Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8656A63EF5CA11EF868E926A762E951A.roa
File: 8656A63EF5CA11EF868E926A762E951A.roa (raw, json)
Hash identifier: FTQyO+jD+FamqJCWB1R97Qsp2aOUbDxRNw7gVYU+Eac=
Subject key identifier: 7E:BF:3E:9B:2B:F8:CC:58:5F:DB:9F:4A:D5:39:3C:B2:04:42:CF:B7
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 016B04
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8656A63EF5CA11EF868E926A762E951A.roa
Signing time: Fri 28 Feb 2025 11:52:46 +0000
ROA not before: Fri 28 Feb 2025 11:52:42 +0000
ROA not after: Fri 11 Apr 2025 11:52:42 +0000
asID: 138915
IP address blocks: 154.203.158.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 92932 (0x16b04)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Feb 28 11:52:42 2025 GMT
Not After : Apr 11 11:52:42 2025 GMT
Subject: CN=67c1a38e-5dbd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:a7:74:46:fe:3d:e0:97:60:44:16:d6:0d:2a:
2c:38:38:48:ac:7a:04:4b:63:0d:da:c5:b6:ce:f0:
b2:c5:4a:42:c1:9b:a9:11:17:62:ad:0a:7f:3d:e2:
17:d2:ba:be:07:fe:d2:0f:e9:5d:25:29:03:93:f1:
c3:71:63:ec:24:74:c4:58:94:07:90:4f:03:f3:59:
9e:e8:12:58:fd:08:be:1e:9f:60:97:1f:9c:5d:be:
9d:2d:f9:bc:6d:c6:1e:d6:f7:0c:7f:bf:3c:a4:15:
2f:a0:98:54:ff:81:77:90:10:c5:f0:2d:e4:84:66:
97:c2:e8:99:41:e8:2c:b2:2a:54:a2:95:e0:26:e5:
b2:af:3d:cd:ea:38:66:c9:b7:0b:84:c1:11:90:66:
5f:9a:b5:5f:b6:aa:dd:66:42:6e:f9:14:ae:e3:2f:
10:a1:c2:b3:e8:4d:d5:41:d4:a2:15:77:36:5b:b7:
d2:1e:b8:71:b4:a5:65:63:77:54:04:8e:db:9e:14:
2b:36:31:f6:1b:4d:86:86:d8:3b:59:57:51:4a:c3:
84:69:36:de:4f:e5:0a:8c:57:27:69:70:50:61:46:
2b:f4:30:02:ef:b5:c2:c5:08:05:4e:a6:45:a0:09:
00:bc:42:f7:39:9e:49:10:06:c2:cb:35:2d:4d:bb:
4c:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:BF:3E:9B:2B:F8:CC:58:5F:DB:9F:4A:D5:39:3C:B2:04:42:CF:B7
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8656A63EF5CA11EF868E926A762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.203.158.0/24
Signature Algorithm: sha256WithRSAEncryption
b9:56:56:3c:16:59:7c:36:78:06:92:36:5b:77:d0:27:b5:c2:
b3:97:ad:ff:3c:79:d7:84:a2:bb:e5:9a:3f:00:8f:6d:e5:d3:
d9:8c:f7:de:31:ae:b4:22:2e:ed:d6:b9:10:6a:c5:a4:97:e8:
6f:bf:68:71:ea:6f:92:f6:b8:c3:0e:b8:f1:93:85:bb:f0:01:
20:89:82:e0:e4:f6:86:b5:d3:1c:f3:e1:da:21:3e:df:70:ff:
06:7e:ac:f8:b0:e3:e2:e8:fe:82:7b:15:10:55:d5:d5:cd:30:
43:40:65:f3:60:e5:b8:a0:02:aa:bc:44:38:6a:58:c9:c2:75:
0b:2b:20:b5:4a:a8:5f:eb:3d:3b:cc:61:b9:47:df:66:f8:f6:
1a:c3:02:33:1a:ee:ed:d6:8e:42:2d:a0:7f:2b:75:f4:50:55:
ad:fb:b7:ae:6d:76:6f:b9:ff:c0:e5:7d:17:40:be:2e:06:a1:
fc:5b:d8:09:49:7d:a7:b6:e5:84:7b:52:f1:25:7b:c6:c3:4e:
8e:c4:c9:b1:e7:76:b5:ee:45:d7:7e:44:21:ce:ac:6e:dc:be:
b1:f1:35:53:ab:57:8b:1f:15:28:f2:35:2d:59:13:c3:7b:00:
85:31:64:cb:ed:88:04:85:b7:3e:3e:30:79:6b:58:37:c2:ab:
ba:97:b3:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:53:48 2025 by rpki-client