Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/86ACDC50C52511EFB41DFEBD762E951A.roa
File: 86ACDC50C52511EFB41DFEBD762E951A.roa (raw, json)
Hash identifier: WES3zKJHCB5tBIqEd//VnxfwrLMwF9lvQHErCWj8SZo=
Subject key identifier: 43:EA:37:4C:02:D8:D5:66:FD:7B:85:F9:EC:9A:C9:B4:F7:D9:0A:05
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 012B81
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/86ACDC50C52511EFB41DFEBD762E951A.roa
Signing time: Sat 28 Dec 2024 14:10:43 +0000
ROA not before: Sat 28 Dec 2024 14:10:40 +0000
ROA not after: Sun 12 Dec 2027 14:10:40 +0000
asID: 17561
IP address blocks: 154.203.245.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 76673 (0x12b81)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 28 14:10:40 2024 GMT
Not After : Dec 12 14:10:40 2027 GMT
Subject: CN=677006e3-bd43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:ec:c9:fb:8c:6b:c5:75:b4:5b:91:4d:f1:15:
84:49:2c:26:1f:55:0b:b5:ee:a2:92:8b:c8:9a:53:
6a:65:3c:4d:7b:5c:5d:d9:7b:a4:29:6b:b1:d8:30:
0f:03:4f:a6:89:7d:50:ec:3c:5c:31:65:9b:3c:f6:
67:02:80:25:a5:04:63:c6:db:04:e7:e7:1c:a5:32:
35:d4:7e:e4:c4:15:b1:b9:e4:7c:b9:05:89:72:e0:
24:a7:bb:b0:f1:58:14:12:c7:8f:30:32:92:6f:92:
af:3d:57:63:5d:cf:2b:26:1d:5c:e0:ba:dd:36:f5:
8a:38:3f:a2:86:c7:a3:50:ca:e3:3e:24:a0:43:5d:
d2:2b:ca:d0:ae:97:d5:4b:a5:34:85:7b:f5:57:d0:
a0:5b:4b:91:10:92:70:f7:09:e7:ee:f7:5a:c1:8e:
00:e4:0c:d6:0f:dd:bd:55:d0:e6:35:5f:24:f7:17:
fb:98:8b:6c:f4:72:72:d0:fd:be:e4:d0:ca:1c:8a:
36:f9:30:f3:60:f9:98:08:8d:5f:75:b5:be:45:f2:
cb:34:6d:e8:fc:a3:24:39:0a:ad:4d:9f:af:e6:90:
9d:3d:16:4e:c2:8a:6b:11:f9:af:e7:f2:bc:1b:27:
72:11:20:9c:9d:9a:0f:15:e7:7e:28:b2:5b:ce:d6:
49:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:EA:37:4C:02:D8:D5:66:FD:7B:85:F9:EC:9A:C9:B4:F7:D9:0A:05
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/86ACDC50C52511EFB41DFEBD762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.203.245.0/24
Signature Algorithm: sha256WithRSAEncryption
32:12:a7:c4:96:64:36:e5:da:fc:8d:f8:21:52:e4:57:74:4b:
c6:63:80:b8:9e:52:29:3b:87:20:a3:4b:e7:4b:c2:12:67:c5:
c5:55:5e:87:c4:ce:87:19:0d:fc:10:5d:30:9b:45:a2:d8:3c:
e1:89:72:f5:a9:c8:69:7c:53:b9:81:8c:af:b0:e1:af:b1:ba:
ac:90:7e:69:f0:31:bd:22:9a:ea:e2:72:82:6d:d6:a8:b5:0d:
6d:a0:2e:3b:0f:ad:54:24:c8:d6:2c:6b:ff:21:46:d7:a4:01:
b4:ee:cd:08:46:46:70:4c:e2:0d:8a:ad:e5:1f:86:4f:d9:e0:
f4:51:4b:fd:6e:84:96:66:f1:0a:3d:e9:9e:0e:b2:01:22:24:
b1:cd:b3:99:9b:ed:df:b2:30:ab:ba:49:46:df:cf:3c:ff:54:
31:8a:67:39:6d:6e:4c:1f:63:e1:7c:7f:eb:9e:e3:8e:f6:12:
da:40:3a:05:58:2a:7e:b8:24:e8:ec:ef:79:b5:48:df:93:a8:
5b:c0:9f:d4:a3:d5:71:90:bc:8e:2a:13:ec:d0:d9:3a:f2:12:
22:21:e9:c2:25:19:50:cd:44:37:4c:9d:ad:fd:97:36:50:b2:
b7:cc:c6:bf:18:a7:17:26:89:40:70:bd:9a:2d:b8:50:ef:4d:
4f:35:f7:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:51:40 2025 by rpki-client