Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/809D149EC63111EFB3BBEA5B762E951A.roa
File: 809D149EC63111EFB3BBEA5B762E951A.roa (raw, json)
Hash identifier: f9YJ9cSJZYNgJpmFQbp1jspfgDnnhNQoEfwp1cdY4rs=
Subject key identifier: 3D:94:E0:74:6D:F1:E8:EE:25:DC:B8:EF:BA:79:CB:81:73:14:A7:73
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 012FF6
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/809D149EC63111EFB3BBEA5B762E951A.roa
Signing time: Sun 29 Dec 2024 22:08:59 +0000
ROA not before: Sun 29 Dec 2024 22:08:55 +0000
ROA not after: Sun 12 Dec 2027 22:08:55 +0000
asID: 17561
IP address blocks: 154.217.222.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 77814 (0x12ff6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 29 22:08:55 2024 GMT
Not After : Dec 12 22:08:55 2027 GMT
Subject: CN=6771c87a-0cf5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:e1:0a:63:1b:60:83:a8:8c:2e:a5:0c:33:10:
40:d2:ea:1e:ec:af:cd:10:c9:35:c0:8c:89:f9:2b:
b8:82:c6:0f:13:f4:f9:8c:e7:d9:94:6d:b6:02:c7:
9e:e1:0e:c0:ab:f7:52:82:fc:0d:98:c3:20:73:30:
f6:ec:bb:fa:74:a3:88:b2:8c:02:d5:b4:d5:20:c6:
88:2f:fe:24:aa:3f:dc:15:fd:fd:58:b7:a9:da:54:
6b:83:a1:39:34:dd:7b:98:e5:f3:a7:a2:a1:ea:3f:
ac:a3:be:51:be:d1:c6:86:be:f6:1c:4f:b1:89:52:
d1:8f:a3:bb:4c:90:95:85:fe:fa:02:67:76:e2:71:
a7:5d:5d:27:e8:4d:72:ef:63:e2:eb:0c:32:3b:f5:
3d:76:87:5b:b7:41:f8:7d:57:6d:ab:6b:0b:a6:4b:
54:dc:7e:19:9c:7d:f4:10:25:36:c6:e9:d9:bf:d5:
42:cf:c1:c8:71:53:70:02:9e:63:f4:b5:c2:cf:03:
0d:01:dc:15:7f:cc:57:51:99:f1:d3:3b:6c:47:a5:
ac:9b:65:e2:77:42:5e:00:e5:97:5c:a8:ed:28:82:
62:6c:e9:27:36:2f:55:10:05:63:8b:51:17:33:ce:
5c:58:9d:ce:6c:e9:0f:36:49:06:c4:df:72:65:f1:
a4:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:94:E0:74:6D:F1:E8:EE:25:DC:B8:EF:BA:79:CB:81:73:14:A7:73
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/809D149EC63111EFB3BBEA5B762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.217.222.0/24
Signature Algorithm: sha256WithRSAEncryption
43:4c:cf:20:0b:3e:5f:8e:16:f8:c0:90:3d:f1:08:16:e1:e8:
b7:dc:7b:aa:d6:e1:42:f4:40:82:85:4b:fa:b1:be:17:50:ab:
e9:46:75:d2:2e:69:c2:61:3f:9f:ad:d9:39:25:b4:4a:93:37:
c3:77:b1:26:0d:b6:9c:f5:ba:a7:93:65:20:51:01:fb:af:e0:
75:13:ab:7a:79:7d:25:1f:fb:ec:7a:03:b2:1d:cc:34:ff:47:
19:29:3a:ac:34:e0:64:7a:98:6a:78:cd:2c:80:c2:73:56:e7:
1c:64:fb:d9:fb:fc:ef:d7:e6:09:2b:87:22:bd:19:7b:c4:3d:
28:90:cc:d1:73:3f:62:ac:e4:41:67:1d:83:71:55:98:83:a1:
0a:8f:ca:ab:2a:67:ac:61:4a:10:3f:51:d7:6a:71:46:34:35:
06:64:63:9b:a5:21:d1:df:f4:e2:ed:d5:11:87:8c:99:8e:2e:
62:e3:f9:bd:94:e6:c1:2b:7b:96:9b:f8:3f:90:51:07:6c:bf:
ed:78:1d:a4:86:bf:e1:3b:b0:97:10:f2:24:95:6e:98:e5:61:
0f:4e:00:6c:43:f5:15:b8:d7:70:2f:79:f3:83:45:ce:bd:35:
65:01:11:44:fe:3e:b9:e8:76:0e:40:d5:74:6b:bc:75:ac:5e:
1c:8e:a4:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:59:13 2025 by rpki-client