Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A72F4986C25F11EFBBFF5F96762E951A.roa
File: A72F4986C25F11EFBBFF5F96762E951A.roa (raw, json)
Hash identifier: 4OUZ0Ni1kHIdFcM8tFpYKm3eQSp1jVcW9TntT+kY0n0=
Subject key identifier: 3C:2C:E1:0F:A8:87:2F:3A:AA:30:96:82:B7:65:BF:F0:A1:33:51:96
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0123A2
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A72F4986C25F11EFBBFF5F96762E951A.roa
Signing time: Wed 25 Dec 2024 01:29:15 +0000
ROA not before: Wed 25 Dec 2024 01:29:12 +0000
ROA not after: Wed 10 Dec 2025 01:29:12 +0000
asID: 984
IP address blocks: 154.199.94.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 74658 (0x123a2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 25 01:29:12 2024 GMT
Not After : Dec 10 01:29:12 2025 GMT
Subject: CN=676b5feb-726e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:d1:be:da:2c:d3:c0:99:1e:65:c7:f4:b6:65:
5b:1c:9a:20:93:57:ab:37:00:a6:93:41:8d:eb:b3:
a1:ec:75:81:52:e5:bf:3b:2f:64:78:38:6d:c7:e0:
ff:88:5b:81:0b:b1:67:b9:c9:a9:74:78:f7:01:81:
50:83:62:cf:a1:e5:15:6a:69:3d:f4:67:5d:a0:4f:
8f:d0:07:30:40:4d:f9:2b:5b:00:d8:de:84:0d:72:
be:3f:f1:d5:3c:d8:9a:ee:2b:f8:8d:4f:27:71:40:
db:c3:2e:2e:36:42:ca:c8:98:ce:f3:22:e5:19:90:
b8:1c:68:21:35:8a:d0:98:98:46:8b:fe:64:a9:08:
b3:31:b4:95:f7:17:d3:9e:de:6f:14:35:90:7e:4c:
49:83:b7:d8:72:ed:d4:ec:39:3b:ec:36:e3:2f:e8:
ee:54:e8:51:16:3a:0f:0f:1f:16:09:07:b9:97:cb:
10:f5:c4:1a:1f:81:98:4e:4a:2c:91:01:b3:e2:16:
57:8d:90:3b:e3:37:1f:b9:26:c9:18:cf:bc:c1:86:
17:76:f4:c9:90:44:f0:d6:02:59:7c:8a:5b:6f:b2:
4a:48:f9:92:14:e8:54:a6:a0:f1:ac:46:7a:58:1c:
65:8b:8c:cf:85:8b:85:42:e9:0b:c3:54:30:3b:a2:
e7:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:2C:E1:0F:A8:87:2F:3A:AA:30:96:82:B7:65:BF:F0:A1:33:51:96
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A72F4986C25F11EFBBFF5F96762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.199.94.0/24
Signature Algorithm: sha256WithRSAEncryption
b0:43:69:a9:42:96:d4:16:eb:26:9e:8f:a6:9a:d2:1b:b0:06:
f6:5d:fd:58:96:19:47:ba:20:e2:ac:cf:24:dd:71:46:5d:0b:
d9:d1:ae:a1:f5:bb:39:5f:5b:a9:2b:43:d5:b9:58:29:7e:4f:
12:bf:0e:a6:69:cc:1b:50:fe:a8:0c:20:f4:6d:d1:54:8b:5f:
50:62:6d:35:7f:79:72:ea:03:60:6f:2f:ab:1b:fb:64:65:69:
66:b8:34:06:98:e5:44:a4:97:63:e9:b3:f1:99:b7:f6:92:60:
c8:a8:29:38:27:50:16:f3:9e:68:f8:35:23:66:05:7f:ba:57:
ff:d6:31:73:59:5d:f9:cc:bf:d4:f4:b2:76:ce:07:0e:9a:e4:
d7:0d:49:94:0e:56:09:37:ad:f7:2c:d6:23:6b:9d:06:f9:dc:
1c:d5:21:c2:5d:4a:7a:96:e0:9b:16:7c:63:e8:2f:fa:a4:c6:
99:b5:37:e1:ee:5a:67:1b:fe:cf:ed:1b:ab:aa:12:4e:e8:e0:
06:f2:68:2d:18:9a:d2:8c:05:4f:3b:30:58:bc:b5:85:da:5c:
bd:cd:52:c5:7c:1f:eb:75:df:51:f1:41:44:4f:70:ff:11:62:
d1:b1:c4:aa:6b:86:b2:c5:45:a3:fa:ab:9b:98:4e:16:7c:06:
30:da:b3:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:52:45 2025 by rpki-client