Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A4CDAC7CF47411EFA9ADCCB3762E951A.roa
File: A4CDAC7CF47411EFA9ADCCB3762E951A.roa (raw, json)
Hash identifier: 49D2YpNRIdCLvTU/g69IP2QtFGqDwbABEY86G3YspPM=
Subject key identifier: A5:5A:1F:05:D6:A5:08:B0:9E:03:94:50:70:F9:D6:C8:8B:BC:02:28
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01657A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A4CDAC7CF47411EFA9ADCCB3762E951A.roa
Signing time: Wed 26 Feb 2025 19:05:29 +0000
ROA not before: Wed 26 Feb 2025 19:05:25 +0000
ROA not after: Sat 19 Feb 2028 19:05:25 +0000
asID: 17561
IP address blocks: 154.218.36.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 91514 (0x1657a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Feb 26 19:05:25 2025 GMT
Not After : Feb 19 19:05:25 2028 GMT
Subject: CN=67bf65f9-632a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:02:2c:d3:dc:fc:a5:5f:88:b3:51:e3:a0:03:
91:ff:84:25:90:1c:53:58:d8:ac:7b:aa:7b:44:40:
81:cb:86:a5:b4:69:2e:03:03:a0:0d:d0:0e:d6:95:
d0:e2:a0:17:7e:ca:b7:e4:3e:93:7f:c1:99:40:99:
c2:bb:7f:bd:f0:f6:fd:23:9a:29:d0:d2:5f:3f:a0:
3d:fa:d6:6a:79:84:60:ea:19:9e:41:89:b0:83:4d:
42:22:b4:1e:27:9e:6b:0c:6e:9f:67:89:43:db:91:
63:14:d5:86:11:46:6f:4a:b7:dc:88:13:01:24:da:
39:05:e3:33:d1:c4:30:54:be:27:1e:f1:4e:43:28:
d9:32:de:f9:ef:cd:3e:01:21:35:ab:42:b6:7a:07:
2e:3f:e2:fc:2a:70:fb:98:63:17:be:89:64:d1:44:
ac:1b:14:7f:78:ce:0a:f9:fa:4b:a3:62:48:51:b8:
3c:be:73:b2:72:b8:95:59:42:2a:a7:64:b0:80:0b:
6e:0d:c4:ac:bb:e0:20:06:2c:4c:d8:1a:e9:4c:34:
6a:80:bf:0a:da:29:45:99:bc:03:24:f9:0c:50:43:
eb:27:1e:57:08:67:88:7b:9d:01:6a:40:67:4a:b5:
de:08:d1:65:24:9f:4d:d8:66:ad:9d:68:e6:36:65:
ae:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:5A:1F:05:D6:A5:08:B0:9E:03:94:50:70:F9:D6:C8:8B:BC:02:28
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A4CDAC7CF47411EFA9ADCCB3762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.218.36.0/24
Signature Algorithm: sha256WithRSAEncryption
42:9c:9c:c4:d8:96:a1:f7:1b:9e:54:03:92:98:de:6f:7b:20:
2d:0c:de:0a:99:6c:38:5c:7b:f4:22:63:f4:fc:64:66:11:85:
a0:d9:3e:9f:9a:cb:59:34:53:38:5a:08:42:6c:7e:b9:e1:a1:
12:db:a3:ee:e1:e5:ce:df:94:1a:34:5c:90:6c:13:7c:f6:43:
4f:b2:5b:b1:c0:66:92:90:90:52:d4:45:a0:ca:8e:2a:a9:50:
f5:cc:85:53:a1:68:f5:cc:7e:20:97:d6:ca:a0:c0:83:e2:4f:
53:e0:8d:b6:83:c4:a5:44:dd:c6:c5:17:07:34:59:02:aa:4f:
b6:a4:bd:d6:0e:fa:54:09:02:cb:43:9a:d4:77:af:38:79:09:
55:bf:c0:c7:ef:4f:a9:25:a9:15:d5:33:57:94:87:3c:49:56:
19:b9:ee:9a:69:6a:10:ba:90:1d:1e:cc:3d:56:3f:91:c6:83:
4d:87:f0:c9:7e:73:db:ed:be:60:ee:04:0c:ed:27:b9:bc:d9:
99:f6:30:12:1c:36:66:52:42:47:db:28:d4:f0:3a:42:24:c6:
95:dd:0f:64:c4:bd:40:67:b5:10:e0:f6:8b:5c:96:f8:5a:bc:
e7:5f:d2:0b:29:fa:ab:45:8b:7a:43:c4:52:20:f8:7d:b0:71:
07:ae:81:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 00:46:45 2025 by rpki-client