Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A96F3298E31511EFAC852178762E951A.roa
File: A96F3298E31511EFAC852178762E951A.roa (raw, json)
Hash identifier: ECeCtxccuRqUkf+Wr4t739+2VJ2V9Dk8u6OBxC6oq2w=
Subject key identifier: 52:82:70:60:8E:FF:A2:A4:DD:EB:5B:45:C2:46:34:C6:B3:CB:11:4D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 015123
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A96F3298E31511EFAC852178762E951A.roa
Signing time: Tue 04 Feb 2025 16:32:45 +0000
ROA not before: Tue 04 Feb 2025 16:32:41 +0000
ROA not after: Wed 30 Apr 2025 16:32:41 +0000
asID: 18229
IP address blocks: 154.210.137.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 86307 (0x15123)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Feb 4 16:32:41 2025 GMT
Not After : Apr 30 16:32:41 2025 GMT
Subject: CN=67a2412d-6a26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:69:8a:31:f6:b8:bc:a0:b0:e2:d7:ee:1d:9f:
29:fa:ce:73:fd:1d:a1:38:c7:d9:c9:4f:23:03:7b:
53:ee:ab:b7:af:5a:e3:b0:5e:60:95:c3:ad:36:00:
00:e0:1c:9b:10:a1:00:09:fc:57:d8:c7:fa:67:d6:
06:30:9e:78:34:bf:a7:7b:c3:ca:30:25:be:d5:a1:
a8:66:1b:aa:f1:84:90:64:6d:68:95:88:2e:34:2a:
38:e8:44:e4:3b:fc:41:c5:f4:d1:db:92:1a:a4:14:
c8:e9:2f:c4:43:85:3a:e0:ac:93:4e:45:39:0b:1e:
d3:ac:c5:03:08:df:ef:3e:0a:f1:94:6c:a5:f9:91:
72:ca:d9:d1:d4:42:11:25:f5:5d:60:a4:00:31:8c:
84:f3:d6:e2:a8:1f:c7:3b:7c:fd:b2:12:14:65:86:
bf:7f:2c:21:68:8f:e2:8e:63:4c:33:75:74:e2:ae:
cc:77:2b:21:7c:18:46:c9:4f:5e:a0:7b:a9:be:13:
86:3a:fa:ec:b7:0f:3b:25:1c:51:d1:34:bf:77:41:
f6:3e:e5:26:62:4b:0f:0b:c4:d0:f3:4e:e8:32:d4:
b4:9e:e4:c2:b1:c2:6e:2c:58:a3:31:7a:d4:f7:57:
ec:f2:97:f3:ad:b9:7e:b1:e9:d2:87:01:4a:bc:d9:
9a:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:82:70:60:8E:FF:A2:A4:DD:EB:5B:45:C2:46:34:C6:B3:CB:11:4D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A96F3298E31511EFAC852178762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.210.137.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:78:b0:17:fc:5a:5b:e8:0a:61:dd:86:a0:36:71:70:f8:58:
17:2e:95:4c:1f:c9:72:12:aa:f3:84:f8:97:b3:92:3a:b4:4e:
93:7f:ff:d2:8f:50:60:14:ef:8e:3a:c2:c1:c8:5f:1c:47:33:
91:71:4b:4f:a2:ad:82:b5:87:41:a4:7b:7f:92:9f:36:09:ad:
a3:a6:f5:4e:bf:76:11:13:45:88:28:8e:f1:53:ea:2e:bb:a6:
f9:0d:e4:8c:a9:e6:a0:82:16:02:26:b3:07:b4:0e:da:ab:af:
3a:d9:b3:0a:93:4f:71:30:13:ef:c8:cb:a1:4b:76:aa:f0:d7:
2d:ce:ac:c4:44:a3:c1:dc:af:76:0e:50:ef:2a:5c:21:d1:5a:
ac:cf:8a:80:e1:cb:04:e2:ed:9f:bc:04:98:9e:db:47:95:35:
a6:05:f5:f4:9e:a0:b7:30:60:7e:3a:52:62:1d:30:b6:65:65:
74:24:b3:c0:79:75:42:54:46:91:ba:bf:8e:ce:3b:9b:d6:39:
88:70:be:e9:3c:27:62:38:88:2d:69:2d:1f:42:f4:3f:d7:22:
73:54:9c:df:38:be:e0:d6:e9:9b:f6:ee:47:05:78:50:9f:ea:
22:9d:05:c8:dd:ec:41:c0:ee:dd:96:ac:72:28:73:fa:3e:90:
0d:67:f0:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:53:48 2025 by rpki-client