Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8ED1E68EC41F11EF852E7A4A762E951A.roa
File: 8ED1E68EC41F11EF852E7A4A762E951A.roa (raw, json)
Hash identifier: N79MBKZ7VG0Qtghhgan6KvqPshUbO7iMgiYvUi6JQH8=
Subject key identifier: EB:F7:16:46:75:4B:34:29:9C:76:10:A2:FA:05:FF:F6:4E:D7:6F:36
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0129B1
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8ED1E68EC41F11EF852E7A4A762E951A.roa
Signing time: Fri 27 Dec 2024 06:55:29 +0000
ROA not before: Fri 27 Dec 2024 06:55:25 +0000
ROA not after: Fri 12 Dec 2025 06:55:25 +0000
asID: 984
IP address blocks: 154.201.43.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 76209 (0x129b1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 27 06:55:25 2024 GMT
Not After : Dec 12 06:55:25 2025 GMT
Subject: CN=676e4f61-37e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:1a:f8:1c:06:12:68:69:4b:19:c3:8a:9e:b3:
b7:1a:76:29:60:4c:3a:09:31:82:44:71:aa:59:f7:
a0:a1:1c:b8:ad:49:82:f5:28:ea:80:65:d8:f9:90:
bb:39:26:45:74:22:69:38:fb:68:79:27:85:0c:d5:
93:b0:ac:9c:c7:fc:87:55:b1:a2:f1:1d:59:00:b0:
ce:fa:71:91:20:a4:64:0c:93:a1:43:96:e4:78:35:
d6:53:df:18:97:7a:2c:05:4f:7e:73:d2:8e:c3:4d:
99:f6:2c:f0:41:8e:e1:d0:4e:a9:07:b3:43:44:98:
c5:42:c1:d0:07:0c:f4:39:c7:ef:6f:9c:f8:37:60:
00:3a:93:0d:a7:0a:2d:89:0e:3e:40:16:b0:6e:31:
b6:a8:ce:ef:b4:ed:1a:57:49:35:82:20:f6:2d:ca:
f0:6f:b6:88:f5:7e:31:6c:9b:93:e4:12:9e:bc:57:
61:49:d6:30:52:a7:ec:ad:ad:d2:6c:dc:f4:10:4f:
e0:9d:0a:a8:a9:9a:69:19:ea:fd:5a:3a:25:ef:dc:
4f:84:f3:fa:d4:d7:53:28:a1:d9:07:da:79:28:b8:
4e:22:03:81:7b:78:92:36:c0:27:1c:71:82:39:27:
40:26:7c:2f:3c:94:90:70:ec:22:b7:6f:18:11:23:
1e:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:F7:16:46:75:4B:34:29:9C:76:10:A2:FA:05:FF:F6:4E:D7:6F:36
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8ED1E68EC41F11EF852E7A4A762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.201.43.0/24
Signature Algorithm: sha256WithRSAEncryption
64:19:e8:c2:a2:8d:a1:f1:53:65:65:ed:12:28:9a:e4:d5:f4:
17:da:cf:bb:32:ee:b6:1f:94:f3:17:62:ce:d2:13:10:4f:02:
82:3f:f0:2d:c0:29:43:5d:e1:9c:dc:fd:49:cc:5e:5d:fa:43:
76:90:6e:2c:39:63:cd:9d:e8:51:f4:cb:d5:e8:f2:ed:65:e4:
3f:68:06:50:2d:70:e2:2a:88:03:8c:d3:60:7d:e5:cd:d3:d5:
c2:44:dd:54:3d:25:76:23:15:0a:8d:b9:0a:56:39:4e:f3:f3:
0b:ba:4f:02:13:7a:98:29:40:06:62:c3:2e:45:8f:f0:64:76:
ec:77:b4:fa:fc:d6:7a:20:20:bb:8e:b6:09:59:0e:03:e3:fb:
a4:ad:05:de:14:e0:1a:96:68:d1:f4:37:9a:4f:fd:0f:bd:8a:
f8:66:1f:d7:c2:6c:66:d6:a6:89:24:05:46:b7:43:79:dc:20:
b8:77:c2:25:66:9a:45:16:e2:6d:1a:0b:66:72:c0:e3:55:da:
70:77:9e:1c:d1:a0:fe:02:b1:73:6f:b8:5c:0b:b9:4c:3e:28:
b2:87:b8:43:df:8d:24:c6:8f:e5:f3:22:84:06:5e:f1:32:dd:
b3:56:9a:65:6d:e9:a8:92:4d:8b:c2:57:19:56:a1:c6:54:0d:
a5:db:fa:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 02:26:10 2025 by rpki-client