Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/80662A98F44D11EFB1AF23A4762E951A.roa
File: 80662A98F44D11EFB1AF23A4762E951A.roa (raw, json)
Hash identifier: v7O6U2CoWI0ZuXlkVMQ8CkYOCnERGSJol+0vVPDZoyM=
Subject key identifier: D6:26:CB:3A:DA:EF:66:7D:20:19:85:32:7A:51:22:B7:51:91:E0:31
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 016447
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/80662A98F44D11EFB1AF23A4762E951A.roa
Signing time: Wed 26 Feb 2025 14:25:18 +0000
ROA not before: Wed 26 Feb 2025 14:25:14 +0000
ROA not after: Thu 19 Feb 2026 14:25:14 +0000
asID: 984
IP address blocks: 154.210.52.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 91207 (0x16447)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Feb 26 14:25:14 2025 GMT
Not After : Feb 19 14:25:14 2026 GMT
Subject: CN=67bf244d-7e38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:8d:d5:ca:10:21:92:a8:22:dc:b8:3f:51:fd:
08:98:23:55:4f:c6:ec:3f:95:3b:5b:c6:72:4b:a6:
f0:9e:cd:ad:2e:0f:90:a4:e2:84:d7:de:e4:c1:68:
8e:81:99:0f:2d:70:bc:a0:70:61:56:0f:4d:df:54:
39:0d:f7:6c:b0:5c:09:6c:30:9d:2a:bf:7b:20:3f:
73:56:ea:fc:45:82:5d:64:7e:66:cc:81:26:4a:fb:
9c:5a:78:2c:71:cc:43:8a:dc:9f:11:66:4a:ae:c5:
8e:04:f2:26:86:b9:f2:e2:b4:86:17:df:36:4a:39:
fd:b4:ce:2b:fa:a0:84:c7:c2:7a:0d:5a:96:ae:20:
fb:65:35:bc:ed:ca:3f:f6:52:aa:97:df:af:08:d6:
c6:e1:6e:fb:72:1e:8d:a3:66:31:ac:d8:90:35:e1:
32:14:88:49:a8:77:68:7e:ab:51:80:7d:73:19:03:
d4:b3:43:5b:75:a3:0a:26:fb:76:dd:06:3a:33:3a:
82:f9:da:fb:e2:8d:9a:54:f1:d6:a1:86:33:f8:d1:
38:b2:16:24:1a:b7:a1:bb:49:25:55:77:d4:f2:8e:
af:75:14:2b:b0:b9:ed:72:47:1a:04:d1:98:e1:85:
31:5e:8b:40:4a:c7:99:8a:11:18:97:c0:0f:15:1d:
68:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:26:CB:3A:DA:EF:66:7D:20:19:85:32:7A:51:22:B7:51:91:E0:31
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/80662A98F44D11EFB1AF23A4762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.210.52.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:1a:b4:79:82:85:90:ec:6a:53:f0:e5:2f:d2:b5:bb:07:d1:
c2:e8:a2:c5:39:df:7b:aa:74:56:60:f3:04:d8:63:64:77:e8:
a2:1c:1f:8a:12:36:e8:e3:08:83:04:7a:46:c0:ed:ed:d5:d5:
09:48:ba:5c:5e:0f:b5:2b:03:a6:78:b6:59:dd:36:ff:c7:bb:
c7:41:7e:20:4f:54:1c:23:10:da:df:cd:b1:85:31:1c:6e:a6:
53:06:e1:1a:85:80:fb:8d:66:33:c3:89:65:20:3a:33:f1:d0:
77:11:9c:da:ee:2d:69:d3:8b:bb:fe:13:4a:93:cf:87:b7:33:
ff:8f:bb:9e:6c:6c:22:83:c8:4b:4c:6f:17:b3:d3:93:d5:ee:
3d:6c:0a:5d:70:75:9b:8d:0c:82:06:96:d9:b7:d4:81:71:27:
7e:8d:41:e8:8a:ac:40:7e:a9:2b:c7:0d:65:81:e4:d1:f8:d6:
44:af:74:0c:1f:72:c1:10:ac:9d:1e:a8:07:63:3a:11:4e:88:
29:4e:cd:3e:ee:22:47:3f:22:9c:4d:cd:ab:ad:f1:42:29:f9:
cf:79:44:39:b5:ee:ef:bd:b4:a0:66:9e:0c:82:56:f1:fa:74:
9a:7e:da:6f:26:bb:88:a7:91:bc:c5:6e:01:ae:04:ab:b8:2b:
d2:dc:63:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:57:40 2025 by rpki-client