Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8061E4C6C25A11EFBDD81B71762E951A.roa
File: 8061E4C6C25A11EFBDD81B71762E951A.roa (raw, json)
Hash identifier: NPA9icjAEnh38jRSUZZdvH9R7AUA3Xl1fixmwxCHJSQ=
Subject key identifier: EE:B9:6D:BB:09:52:55:90:32:95:8C:62:44:F9:EC:FC:4D:27:A0:03
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 012365
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8061E4C6C25A11EFBDD81B71762E951A.roa
Signing time: Wed 25 Dec 2024 00:52:23 +0000
ROA not before: Wed 25 Dec 2024 00:00:19 +0000
ROA not after: Wed 10 Dec 2025 00:00:19 +0000
asID: 984
IP address blocks: 154.199.64.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 74597 (0x12365)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 25 00:00:19 2024 GMT
Not After : Dec 10 00:00:19 2025 GMT
Subject: CN=676b5747-4539
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:a5:d6:81:f1:f7:00:66:a1:f5:37:04:26:54:
92:87:d4:ab:86:58:1c:66:f0:fd:65:76:4c:4f:eb:
28:af:3f:30:0f:a6:1d:a9:f4:b9:c9:b8:66:2b:13:
12:62:d7:63:38:9c:1a:5c:0d:fd:2a:23:fe:b2:24:
87:99:fe:64:4c:dc:d4:68:12:a5:0e:5d:f6:b5:10:
de:36:9a:b1:f8:fc:16:2d:a3:33:5e:a5:0f:65:8a:
46:c4:2c:72:80:f0:c7:c8:9d:e8:df:d8:5a:fe:8f:
ff:c3:00:6e:96:1a:c8:8d:16:b5:75:06:c8:34:9d:
b4:77:92:df:e6:ae:6b:85:1a:43:df:09:36:6a:18:
a1:8c:96:aa:9c:33:06:7c:dc:4c:13:3e:ec:98:fb:
7e:1a:eb:c8:03:e5:46:de:77:b3:4e:0e:35:87:3f:
9f:a0:fb:66:d9:ca:40:33:94:64:4f:89:1f:ab:c3:
31:ee:1f:a8:c4:fb:00:fe:cd:22:82:3b:aa:c5:28:
4f:d7:a7:d2:76:89:e9:ac:62:be:16:e3:77:6e:5d:
52:90:6f:cb:47:a3:0a:58:dc:50:7c:23:7e:fc:f2:
8b:c9:6d:7d:2c:d3:45:2e:37:c4:e7:f5:e1:3a:e5:
ed:70:ca:13:f3:13:49:d3:1a:b6:8c:3c:62:29:f8:
23:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:B9:6D:BB:09:52:55:90:32:95:8C:62:44:F9:EC:FC:4D:27:A0:03
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8061E4C6C25A11EFBDD81B71762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.199.64.0/24
Signature Algorithm: sha256WithRSAEncryption
ae:04:8b:d0:cb:07:b3:26:b7:66:c7:a5:a6:13:1c:58:10:73:
1e:82:20:a0:a5:38:62:e8:e5:b2:3e:de:66:8b:87:2e:56:f1:
44:f0:59:57:af:7e:0e:70:20:ad:22:1f:fc:46:5c:4b:64:b4:
ad:d8:57:80:b7:7c:ed:42:27:b9:a1:96:74:b7:3f:c2:52:6b:
2f:4e:ed:de:86:33:96:f1:0c:35:7e:2f:04:d3:ca:da:81:05:
09:3f:8c:9d:71:cb:df:a4:62:3e:f0:b7:97:45:df:9a:ed:21:
9e:bd:5b:05:8f:23:1a:cf:9a:2a:b3:95:03:6a:ec:25:9e:d4:
5f:78:be:67:13:b2:92:28:e4:89:65:c8:14:3f:8f:82:28:13:
e7:d1:83:dd:dc:d2:63:e6:4d:b1:6f:54:85:3e:26:45:09:e0:
c0:00:4f:ad:d5:7a:a6:8e:39:76:42:72:9f:52:ab:3d:6c:55:
98:e3:ee:6b:10:83:2c:93:0d:4f:ed:71:1b:4a:e8:f2:4c:91:
c4:e5:27:56:6f:37:89:41:75:da:1a:ee:20:f8:3a:fa:53:63:
b2:19:6b:35:eb:88:94:be:fa:5b:72:1e:c2:48:af:7a:57:c4:
3b:cd:1e:54:2c:f2:24:6a:ae:f0:47:04:ad:d0:1b:d4:a5:5e:
e5:20:74:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:55:24 2025 by rpki-client