Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9B103F1EC60311EFAAFEECBB762E951A.roa
File: 9B103F1EC60311EFAAFEECBB762E951A.roa (raw, json)
Hash identifier: hJiCKER1mPjGjRBCF56ATgQdl+ydXWLibTNfufX9Kq0=
Subject key identifier: 6D:AC:B6:6B:82:90:D0:6F:6C:90:32:08:98:BA:EF:BD:79:E2:DB:A1
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 012E74
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9B103F1EC60311EFAAFEECBB762E951A.roa
Signing time: Sun 29 Dec 2024 16:40:26 +0000
ROA not before: Sun 29 Dec 2024 16:40:22 +0000
ROA not after: Sun 12 Dec 2027 16:40:22 +0000
asID: 17561
IP address blocks: 154.217.29.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 77428 (0x12e74)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 29 16:40:22 2024 GMT
Not After : Dec 12 16:40:22 2027 GMT
Subject: CN=67717b7a-bff7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:cf:1f:80:1d:90:8e:62:dd:d0:04:e9:0f:8d:
f2:41:18:2d:41:06:1e:54:9b:73:0c:62:a2:08:13:
48:b8:b4:25:76:54:27:5b:64:25:e1:4c:36:de:15:
b0:f8:c1:66:64:02:ae:71:8b:84:ce:03:57:b3:09:
9b:66:b9:ad:fe:6c:c5:e4:45:e0:6a:ce:4d:50:40:
cb:55:bf:7f:28:6d:f1:85:24:01:39:45:df:d2:db:
37:e4:2c:9f:0b:95:8f:62:17:47:ef:5c:80:2a:96:
ea:a0:55:ea:c4:83:bb:09:9f:a9:01:22:39:69:19:
12:59:fe:4e:bd:a4:e6:39:ca:7d:14:4a:0d:f6:1c:
cf:23:ee:e9:00:36:68:e7:c0:61:41:8f:15:1a:63:
b2:33:25:b7:3a:88:78:ab:69:c5:1f:bd:f8:b9:d8:
a3:b6:aa:6a:f3:af:2f:2e:d7:09:76:e4:60:84:a9:
71:ca:3a:f6:65:a7:85:19:b1:12:e3:28:c8:a4:7e:
55:58:9c:f9:37:14:d4:8d:d9:e4:0c:0d:de:78:5a:
d1:f6:2b:48:b5:e6:4f:ff:1e:3e:ed:16:92:eb:67:
12:88:9d:21:11:7b:61:d9:38:d9:20:30:8b:81:d3:
76:92:48:15:0b:a3:cd:de:8c:cc:e8:7f:9e:4c:8b:
b8:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:AC:B6:6B:82:90:D0:6F:6C:90:32:08:98:BA:EF:BD:79:E2:DB:A1
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9B103F1EC60311EFAAFEECBB762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.217.29.0/24
Signature Algorithm: sha256WithRSAEncryption
03:7a:d6:39:d7:e1:84:97:b2:19:89:2b:fa:12:14:c2:75:46:
9a:8c:f5:c2:14:84:62:9d:f5:14:8e:54:a2:f8:39:87:75:3e:
59:ad:a6:b1:bc:20:4b:fe:a9:3d:e2:b8:7d:42:8a:1b:b2:37:
0e:d0:f8:69:10:69:ca:ae:21:22:69:50:57:3e:06:aa:7f:91:
5f:4a:0c:54:52:a5:23:eb:9e:dc:c1:1b:9e:ad:ae:35:62:d2:
d2:af:c6:f0:1f:52:b9:6e:b3:d8:a6:7e:91:58:cb:9f:c2:c1:
21:9c:58:74:7b:9e:3c:3e:aa:1f:75:ce:55:37:ca:59:dd:79:
0b:3c:98:96:27:e2:d4:64:f3:fe:79:9e:ac:1a:01:3d:c7:c8:
32:31:6d:9d:7b:93:d7:05:90:48:c1:fd:71:1e:7e:af:e1:3a:
86:ce:6a:f6:75:a9:18:e2:95:9d:d1:fd:53:be:fb:ae:a2:b2:
ac:7b:e8:80:f6:70:5a:fa:ef:00:67:f2:c2:3b:61:68:05:fc:
f4:4d:b4:3e:19:dd:7d:e0:5b:86:60:d5:39:ba:37:2f:c1:c5:
88:8e:d7:47:1a:2f:21:1d:0a:00:ab:e0:75:67:61:75:1f:b6:
5d:e6:3b:87:89:44:70:29:47:c0:a9:81:c2:a8:68:2e:18:29:
76:6e:cf:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:57:35 2025 by rpki-client