Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/85486F2AC3DE11EF80F87499762E951A.roa
File: 85486F2AC3DE11EF80F87499762E951A.roa (raw, json)
Hash identifier: FGUCkEUaCGGvGwaf3Z8lIC6JUztrHC0QkcFuNGF3JcI=
Subject key identifier: F4:1A:6E:BC:2B:0A:33:BA:10:05:70:BD:13:0A:FC:90:28:9C:0C:0B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0128C8
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/85486F2AC3DE11EF80F87499762E951A.roa
Signing time: Thu 26 Dec 2024 23:09:56 +0000
ROA not before: Thu 26 Dec 2024 23:09:52 +0000
ROA not after: Sun 12 Dec 2027 23:09:52 +0000
asID: 17561
IP address blocks: 154.86.117.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 75976 (0x128c8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 26 23:09:52 2024 GMT
Not After : Dec 12 23:09:52 2027 GMT
Subject: CN=676de244-aca7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:48:fe:54:5d:66:dc:e2:41:a3:39:12:62:ba:
cc:c4:32:cb:fa:3e:b5:a9:81:ec:e9:20:0b:22:f8:
0c:24:00:4f:ef:74:b1:10:8d:b2:b2:d6:af:b5:43:
90:ad:f2:89:03:72:da:bf:3d:d2:83:b1:77:d9:83:
a2:9d:6a:ba:bd:06:ec:aa:9b:52:8c:7c:3d:ab:67:
a4:48:72:bb:bd:97:ca:a1:da:35:69:0e:10:45:0f:
7b:77:0a:c0:99:b5:82:71:61:1f:f6:28:83:9e:0a:
56:8c:33:e9:73:df:5a:1e:23:9d:07:fa:54:b8:5e:
28:37:15:7d:aa:a4:e7:84:68:52:07:de:32:62:77:
29:c4:c7:6a:5d:21:65:96:c7:35:70:c7:33:d8:d9:
01:5a:b7:75:de:63:62:e0:b9:09:fe:dd:f7:0d:15:
e2:f4:30:79:47:13:b6:ba:36:2a:14:44:79:5c:fa:
c2:ab:21:e6:b3:b8:e3:cd:d5:ba:88:41:b5:0c:36:
a0:dd:2a:df:be:6f:db:df:2d:3a:1a:2e:73:24:1f:
d8:34:42:6f:6f:57:a3:15:3a:f5:61:86:d9:9c:7f:
09:e8:b8:41:88:a7:b8:77:ea:20:2c:94:34:d3:aa:
f1:4e:d0:1c:04:74:fc:03:11:91:ba:7d:e7:7b:15:
cb:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:1A:6E:BC:2B:0A:33:BA:10:05:70:BD:13:0A:FC:90:28:9C:0C:0B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/85486F2AC3DE11EF80F87499762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.86.117.0/24
Signature Algorithm: sha256WithRSAEncryption
18:f8:90:84:50:7e:a2:f0:a5:95:1f:ee:7b:3d:b0:2c:0a:5a:
4e:7b:74:2a:cd:43:dd:b4:0f:05:89:94:6a:db:97:39:15:9e:
c0:58:dd:f1:75:09:1a:24:bb:bc:d1:33:88:57:80:6a:4a:b3:
38:6e:24:54:a3:ff:6a:85:56:58:5c:b9:a6:96:f2:4e:7e:38:
29:c6:84:ac:62:02:b5:d1:9d:26:1e:85:db:16:c4:0a:cd:c3:
48:e8:f2:07:93:8b:d0:bf:a6:a0:33:96:98:04:6c:7d:7a:c4:
d0:d7:f6:9e:6a:12:f0:cb:62:37:ea:61:50:b4:a2:0c:08:42:
36:fc:9c:57:eb:4f:5b:69:0a:19:d9:ba:9e:4a:d7:35:cc:bf:
91:0f:c4:69:dd:24:55:a7:ca:06:ea:55:71:48:bd:93:c3:db:
c8:f4:30:64:a8:7f:40:0f:4d:c1:15:7d:4f:c8:10:e1:90:1a:
49:77:75:52:99:9c:27:29:cc:15:3f:89:65:f9:b4:83:1c:93:
35:ce:98:99:d2:53:f0:c4:20:45:64:6a:cd:8b:54:a9:27:d7:
d2:51:14:c5:cf:7d:20:cf:40:ef:ed:de:e6:cd:d5:83:d8:03:
16:0d:96:5c:0e:3c:04:ed:0a:f2:12:09:8b:9f:39:f3:a6:c9:
b3:3d:57:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 18:03:03 2025 by rpki-client