Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A485A32CC0D611EF88F99F58762E951A.roa
File: A485A32CC0D611EF88F99F58762E951A.roa (raw, json)
Hash identifier: MgsGPQd4JYhOf9u66qPvwr1NQEnRpWQN90g69Enn8EU=
Subject key identifier: 20:19:7E:B7:AE:05:99:96:4A:1A:8B:D2:A7:04:EF:7B:39:09:69:4D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 011E64
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A485A32CC0D611EF88F99F58762E951A.roa
Signing time: Mon 23 Dec 2024 02:35:59 +0000
ROA not before: Mon 23 Dec 2024 02:35:55 +0000
ROA not after: Wed 10 Dec 2025 02:35:55 +0000
asID: 984
IP address blocks: 154.89.144.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 73316 (0x11e64)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 23 02:35:55 2024 GMT
Not After : Dec 10 02:35:55 2025 GMT
Subject: CN=6768cc8f-5fef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:86:3b:3e:1c:5f:98:ca:2f:61:01:48:c0:af:
d9:f6:b6:a5:2a:43:bb:92:85:44:c9:48:eb:84:5a:
63:80:66:fd:0c:90:f4:9a:fa:9e:28:1a:72:47:5c:
48:8b:91:a6:3e:58:e0:8f:1c:25:f4:41:31:6d:42:
6f:65:3a:f9:ae:7e:8e:d4:6a:f4:b8:c9:df:3b:fd:
ea:41:b9:59:69:65:f6:ac:4c:0c:a4:be:10:c0:e3:
53:e9:9d:ad:b5:86:60:5b:f5:65:19:6e:d2:9a:05:
c2:85:dc:d7:a6:e2:f1:9c:bb:38:b0:3e:0f:e8:8b:
0b:21:ea:c5:c5:de:a1:e3:42:1a:b9:f9:05:e9:4c:
72:ea:56:97:e2:0b:40:4d:86:1c:ad:3d:2a:ac:f5:
7b:71:ed:42:5c:7d:77:d5:85:fd:ac:2a:d9:5d:ed:
07:3e:df:78:ec:78:ca:7a:37:61:0f:e9:44:47:5d:
49:50:d2:41:42:94:d2:7f:10:4d:66:c0:58:83:65:
1a:11:32:90:84:d2:c6:5f:8a:00:9a:bf:de:50:62:
a1:fc:b6:ae:02:9a:60:74:03:2b:d6:8e:28:32:ed:
0b:cf:bb:71:73:6a:5b:bc:21:1f:7a:f4:7a:41:66:
56:0a:c0:bc:28:ce:cc:85:78:c8:ab:b1:12:98:d7:
10:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:19:7E:B7:AE:05:99:96:4A:1A:8B:D2:A7:04:EF:7B:39:09:69:4D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A485A32CC0D611EF88F99F58762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.89.144.0/24
Signature Algorithm: sha256WithRSAEncryption
47:15:f3:fd:67:28:78:37:bf:5c:c0:91:d0:71:ec:e4:9f:4e:
27:b6:4c:40:e7:f4:52:29:00:6c:04:0e:1f:5f:8f:ef:d3:30:
26:37:2a:db:56:31:08:d4:05:c6:f1:dd:87:88:6c:c4:b1:35:
11:55:ab:ca:cc:50:3d:d1:8e:d6:4a:c3:23:ac:e6:60:98:c3:
88:24:46:36:49:6f:fa:e0:a1:55:30:0b:a2:43:58:e1:dc:05:
85:02:75:7e:13:3c:87:55:ba:b2:eb:47:66:97:83:ba:32:d0:
60:82:8b:9f:d5:d6:6e:11:81:df:ed:c0:c3:ca:0d:65:85:a6:
83:51:2d:70:50:01:19:7f:db:fd:ca:d1:8a:dd:25:5a:de:3c:
78:7b:fb:16:ad:6a:fe:98:6f:cb:6f:11:1f:53:7b:5b:47:20:
b4:91:ab:7a:5d:31:39:bb:70:0b:4e:69:c1:19:a3:db:a4:d1:
2b:07:6c:be:bf:80:42:0b:3c:c4:6d:51:cf:a3:94:3b:80:67:
84:84:89:f2:87:d9:f8:de:1d:72:41:70:57:02:d9:91:72:85:
b9:8d:76:32:aa:c4:cd:1c:18:82:e8:b0:47:63:41:13:d3:59:
7b:87:32:81:cc:3b:dd:87:fa:4b:a4:ea:6d:30:63:8a:1c:66:
12:41:b0:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 01:53:15 2025 by rpki-client