Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/89825CF2C5FC11EF9050EE8F762E951A.roa
File: 89825CF2C5FC11EF9050EE8F762E951A.roa (raw, json)
Hash identifier: Qr3ljHvpkfSIFo6ANl5dop8FrHvSwVUX4+T4Zlh3fvs=
Subject key identifier: 04:75:ED:81:E7:FF:0B:02:06:FA:08:36:78:93:7F:31:2C:40:A6:40
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 012E38
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/89825CF2C5FC11EF9050EE8F762E951A.roa
Signing time: Sun 29 Dec 2024 15:49:50 +0000
ROA not before: Sun 29 Dec 2024 15:49:47 +0000
ROA not after: Sun 12 Dec 2027 15:49:47 +0000
asID: 17561
IP address blocks: 154.216.31.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 77368 (0x12e38)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 29 15:49:47 2024 GMT
Not After : Dec 12 15:49:47 2027 GMT
Subject: CN=67716f9e-0ee0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:a5:e6:96:6b:a8:d2:fc:83:44:7a:99:ed:46:
e5:38:b9:a6:c2:37:99:80:44:6c:cd:cc:58:2b:91:
ea:00:30:b8:89:d4:dd:dc:b5:a4:28:14:33:b6:bc:
af:a4:71:1e:44:ab:43:d2:15:c4:49:8a:a5:c9:97:
bb:df:d7:59:df:d1:25:be:87:c8:91:aa:ce:1f:31:
1b:45:36:43:cf:bf:2d:fd:08:27:01:88:24:2d:99:
10:fa:0d:63:88:6a:75:a2:e5:8d:a6:53:59:4c:38:
9a:6d:2d:fb:9e:eb:b9:bf:4d:22:fd:8b:d1:a8:d7:
26:57:19:5d:51:e1:a0:d0:f3:a2:95:a5:61:87:a6:
6b:68:98:bc:f8:21:43:98:e1:f0:73:90:20:d5:9e:
75:0a:ff:f1:81:c5:b6:75:e9:bb:48:e5:05:76:08:
a3:6b:10:10:41:6b:4d:7d:3f:0a:2f:4d:37:ca:56:
9f:dd:4c:f2:ee:9b:bf:ac:29:ad:c5:a1:fc:33:74:
46:fb:35:79:74:a8:5f:01:d4:a9:f0:2b:b0:aa:5e:
d4:16:89:b0:5d:de:a6:f0:57:59:99:89:e9:a1:a6:
d6:ab:4e:08:b7:03:92:e9:81:a3:36:50:28:31:b7:
18:7e:00:a7:9a:58:97:38:be:22:71:fa:59:5f:d8:
ac:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:75:ED:81:E7:FF:0B:02:06:FA:08:36:78:93:7F:31:2C:40:A6:40
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/89825CF2C5FC11EF9050EE8F762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.216.31.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:d0:9c:02:7a:1f:3a:39:91:cf:b8:b6:13:47:ad:9a:45:95:
a0:e3:56:50:23:f8:c5:c7:4c:6e:65:8a:f0:6c:4a:55:00:72:
ed:e1:64:2a:ae:4b:6a:97:b8:6e:be:61:8e:7a:5a:92:c2:96:
40:7e:d8:c5:ee:66:d2:ba:42:44:d8:19:a3:dd:8a:41:4f:7b:
a8:f9:63:2a:66:c8:5b:87:8a:f9:47:31:24:19:8a:40:01:ca:
cb:fe:6b:d2:41:ee:56:9c:0f:0a:89:4e:e6:5f:8c:94:ed:4d:
d7:2d:7a:1a:5b:24:76:88:76:fd:b5:12:76:27:d7:c3:60:e2:
34:82:60:29:92:b9:cc:f9:d7:4c:48:49:5a:dc:aa:f0:59:f7:
15:fa:a7:62:ff:6e:17:6c:93:33:bc:6b:e7:ec:4f:52:b2:08:
b4:1b:9a:89:cf:ba:99:d2:7a:0b:8c:a2:f1:8b:c3:18:9b:d2:
e5:f5:02:5e:80:e7:6a:53:1e:54:9a:a0:34:b5:68:bf:cf:08:
1b:e6:e8:fb:d2:35:6e:dc:85:ed:54:65:d1:67:6d:36:df:4d:
41:79:a9:65:9c:13:df:9a:08:7c:f0:c9:72:38:3d:6a:d5:25:
73:87:79:65:69:fc:0f:75:e3:80:8e:db:b9:d6:96:2a:9d:d8:
ec:67:d5:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 20:23:38 2025 by rpki-client