Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/976B784CFF1511EF80B0AC8F762E951A.roa
File: 976B784CFF1511EF80B0AC8F762E951A.roa (raw, json)
Hash identifier: Lnw0Ao3ybMg1sZzHtKqPVQJzTemDAX9JjQBCmzSJ5xo=
Subject key identifier: F1:56:3A:06:B9:35:E6:78:4F:83:B4:3D:36:32:46:83:D1:8A:42:F2
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01739D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/976B784CFF1511EF80B0AC8F762E951A.roa
Signing time: Wed 12 Mar 2025 07:42:47 +0000
ROA not before: Wed 12 Mar 2025 07:42:39 +0000
ROA not after: Mon 05 May 2025 07:42:39 +0000
asID: 398993
IP address blocks: 154.90.224.0/19 maxlen: 24
154.92.176.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 95133 (0x1739d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Mar 12 07:42:39 2025 GMT
Not After : May 5 07:42:39 2025 GMT
Subject: CN=67d13af7-2088
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:e7:8b:34:25:89:0b:23:90:f7:10:02:d7:39:
3e:5e:0f:e2:d4:eb:70:07:7e:dc:5d:69:21:69:08:
ca:e1:49:14:5f:ea:86:83:e0:df:51:6d:39:bb:0f:
08:cb:35:5a:3d:dc:11:1e:60:59:0b:ae:b1:6f:0d:
ba:da:28:0e:10:4e:6c:4c:84:43:8f:f1:e3:de:d8:
4a:8e:80:fd:7f:a5:dd:84:b5:f8:b6:22:ec:34:80:
72:86:78:dc:93:68:0a:e8:53:15:66:98:ca:39:87:
c2:7d:f1:79:b9:d2:12:3f:04:d5:a3:98:66:94:11:
7c:96:ed:69:e4:f9:92:04:73:08:54:b4:82:42:6d:
76:28:f8:f1:61:96:c2:00:19:ad:a0:e0:a4:60:4a:
78:99:96:91:42:6d:2d:0f:9e:d5:2c:f4:cd:11:29:
ad:18:f1:19:df:e8:ee:c0:fa:13:65:dc:bf:ae:75:
1e:19:af:c5:b2:99:b4:b2:8d:24:d0:06:9a:06:30:
67:bd:85:d4:24:23:24:6d:1f:30:59:f2:33:a8:94:
ab:80:42:3a:f2:45:96:ad:2a:21:ff:7a:b2:9a:a8:
33:22:e2:e6:83:74:5b:a7:e5:bc:7f:ac:31:3c:dd:
47:34:88:61:80:a0:37:e4:75:70:39:20:6b:fa:ec:
e3:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:56:3A:06:B9:35:E6:78:4F:83:B4:3D:36:32:46:83:D1:8A:42:F2
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/976B784CFF1511EF80B0AC8F762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.90.224.0/19
154.92.176.0/20
Signature Algorithm: sha256WithRSAEncryption
04:7c:9f:24:10:93:60:d7:8e:61:30:00:b0:d4:21:a2:e2:98:
1c:54:c5:7b:ab:86:56:3c:d6:72:d4:27:af:36:9f:8f:dd:eb:
f7:72:aa:bf:66:f1:f3:cb:0a:0b:0b:0c:6a:08:70:9d:5c:76:
ee:b5:22:ae:09:b3:62:bf:b6:ef:89:08:b3:2b:df:b9:cb:2b:
50:93:ba:d0:67:a4:0c:24:22:d9:fa:b8:c4:f2:70:16:96:4f:
29:c2:1f:41:67:fa:88:1c:48:4b:8e:1c:df:85:94:ee:b0:43:
b1:20:54:d7:d9:45:99:df:b5:13:e6:30:9f:2f:04:20:c2:ec:
db:bc:54:85:a2:51:09:a3:81:b5:c0:31:b3:58:0b:3f:7a:11:
c9:7f:4f:79:d2:98:39:32:02:ac:fb:aa:69:05:ad:2d:6f:91:
ad:18:13:7f:51:b0:79:dc:42:dc:81:31:0c:29:36:d6:d2:90:
1f:ee:e5:ab:6f:b4:f5:d1:82:f5:b6:f9:56:b4:86:cc:a3:33:
c8:ec:d3:3c:f8:b3:ba:46:64:a7:79:79:0d:e7:cc:ad:61:4b:
e8:87:cb:f2:34:a9:1d:e6:7d:0b:01:6e:5b:7a:b0:6f:af:fe:
6f:a8:9e:93:df:21:22:81:b0:3e:b7:88:4e:9c:22:70:12:51:
a6:e5:96:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 03:54:18 2025 by rpki-client