Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9DBB7ECCC26B11EF991B5C71762E951A.roa
File: 9DBB7ECCC26B11EF991B5C71762E951A.roa (raw, json)
Hash identifier: D3WGINGSsr7S88q3/cEn8U7cSG7Z/9y4xGv7YicxiY0=
Subject key identifier: FA:CB:51:7D:38:CE:00:B1:2E:FB:CB:F9:94:25:17:CA:97:D1:F6:B9
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 012428
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9DBB7ECCC26B11EF991B5C71762E951A.roa
Signing time: Wed 25 Dec 2024 02:54:54 +0000
ROA not before: Wed 25 Dec 2024 02:54:50 +0000
ROA not after: Wed 10 Dec 2025 02:54:50 +0000
asID: 984
IP address blocks: 154.211.160.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 74792 (0x12428)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 25 02:54:50 2024 GMT
Not After : Dec 10 02:54:50 2025 GMT
Subject: CN=676b73fd-1227
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:2a:3f:88:df:58:4b:df:f0:5f:68:c1:77:de:
0a:f1:43:a7:6d:d6:ea:1b:72:cf:b3:31:12:16:f8:
c5:0d:06:28:81:76:76:30:c3:77:db:d1:c9:2e:d2:
bd:67:fa:93:fe:e7:6e:ac:04:d8:0e:9a:d3:9d:b5:
10:c7:35:7a:31:6e:e3:cc:9d:aa:c4:cc:be:25:b1:
f0:a4:03:cd:23:da:56:c2:3d:78:93:fc:1b:93:0e:
8f:2e:33:f9:d4:3d:5e:54:da:65:34:f0:a9:ed:8a:
18:15:16:8f:09:e8:98:b1:5a:eb:13:a0:2f:f7:b1:
f7:8b:05:0e:42:0d:b0:93:7b:94:ab:16:a9:e4:e2:
ad:a6:67:90:5c:07:58:db:23:88:1c:bf:4b:68:73:
fc:5f:0d:54:c2:f2:8e:f8:8d:ad:b4:93:11:98:4c:
27:54:60:da:01:b5:6f:09:99:7b:0a:a4:19:06:77:
7b:e1:b9:a9:fc:ce:c9:58:99:a9:34:d8:5e:e3:e5:
63:42:08:52:c7:89:fb:22:45:48:c6:9e:9a:05:d9:
ff:57:ca:7a:20:1f:f9:5e:6a:2b:20:f9:15:3f:05:
7b:7a:19:68:ec:8c:91:38:cf:44:3a:a1:af:16:82:
8b:96:0d:5e:a7:1b:58:72:30:65:46:38:1a:31:d9:
54:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:CB:51:7D:38:CE:00:B1:2E:FB:CB:F9:94:25:17:CA:97:D1:F6:B9
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9DBB7ECCC26B11EF991B5C71762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.211.160.0/24
Signature Algorithm: sha256WithRSAEncryption
a3:23:e3:d0:bd:89:7c:c5:93:5e:be:a6:3e:e7:56:f0:b3:98:
94:21:4a:f2:a1:88:86:21:ab:a3:7d:bc:b9:6a:5b:ec:9e:51:
db:15:58:9e:ad:f1:75:10:d5:b5:cf:a8:20:77:2f:35:e5:1b:
ec:14:fb:f4:8e:b0:40:8c:54:a0:ed:af:d1:3c:03:5e:f3:c8:
14:cd:82:b4:57:e1:b4:c3:eb:69:11:24:c3:cc:89:7a:ff:fe:
d3:97:af:5e:62:14:d7:b1:b6:21:a4:1e:39:73:84:32:6c:eb:
7f:35:3f:2c:d3:cb:48:ea:0c:9f:94:ea:8a:78:76:2f:d9:29:
ae:01:ed:72:c6:f2:0a:a9:9d:6d:20:a2:dd:90:da:08:69:42:
27:d8:7e:21:e2:80:b9:51:f3:49:17:64:d2:ff:69:35:01:e3:
65:96:2f:46:9c:0a:db:f2:d5:cd:52:8e:e0:62:ed:89:ab:e7:
58:36:1a:83:73:c8:64:e2:11:72:ec:fd:4c:ba:17:d9:bc:d0:
60:2b:b5:17:49:32:42:ed:e9:8d:5d:90:53:92:d7:89:ee:ea:
a1:a1:8a:c3:38:90:48:04:04:d2:03:96:28:55:da:27:71:fa:
ea:07:f1:66:67:fe:2d:fe:9c:e1:30:bd:bf:f1:2c:2f:b5:9f:
55:15:a8:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 20:00:48 2025 by rpki-client