Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/813E04C2CDB511EFB17F1AB6762E951A.roa
File: 813E04C2CDB511EFB17F1AB6762E951A.roa (raw, json)
Hash identifier: vIYrUTqvGB/sVsp98hwqQ93CnhMR2VpdiQXPnWnaDxg=
Subject key identifier: 4F:90:46:32:A7:41:30:B8:E2:D8:45:85:30:2A:FB:54:A7:70:14:6B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0136B0
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/813E04C2CDB511EFB17F1AB6762E951A.roa
Signing time: Wed 08 Jan 2025 11:41:31 +0000
ROA not before: Wed 08 Jan 2025 11:41:27 +0000
ROA not after: Tue 16 Dec 2025 11:41:27 +0000
asID: 984
IP address blocks: 154.200.137.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 79536 (0x136b0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Jan 8 11:41:27 2025 GMT
Not After : Dec 16 11:41:27 2025 GMT
Subject: CN=677e646b-9622
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:2f:ef:e7:8c:8c:23:df:c9:d8:00:04:be:2e:
bd:31:c5:ec:c9:b0:a8:f8:ed:c7:23:1f:9b:d7:5b:
32:f4:73:f9:49:6b:00:0f:d7:41:13:13:03:c5:1b:
79:e5:6f:1d:e7:1f:8b:50:e5:be:83:09:42:f3:5e:
8d:83:55:f9:3b:ea:fd:60:b4:33:13:43:f2:c9:06:
a3:63:ae:b1:5f:90:7a:f1:5f:9a:f4:09:5d:00:90:
4e:7a:29:c2:94:2c:d3:4a:5a:e6:82:df:21:8c:2f:
c9:11:05:4e:25:03:a0:3a:05:e3:e6:4b:ce:dc:f2:
76:12:ea:28:13:24:2f:6d:cc:29:bd:72:cb:67:4e:
88:4a:51:c4:20:6a:9c:8b:83:ba:e8:c8:82:08:33:
62:b3:d2:7d:d1:ee:0e:fb:02:8b:38:9f:d3:9d:a6:
c4:3b:d3:96:2a:b7:a9:01:f0:07:4c:9c:ae:47:41:
bf:2a:bd:0c:12:0f:44:ae:3f:5a:b6:1e:dc:31:d7:
24:80:2a:83:27:23:ac:cf:e6:bf:df:34:cf:45:19:
34:6d:ea:98:3a:f6:7e:f8:75:8b:57:cd:8b:f5:25:
0c:09:c5:07:0c:46:73:48:27:d4:e3:97:38:f8:25:
34:de:9f:79:83:9d:e0:22:45:8f:ee:b7:b5:03:e6:
9a:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:90:46:32:A7:41:30:B8:E2:D8:45:85:30:2A:FB:54:A7:70:14:6B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/813E04C2CDB511EFB17F1AB6762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.200.137.0/24
Signature Algorithm: sha256WithRSAEncryption
ac:be:96:2f:bc:1b:c9:cc:95:11:74:e1:69:9e:88:dd:3f:84:
f8:40:e1:18:71:58:99:bd:86:5a:61:63:6d:da:03:5d:ad:1f:
45:58:bd:e5:fb:c6:83:1d:fc:c8:28:61:ca:18:13:60:17:36:
33:a4:53:ad:20:d6:2f:6e:6b:b7:9c:8d:ba:09:2a:44:57:ce:
12:ab:00:76:17:ed:69:42:f5:20:d0:cc:f1:0e:d0:ba:09:ac:
42:91:78:33:d1:64:2d:79:a3:6d:8f:c7:b7:48:43:7f:28:5c:
6f:d6:86:c2:29:75:7b:b1:7d:4d:e9:10:72:d4:21:43:62:eb:
de:4b:5c:bf:f1:30:7b:cf:8d:3c:68:4f:ea:97:be:d2:18:5e:
31:46:c9:ee:fa:90:d7:ee:b1:82:e4:fd:c7:33:75:26:ef:e3:
c7:ed:72:a3:88:7b:24:79:1c:33:f2:11:ae:69:56:0c:bf:a1:
17:9e:0c:c3:4b:5f:5f:03:35:04:6f:bf:c8:c3:9a:a9:4b:b9:
3f:07:ac:e4:70:1a:f5:18:9f:b8:cb:08:27:f0:a6:4c:3d:dc:
21:5d:48:93:80:fa:46:98:ae:05:1a:f8:42:1d:d5:85:6c:bc:
61:ab:96:cc:b6:ed:5b:00:a9:a7:7c:76:0f:2f:4a:42:89:84:
a6:3f:17:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:50:54 2025 by rpki-client