c:
33:b3:ad:bb:50:88:86:52:9f:9b:9c:7a:f7:63:bc:
93:c7:75:23:3e:65:fb:bc:6d:16:9f:9c:3c:1f:f9:
ca:df:9d:12:b4:be:28:8d:96:cf:a7:ca:a3:94:9a:
98:dd:a0:c3:ae:23:87:94:57:da:e2:0a:b2:aa:41:
3a:26:ed:9c:53:32:9e:90:9e:06:6b:5e:9c:f2:c7:
fc:4c:03:7c:8f:43:af:d4:cf:80:ca:97:52:07:d4:
9f:d7:3f:2a:de:c1:28:42:7d:c3:2e:23:4a:5b:8e:
6d:33:42:aa:0e:e9:28:a9:5e:7d:37:a1:13:38:26:
3c:28:41:5e:5a:30:4a:04:d6:25:2e:35:fd:ae:ec:
9b:1d:39:50:19:03:aa:dc:f0:a8:ed:d5:58:ca:df:
f8:16:80:cb:c0:01:51:7d:8b:d8:b8:43:54:7e:d7:
9e:b9:c7:ee:d8:cd:4e:70:a9:28:2c:7e:33:8b:39:
2a:c0:59:97:7a:72:a6:40:57:94:fa:e5:2c:8a:91:
bb:10:b0:ff:47:3f:82:ab:61:f9:d7:e7:fc:98:2c:
ee:a7:30:04:f6:7d:2b:c6:ea:f7:de:af:93:a5:95:
ee:ac:ac:26:a8:ff:d7:f0:0a:ff:df:4b:e1:53:15:
09:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:2E:26:1B:21:32:A0:64:12:B6:F0:2D:82:2D:A2:50:DB:48:D2:90
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7E1156B0F41F11EFBE162360762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.222.0/24
Signature Algorithm: sha256WithRSAEncryption
c2:f9:22:6f:45:21:6d:5a:7a:43:58:7a:48:27:ed:17:3f:ce:
0b:dd:35:9b:d4:bb:3c:b1:08:42:b7:87:14:8d:ee:50:dd:a4:
5b:2a:d9:12:fe:f8:b5:5b:92:36:16:ba:08:4c:32:c2:b6:e6:
29:8d:36:3e:96:9b:4d:8d:cb:a4:6e:fa:2a:af:12:b4:f2:13:
a6:4b:13:96:fd:4e:ec:f2:e3:da:ba:2e:3f:96:e8:28:c1:cc:
a2:5c:82:e1:ee:79:45:1e:60:17:e0:3b:9e:7d:50:3e:28:46:
27:2e:79:b5:be:35:d3:dd:0e:a8:a1:71:ae:c2:5f:b4:dc:ab:
25:17:47:93:10:e3:3d:4d:3e:be:d7:bf:90:8c:de:f9:9f:dc:
66:18:fa:e4:48:9c:b3:7e:ec:27:53:7c:d3:f8:69:c2:9d:20:
5b:4d:96:c5:99:c0:f3:48:a6:dc:2e:52:75:07:de:b0:52:49:
fc:a5:24:1d:38:87:d3:f8:02:cf:83:8e:e1:0a:ae:a5:22:54:
86:40:2e:e6:ac:6a:00:52:df:12:41:93:28:f7:b5:d1:e0:a1:
46:a4:a5:85:a9:93:eb:0f:4b:23:f7:03:24:e6:cf:26:3a:a8:
8f:e3:11:d5:83:f6:b9:60:ec:da:72:83:00:f3:e3:7c:61:23:
4b:76:3b:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 17:47:40 2025 by rpki-client