Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A0170736D8C811EF9F02FA82762E951A.roa
File: A0170736D8C811EF9F02FA82762E951A.roa (raw, json)
Hash identifier: /csV48O+2m8Vc11hzMhh6BcUmIHu78wiYzeeBQsiFvo=
Subject key identifier: 3F:AC:E4:DE:F5:96:8F:CA:B4:CE:9C:1B:D3:7E:84:87:3A:91:2F:AE
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 013F94
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A0170736D8C811EF9F02FA82762E951A.roa
Signing time: Wed 22 Jan 2025 13:56:06 +0000
ROA not before: Wed 22 Jan 2025 13:56:02 +0000
ROA not after: Tue 01 Apr 2025 13:56:02 +0000
asID: 63139
IP address blocks: 154.93.76.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 81812 (0x13f94)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Jan 22 13:56:02 2025 GMT
Not After : Apr 1 13:56:02 2025 GMT
Subject: CN=6790f8f6-ac63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:f3:4c:ae:51:2f:a5:c8:af:eb:1e:f1:fa:35:
3c:61:41:d6:fc:dd:6e:12:b3:85:d3:99:9c:a5:69:
fe:50:86:6e:b6:00:45:51:53:06:39:1d:36:92:6f:
0d:52:00:c4:00:7d:28:2e:bb:21:7b:b7:8c:64:3b:
a6:23:05:36:c8:58:2c:4b:85:44:8d:c5:77:d0:06:
91:ca:fb:71:61:61:6d:57:ab:bd:81:40:f8:ec:6f:
01:c4:28:c1:cd:1f:07:9b:eb:93:95:74:94:c0:d5:
c7:3a:57:77:d8:bf:a9:74:7d:d0:f8:3f:37:87:b7:
e9:e9:34:16:9b:e9:76:65:ba:51:d0:34:27:07:d6:
92:e5:6b:0f:bd:d9:9e:6f:d4:19:0f:b1:2a:69:69:
34:2f:e6:0d:22:6d:6a:36:f2:59:e1:1b:fd:26:14:
ef:96:87:b6:6e:e6:01:87:0b:91:10:a1:0a:3d:c8:
8b:e8:2e:89:3c:10:6d:10:74:02:14:c1:2d:c9:76:
bb:ca:46:04:78:a2:68:47:30:c6:84:1b:18:59:6c:
3e:24:a8:73:5f:bc:2b:52:54:f2:a3:48:a7:c1:b9:
f8:5f:bd:85:dc:5d:0d:2c:ab:18:38:04:71:59:4d:
a4:b5:87:2f:4d:ec:e5:be:6f:6a:34:8c:76:61:e2:
a2:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:AC:E4:DE:F5:96:8F:CA:B4:CE:9C:1B:D3:7E:84:87:3A:91:2F:AE
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A0170736D8C811EF9F02FA82762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.93.76.0/24
Signature Algorithm: sha256WithRSAEncryption
06:61:fc:d2:26:92:25:2c:8e:f1:0a:83:ee:18:67:30:c7:cd:
10:43:5d:9f:58:17:4a:35:ef:0c:db:d7:76:d9:a6:2b:17:e2:
04:58:d6:22:af:7f:6a:b4:14:f3:f5:20:47:2b:3a:41:e8:f8:
2b:cb:0b:a1:de:d6:54:ae:3a:26:e6:51:5c:cc:a7:43:51:15:
aa:80:83:bd:a3:3d:53:d2:fe:ce:f0:98:bd:4b:4c:03:b5:76:
fa:92:3c:d6:a5:39:54:a4:29:f1:19:4e:0b:a6:dd:0a:ae:9a:
50:13:50:b6:11:92:c8:bd:91:59:33:cf:d8:48:bc:df:65:9a:
18:b1:41:59:7f:96:b0:fb:a6:20:84:a9:3c:29:07:3c:2c:f4:
ab:0d:ef:6c:04:4e:0e:49:56:45:3d:00:10:80:63:51:1a:ce:
ef:35:f6:12:0a:d8:b9:3d:88:9d:2e:d7:30:97:ff:1b:3f:55:
db:e9:a2:35:2b:79:a7:b1:b8:e9:2e:11:43:1b:f0:7f:48:ac:
9d:71:0f:03:f2:36:30:ee:2e:95:f9:92:ae:c0:04:1e:12:59:
42:bb:6b:ab:43:05:55:36:bb:58:de:14:31:4b:93:8e:1c:4f:
ef:6f:78:a6:2a:bf:d2:ad:e3:36:44:52:68:8c:31:85:f2:99:
f2:ac:6c:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 04:54:12 2025 by rpki-client