Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9F0E9FBEF81911EFBF9863A1762E951A.roa
File: 9F0E9FBEF81911EFBF9863A1762E951A.roa (raw, json)
Hash identifier: Jwaassw41+Ii94aq/dNitTHgkZ20zqi2ueSN6bjhoWY=
Subject key identifier: 86:AF:AB:AB:DC:B9:12:1A:CF:3D:27:41:95:2D:B2:F9:3C:CA:03:56
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01700E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9F0E9FBEF81911EFBF9863A1762E951A.roa
Signing time: Mon 03 Mar 2025 10:24:00 +0000
ROA not before: Mon 03 Mar 2025 10:23:56 +0000
ROA not after: Wed 30 Apr 2025 10:23:56 +0000
asID: 136907
IP address blocks: 154.93.104.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 94222 (0x1700e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Mar 3 10:23:56 2025 GMT
Not After : Apr 30 10:23:56 2025 GMT
Subject: CN=67c58340-fdc6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:c5:a7:a9:4e:37:8b:16:97:02:c4:cc:da:3d:
21:1e:92:5d:ed:d0:f6:8d:38:1a:d7:82:02:c8:68:
e2:9f:ac:c6:53:5b:14:3c:a9:16:4e:3a:7d:20:39:
05:57:02:2f:3a:03:ce:a6:b7:bd:f6:33:93:4d:94:
33:e1:0e:79:51:ff:0c:ae:ca:79:61:3e:83:3f:1a:
c4:9e:a9:9a:8f:6b:1c:87:b5:50:89:dc:85:19:3c:
d1:53:22:e9:33:37:d6:10:76:7a:88:50:16:61:4f:
02:a5:f0:29:89:d6:6d:f2:ff:a0:bd:20:fb:43:09:
da:93:72:d2:73:1c:0d:f5:51:1c:bc:e3:a0:94:8d:
07:24:5e:70:e8:42:5d:aa:42:6c:c5:8e:bd:87:a1:
ac:ed:2a:a0:ea:b1:ac:70:88:f8:a4:25:93:48:59:
7d:31:bf:4d:8f:c3:50:a8:d9:2a:6d:fb:9e:1d:e3:
b0:f8:6f:30:68:2d:bf:98:da:2b:10:ac:cb:f1:a6:
d6:17:e7:57:57:f7:2a:d3:94:33:0d:94:84:04:ed:
f0:95:31:be:6c:c7:ef:2e:92:46:06:90:a7:06:53:
25:53:26:14:7f:e9:da:f1:e8:fe:a6:9c:aa:c5:a1:
3f:7b:f2:4c:fd:82:86:80:d7:0e:ee:23:6d:ce:25:
a7:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:AF:AB:AB:DC:B9:12:1A:CF:3D:27:41:95:2D:B2:F9:3C:CA:03:56
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9F0E9FBEF81911EFBF9863A1762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.93.104.0/23
Signature Algorithm: sha256WithRSAEncryption
0c:48:ea:bd:7e:c9:3a:5e:7f:ff:d6:bb:2f:0f:bf:e7:f7:32:
c3:a2:07:25:b0:82:ca:06:0b:f8:5e:c8:ca:89:c7:5c:3c:ae:
d4:ee:58:40:1c:b6:ea:68:a1:05:04:00:5f:1f:84:8d:03:b1:
f6:f8:eb:c5:11:76:0f:ad:25:24:90:e2:00:ed:16:cd:d8:dc:
a9:a4:5a:2e:53:31:6c:f4:67:aa:99:bd:da:60:03:02:88:ad:
cf:20:17:de:31:c5:5a:0b:e2:7d:67:06:59:4f:01:2c:04:75:
12:1c:f9:76:27:f6:11:c6:6d:6e:45:57:1c:d6:72:a1:80:f5:
1f:41:2a:1c:c7:31:35:42:c6:49:68:e0:f9:cd:53:25:9e:a2:
82:e9:37:dc:62:12:01:c3:a1:c8:f2:2b:3d:61:77:35:c6:b0:
bb:d5:b1:9d:3a:ed:48:07:d5:a8:7b:35:f5:6c:2a:9e:b8:3b:
1f:19:e9:37:15:20:65:5b:b9:e1:8a:63:e0:2b:a9:a8:53:81:
72:81:00:fe:d9:f1:84:14:c0:24:90:8d:aa:b5:e0:a4:9a:46:
53:be:70:25:c6:c0:a6:a2:de:14:a0:40:e2:3d:db:0e:03:9e:
ed:e2:9a:2d:20:3d:88:84:e6:0a:3a:22:e1:df:a5:f7:53:4b:
3f:66:a5:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 20:21:16 2025 by rpki-client