Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/871C14C8C60411EF81D80142762E951A.roa
File: 871C14C8C60411EF81D80142762E951A.roa (raw, json)
Hash identifier: 9aLo9v59c0H0nblLQLJFx/z5UZXaoAP0a3aRhrLqIKQ=
Subject key identifier: 72:D7:2D:65:C4:EA:6A:A0:4D:4B:F3:7F:B5:FB:A8:60:F7:A8:31:09
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 012E7C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/871C14C8C60411EF81D80142762E951A.roa
Signing time: Sun 29 Dec 2024 16:47:02 +0000
ROA not before: Sun 29 Dec 2024 16:46:59 +0000
ROA not after: Sun 12 Dec 2027 16:46:59 +0000
asID: 17561
IP address blocks: 154.217.33.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 77436 (0x12e7c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 29 16:46:59 2024 GMT
Not After : Dec 12 16:46:59 2027 GMT
Subject: CN=67717d06-ac82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:c2:28:67:b6:ee:4c:98:ff:1a:4f:b5:f4:e6:
c2:97:63:fd:ec:d0:cb:9f:9b:6f:85:d6:91:18:8b:
42:0b:48:0a:72:3b:19:75:e0:70:85:ca:b9:77:7c:
77:89:ff:64:85:9b:f2:2a:50:37:0a:90:8d:25:d6:
2d:ba:fa:c4:4c:35:72:88:d7:c3:ac:24:01:5c:2d:
0c:df:1b:e1:03:10:34:7d:0d:51:a3:b5:e9:fb:4f:
4e:d9:2c:66:2a:b5:f5:f8:2f:42:4c:e5:c7:ab:37:
76:96:28:a5:6c:55:fe:53:b7:34:f7:fd:9b:e0:3c:
05:ff:29:f6:0d:ee:e5:8a:42:1d:33:55:13:ac:51:
f3:ac:75:b6:89:ba:8e:5e:4a:b2:d1:1a:27:a4:47:
4f:57:8d:30:b9:ad:46:32:55:4a:a9:2f:30:03:eb:
0d:fc:84:d1:ee:fc:26:43:6b:d8:cd:0a:e3:ff:f3:
79:fb:73:85:d7:b2:85:fd:1e:52:1d:d0:af:2e:4f:
92:fd:5f:cd:10:8a:11:68:07:95:50:3e:c4:f2:47:
2f:7f:34:47:89:01:07:5f:4d:32:b2:f9:08:7e:67:
32:6e:a1:ec:9b:04:91:1a:f9:26:b5:66:f7:9c:bb:
61:38:5e:fc:f3:a8:90:e9:d5:7c:fb:77:6e:51:4d:
d5:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:D7:2D:65:C4:EA:6A:A0:4D:4B:F3:7F:B5:FB:A8:60:F7:A8:31:09
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/871C14C8C60411EF81D80142762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.217.33.0/24
Signature Algorithm: sha256WithRSAEncryption
00:8c:04:d4:4e:cc:97:1c:40:76:b8:0e:5b:ff:21:72:46:2c:
94:f7:47:36:dd:f6:23:cc:e7:fe:b9:1a:f0:45:e8:c8:a0:b7:
83:03:04:3b:6f:57:e4:82:2f:ad:6d:7b:84:5d:57:37:45:20:
2d:5a:5d:eb:c2:57:c8:55:72:c0:10:f3:7d:75:41:18:15:02:
87:3e:d4:26:4c:c1:15:cb:bb:de:cd:09:6f:31:b8:0e:46:97:
6b:dd:31:fa:b8:92:aa:8a:16:1e:70:fe:d9:07:aa:b0:ab:6d:
60:c4:b0:a3:d1:31:72:b6:1d:34:1a:d4:a8:2c:e8:e1:38:d8:
08:3d:87:5e:db:0f:83:f0:76:eb:30:d5:de:a0:d2:bf:35:f2:
54:6e:c2:ee:e5:cb:bb:c6:47:7d:93:13:8f:4f:7e:91:22:0e:
b7:b5:f3:2a:f4:9b:97:8e:cb:da:ef:19:5d:9d:35:98:c2:bb:
2f:d7:08:95:07:8a:b1:af:16:af:66:41:07:76:3a:35:51:c7:
7d:82:e6:8e:6c:32:c1:96:d8:ed:f5:f4:2b:d1:4a:b1:13:de:
95:ff:d7:4a:62:bd:30:0c:7b:a0:c8:19:6b:18:37:b0:9d:26:
b2:11:4b:d6:31:66:69:b6:bd:16:67:5d:66:55:a9:99:d6:84:
a6:33:1f:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:50:56 2025 by rpki-client