Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AAC00C00F3F811EFBDDE835C762E951A.roa
File: AAC00C00F3F811EFBDDE835C762E951A.roa (raw, json)
Hash identifier: X4AJAN5z90ase4GBji2nd2VYvZHydQXzYkb+vfV2s8Y=
Subject key identifier: 99:44:41:09:55:30:69:0C:F5:CE:29:79:C7:B8:69:81:8A:E9:B7:EB
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0160CD
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AAC00C00F3F811EFBDDE835C762E951A.roa
Signing time: Wed 26 Feb 2025 04:18:02 +0000
ROA not before: Wed 26 Feb 2025 04:17:57 +0000
ROA not after: Thu 19 Feb 2026 04:17:57 +0000
asID: 984
IP address blocks: 154.203.126.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 90317 (0x160cd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Feb 26 04:17:57 2025 GMT
Not After : Feb 19 04:17:57 2026 GMT
Subject: CN=67be95f9-6e0d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:41:5a:8c:96:3a:af:cc:9a:9f:b4:7a:25:3f:
25:e9:b8:15:2f:60:9d:05:07:e6:58:8e:4d:98:6e:
0a:10:c1:5c:b9:33:00:35:58:60:0b:78:a2:08:55:
70:fa:0d:d0:30:da:9a:4b:d3:e0:55:f7:62:b1:1f:
09:95:ff:5f:64:4c:66:c1:14:d0:ba:23:30:2f:0d:
bf:67:91:27:37:86:ac:87:69:2e:37:0f:34:3b:19:
9a:20:9a:76:bb:52:94:5d:c5:9e:c7:d9:ae:55:c3:
64:ac:06:af:bc:99:e9:de:9b:83:02:b4:a6:68:08:
ba:16:2c:3e:d9:a2:20:c7:ca:56:93:a9:08:74:80:
fa:bf:12:1e:3f:f9:9e:0e:da:01:31:1f:57:5a:77:
07:64:b9:71:a2:02:8c:4a:73:35:27:cf:36:dd:fc:
df:c5:95:ca:d3:67:f6:1d:65:a2:ca:86:e3:2f:04:
1c:a8:36:96:14:e0:40:f9:47:48:ed:f1:3f:01:47:
d4:ce:a6:d2:0a:58:8b:17:59:f4:63:28:93:1c:9d:
ca:6a:e0:f1:0c:a3:f7:64:25:06:89:a4:9d:58:5e:
cd:7f:ad:50:e2:da:b9:fd:f0:ea:53:cb:ca:31:42:
c3:f6:06:a8:8c:d0:d1:fd:ee:ab:c8:2d:1a:85:a7:
45:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:44:41:09:55:30:69:0C:F5:CE:29:79:C7:B8:69:81:8A:E9:B7:EB
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AAC00C00F3F811EFBDDE835C762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.203.126.0/24
Signature Algorithm: sha256WithRSAEncryption
ab:6f:85:e7:8e:6e:d4:1d:77:a0:53:6a:79:94:d0:ff:72:a0:
99:37:71:3b:85:72:13:38:82:1f:6b:1d:b6:35:91:bb:f3:b6:
12:c0:ca:60:34:70:db:82:f0:cd:a5:47:e0:2c:1c:96:a0:e6:
a5:ce:3d:e7:d5:11:e4:58:b4:95:2a:f8:4a:60:a0:9c:c1:c5:
89:fa:38:2e:64:3f:21:4d:07:aa:40:14:e5:af:45:8f:71:ad:
06:b9:ad:af:76:cc:b3:dc:65:49:84:e8:64:6d:71:2b:93:ba:
46:26:b4:87:d6:ba:f9:73:d8:b4:c5:c8:5c:c9:67:6e:a4:5e:
8c:a8:79:85:bb:01:dd:3b:e2:c5:af:e8:ba:fa:72:d7:89:49:
68:c3:70:47:89:ca:1d:60:34:04:ef:1c:19:4e:e7:30:d1:bf:
4e:ed:0c:66:92:30:13:56:5e:84:d2:97:c8:32:21:db:f1:5f:
42:16:a5:cc:f2:64:78:41:7f:01:17:b9:f2:36:7c:05:6a:92:
31:38:a7:05:9a:46:84:42:56:65:eb:b0:fd:50:2f:6f:34:70:
bd:fa:ab:14:1a:a2:dc:7d:ee:96:da:20:ca:c8:26:20:87:50:
89:df:8f:bb:c4:6f:80:e8:6a:66:b8:fe:e5:e9:9d:da:b0:ca:
e5:dc:30:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:58:01 2025 by rpki-client