Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8388B606C1A211EF80057262762E951A.roa
File: 8388B606C1A211EF80057262762E951A.roa (raw, json)
Hash identifier: VgDbwQM4nSJDYuzG9dDpdSxL7SpqrbOJbaRX4qLXtGs=
Subject key identifier: 56:CF:DC:05:4D:E1:BF:3B:F7:2A:64:A6:DD:37:D1:20:93:AC:34:66
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0120C5
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8388B606C1A211EF80057262762E951A.roa
Signing time: Tue 24 Dec 2024 02:55:21 +0000
ROA not before: Tue 24 Dec 2024 02:55:16 +0000
ROA not after: Wed 10 Dec 2025 02:55:16 +0000
asID: 984
IP address blocks: 154.90.254.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 73925 (0x120c5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 24 02:55:16 2024 GMT
Not After : Dec 10 02:55:16 2025 GMT
Subject: CN=676a2299-0967
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:fe:87:90:3b:e9:7e:85:4a:39:66:e2:8f:67:
ad:8a:d0:26:6a:74:1b:d2:6d:9b:8c:3b:e6:fe:2d:
7c:05:2b:d6:52:35:20:15:ca:8e:e0:7c:0a:d2:ee:
e1:2f:73:99:66:aa:c0:1d:e6:aa:71:59:a9:63:01:
3a:f5:d4:e2:16:6d:b7:ff:8f:48:ea:65:fc:ae:61:
06:2f:1c:20:31:16:41:b8:9a:6d:4c:8f:a6:29:70:
f2:af:75:50:df:0c:c1:98:0b:d4:b5:c6:b6:c1:be:
36:c3:9a:df:b8:17:72:1a:c2:f4:e8:95:3c:12:2d:
a3:c8:b3:37:25:2b:f6:8e:ae:ed:52:84:1d:08:fb:
b5:59:d6:aa:f0:c8:df:ca:ac:a9:09:20:2c:26:c9:
49:b7:64:0b:f1:6e:cd:14:5c:00:4e:7c:37:f1:b1:
36:b7:8b:ed:d8:39:39:6b:85:3c:42:c2:38:2e:5d:
e6:43:8e:a1:50:03:5a:9c:5f:63:54:b4:61:d4:62:
85:c3:61:e9:e1:ab:2b:98:db:18:27:c6:4b:09:7e:
0b:06:ba:0b:57:55:31:c5:12:9e:73:0e:ca:84:a6:
04:1e:ac:f2:69:54:4d:81:a9:11:be:5d:bb:b7:b2:
e4:a7:8b:16:05:34:6e:8f:25:37:f8:18:87:9a:08:
70:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:CF:DC:05:4D:E1:BF:3B:F7:2A:64:A6:DD:37:D1:20:93:AC:34:66
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8388B606C1A211EF80057262762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.90.254.0/24
Signature Algorithm: sha256WithRSAEncryption
56:81:5d:39:b4:d2:49:da:6e:3a:66:f0:95:f2:b7:e6:ac:f7:
85:db:84:16:b5:ee:1a:21:a9:43:92:f2:41:d8:32:9b:ed:95:
09:39:00:5e:d7:a2:e7:24:58:86:11:9a:71:d0:d4:4c:ae:3d:
a6:98:39:3c:04:9c:21:cf:3e:b9:91:61:d0:0d:92:e7:c2:19:
d9:73:1b:0f:3a:ca:d3:ac:8f:8f:fa:89:ab:13:72:b1:f6:37:
96:b1:3a:f5:f9:e3:28:45:b4:b3:7c:54:0e:8f:54:d5:cc:9d:
ff:ac:86:83:99:0f:f5:a1:58:6a:cb:bb:ea:c4:0e:5b:ca:19:
13:12:f7:34:a4:a6:13:47:8d:43:6c:cd:4b:53:78:94:df:17:
7b:d5:f0:f5:a8:7e:4f:fa:56:16:7c:ca:1a:b6:6b:f1:cc:d9:
20:f1:65:00:27:87:da:6e:e5:24:dd:1a:47:c7:37:93:20:96:
bf:f1:c2:a8:41:25:b0:42:ce:f2:9c:cc:69:06:40:f8:69:ea:
c7:4f:3f:3b:21:2b:f4:21:c5:fc:c9:42:3c:52:ce:08:c9:c8:
cf:88:de:48:77:9c:1b:47:48:bc:66:6b:9e:10:df:02:d6:6e:
14:be:17:09:cc:06:5d:1f:3f:3f:74:aa:6f:56:6d:16:1d:c0:
24:74:56:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 11:00:20 2025 by rpki-client