Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A6B1A1F2C40D11EF86AD1759762E951A.roa
File: A6B1A1F2C40D11EF86AD1759762E951A.roa (raw, json)
Hash identifier: 51ICSmcwuIa+splz0epEDfQtD57E3cmZfzYyxuGe/tY=
Subject key identifier: 34:83:83:1F:F1:11:84:8A:EE:30:68:B7:71:E8:37:64:B7:C6:A6:E4
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01292F
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A6B1A1F2C40D11EF86AD1759762E951A.roa
Signing time: Fri 27 Dec 2024 04:47:18 +0000
ROA not before: Fri 27 Dec 2024 04:47:15 +0000
ROA not after: Fri 12 Dec 2025 04:47:15 +0000
asID: 984
IP address blocks: 154.196.225.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 76079 (0x1292f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 27 04:47:15 2024 GMT
Not After : Dec 12 04:47:15 2025 GMT
Subject: CN=676e3156-4ddf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:ea:05:93:af:bb:95:e8:bb:0f:a3:dc:58:52:
ce:89:1e:41:7e:db:aa:da:11:54:7d:c9:63:78:f8:
38:9d:59:47:e5:a2:e3:6c:e1:f8:43:a1:b8:98:0d:
d3:5f:e4:41:2a:c3:e1:0d:a8:15:36:bb:3d:43:a5:
98:ee:72:8b:a3:04:04:73:4f:d9:e7:31:0d:9e:e8:
60:b8:d2:e4:24:48:d1:4f:a3:e8:83:b9:92:09:ec:
54:52:e9:6f:28:21:27:29:a6:c4:b0:ab:78:40:ea:
a0:3f:6d:b7:b4:5d:ff:1d:32:a6:73:21:0d:4e:0c:
77:48:ca:cd:f5:57:07:82:b5:29:ef:6e:28:2b:6d:
16:99:db:d3:fb:e0:1e:e1:7b:06:70:8e:f9:c5:67:
75:87:d9:95:96:5c:4e:7d:8e:a2:f0:0e:d4:ad:73:
73:7c:68:07:35:b3:8e:ca:8c:a0:0a:d3:66:c4:c1:
66:f2:df:23:f6:2c:0f:eb:37:cf:89:32:f3:13:76:
74:80:d5:cc:bb:07:3c:0c:4e:68:29:07:c4:b9:fa:
2f:e1:5b:aa:bf:f2:10:44:65:0e:f6:cb:4d:eb:3e:
fc:40:ef:4e:6d:0a:6d:74:03:cf:88:59:cc:6b:de:
0e:2b:20:2f:5e:79:34:df:5d:e7:64:71:28:07:2f:
fe:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:83:83:1F:F1:11:84:8A:EE:30:68:B7:71:E8:37:64:B7:C6:A6:E4
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A6B1A1F2C40D11EF86AD1759762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.196.225.0/24
Signature Algorithm: sha256WithRSAEncryption
60:d7:bf:2d:4e:4a:db:12:b4:3e:0e:5b:77:5d:f0:a0:64:35:
ee:73:84:ef:4d:6a:70:39:5a:ba:07:79:e3:b8:4c:f7:4b:e6:
91:c8:10:5c:05:e8:17:af:3c:70:11:af:89:27:1b:c6:15:04:
cc:68:28:ab:07:49:42:0f:f5:48:62:94:bf:0d:42:8c:08:0d:
04:a0:eb:c8:74:cd:30:0c:a6:4d:e5:89:00:18:72:0a:8b:ee:
dd:32:39:d3:14:91:c3:8b:37:da:d7:fc:09:c0:e6:a4:ee:24:
5f:57:80:b2:e9:32:6a:41:8b:51:50:65:7e:1a:e9:e4:55:9a:
87:9b:d2:f3:2d:e4:ab:ef:7f:b3:64:3c:1e:00:d7:6c:14:d7:
c3:36:2f:01:4c:ad:d2:44:bf:8e:95:89:03:92:ed:55:58:b6:
3d:1c:5c:9b:93:6a:57:ff:69:04:8c:71:f4:e9:0e:04:0d:fb:
4e:ca:e5:8a:4d:1e:49:49:06:9e:15:ce:7e:71:62:41:e8:2b:
f4:16:b9:ea:a5:35:14:bc:1d:bb:7f:51:96:80:d8:96:3c:55:
43:1b:fd:05:52:a7:c0:27:0a:78:38:64:74:24:86:1a:a9:bb:
d7:bf:5d:3d:04:25:8c:74:02:43:c8:1d:ea:8a:c2:0f:ac:18:
13:9b:e5:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 11:12:02 2025 by rpki-client