Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A6FB1D0CC1B811EFB4AF7E70762E951A.roa
File: A6FB1D0CC1B811EFB4AF7E70762E951A.roa (raw, json)
Hash identifier: 4Nu7My21Rbso8yRPKssrRXCE4Zfifcg/FS+DlIiXODU=
Subject key identifier: B0:05:11:CD:A4:A7:0B:7C:7A:DD:20:29:6E:FF:99:9E:14:31:1D:6C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0121CF
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A6FB1D0CC1B811EFB4AF7E70762E951A.roa
Signing time: Tue 24 Dec 2024 05:33:49 +0000
ROA not before: Tue 24 Dec 2024 05:33:46 +0000
ROA not after: Wed 10 Dec 2025 05:33:46 +0000
asID: 984
IP address blocks: 154.193.161.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 74191 (0x121cf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 24 05:33:46 2024 GMT
Not After : Dec 10 05:33:46 2025 GMT
Subject: CN=676a47bd-1701
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:7b:be:ad:0b:5b:04:f7:a8:c6:f5:e2:f3:ab:
a4:83:f8:b8:28:4f:b5:44:3d:9e:7c:4d:02:55:90:
bd:99:d4:86:4a:30:89:9f:88:86:e9:74:de:cf:39:
01:d2:d3:4a:22:fa:f6:ab:b2:4c:d6:0b:c5:88:50:
0f:22:db:ac:fd:6a:54:cc:82:6f:81:12:d8:60:68:
e3:46:29:61:f9:f7:1a:61:06:f7:7c:e1:a1:b8:ef:
04:41:c5:76:41:46:4c:af:8c:24:6b:07:6a:a2:fd:
02:45:66:7c:bc:dd:aa:2c:c7:c7:1f:85:ad:90:f1:
8e:dc:78:23:3c:80:a1:eb:05:d0:83:27:78:40:b5:
1f:01:60:48:d6:db:f1:03:00:fc:82:15:e9:9c:cb:
54:6a:3e:07:e5:97:4d:15:9e:de:d9:db:d5:6b:97:
b0:0d:31:75:ec:d9:80:ff:f5:32:d7:eb:93:5d:68:
5c:91:e8:9d:7c:44:9d:8e:08:89:ad:22:1d:93:6f:
b6:1a:8c:0e:5b:7e:ed:93:57:6b:e1:bb:1e:db:e8:
57:9e:ad:19:ba:32:a7:2d:23:df:a5:55:65:10:4e:
62:8f:30:17:c0:cd:06:be:11:a8:0b:ab:0a:fc:4a:
65:55:09:8a:4a:63:ce:45:84:d0:ce:3f:48:f6:de:
24:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:05:11:CD:A4:A7:0B:7C:7A:DD:20:29:6E:FF:99:9E:14:31:1D:6C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A6FB1D0CC1B811EFB4AF7E70762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.193.161.0/24
Signature Algorithm: sha256WithRSAEncryption
13:8b:32:04:90:49:8f:33:fa:75:23:89:d3:c1:13:e3:b9:f8:
89:fb:de:5b:bb:eb:50:53:4b:e3:cc:f0:8f:ce:db:51:61:df:
19:bb:2b:e9:77:59:7b:44:62:1c:f3:77:b1:33:d4:df:27:dd:
ba:77:d5:56:08:ba:a8:1c:3c:94:b0:1b:02:d5:90:f4:39:ac:
a4:65:53:8b:63:93:dc:96:f5:65:fa:03:36:cf:31:f3:e2:b7:
35:35:b4:45:a6:37:a5:c8:18:c8:a2:77:36:8f:7a:8d:ee:c6:
c3:44:72:69:d8:1c:6c:86:8c:14:06:01:93:10:70:16:4f:28:
c7:28:94:a4:10:7f:40:0f:f4:2e:1d:29:e0:76:48:d8:36:f2:
31:9c:fc:85:b8:2c:0c:32:ad:54:52:31:d0:95:4e:39:70:0c:
43:1b:29:ac:c3:86:8c:aa:8a:22:f8:8d:78:b5:27:ec:94:f1:
aa:41:f3:78:7e:f6:5a:73:a9:d3:8a:99:0f:ce:92:70:d1:af:
f0:21:b6:0c:f3:1a:ec:16:85:8e:a4:d4:42:fb:0e:8f:0f:3c:
f0:c6:29:b1:81:22:18:08:4d:17:5c:3e:48:e5:8d:83:3f:43:
5e:8f:7c:e7:ea:fd:82:bd:53:63:15:5d:4d:77:4c:91:8c:ba:
ea:11:13:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 22:16:09 2025 by rpki-client