Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/ABAA28ACC5F511EF847B7A65762E951A.roa
File: ABAA28ACC5F511EF847B7A65762E951A.roa (raw, json)
Hash identifier: aEp6u/HaT6LqLsvlidxPbAfY1uDSMC2lUo9EqaZyqRc=
Subject key identifier: 0C:BE:3F:E2:47:EA:40:08:08:0A:A1:52:45:8C:12:75:B7:1D:13:54
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 012DFE
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/ABAA28ACC5F511EF847B7A65762E951A.roa
Signing time: Sun 29 Dec 2024 15:00:41 +0000
ROA not before: Sun 29 Dec 2024 15:00:37 +0000
ROA not after: Fri 12 Dec 2025 15:00:37 +0000
asID: 984
IP address blocks: 154.213.205.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 77310 (0x12dfe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 29 15:00:37 2024 GMT
Not After : Dec 12 15:00:37 2025 GMT
Subject: CN=67716419-3681
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:6d:30:1f:94:55:40:b9:95:74:2a:96:3e:36:
f2:5b:e9:f8:dd:86:30:67:98:e4:50:ec:0a:15:66:
64:0f:fa:a8:a9:97:e2:6c:7b:77:f6:48:3e:8c:0d:
24:4a:a6:cf:2b:5a:76:a4:77:84:c5:1d:92:39:0f:
8f:5c:3e:ee:5e:22:59:02:63:ce:7a:8f:2f:92:71:
88:40:06:92:4c:d5:0f:cf:fc:9b:a3:db:9f:3c:80:
f4:37:a2:c7:65:15:d6:01:2c:19:6e:a0:6a:33:c0:
c7:63:7e:90:88:fb:d3:f8:98:c1:75:ff:62:38:30:
76:ba:be:e5:79:20:4e:86:9e:b4:79:bd:fe:a4:44:
4c:54:db:3c:05:36:92:42:6c:6e:7c:80:49:dd:22:
3a:8e:c5:8b:38:20:87:71:70:f8:14:77:68:20:34:
d4:44:60:74:6a:93:57:b6:7c:e7:34:d4:0a:f2:cc:
1c:24:45:55:99:06:77:9d:aa:ca:13:9c:4e:93:5f:
3c:2f:b4:23:82:17:d4:d0:7f:14:4b:99:23:b6:d9:
17:17:45:bd:90:92:e7:75:a7:e5:dd:e8:13:b5:6d:
ba:59:e2:3e:72:4f:dc:ff:01:da:ed:ee:37:40:53:
0d:d1:29:48:66:9a:72:22:c0:b4:69:37:73:c2:bd:
44:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:BE:3F:E2:47:EA:40:08:08:0A:A1:52:45:8C:12:75:B7:1D:13:54
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/ABAA28ACC5F511EF847B7A65762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.213.205.0/24
Signature Algorithm: sha256WithRSAEncryption
40:1f:78:b2:f9:ea:e3:16:ef:49:cb:5e:b3:49:08:ce:89:c6:
29:25:1a:f2:3f:74:11:8d:f2:b9:40:34:e2:f4:3c:44:50:53:
96:ff:be:e5:47:14:ee:44:e4:32:3b:a9:ad:2a:6b:7e:d6:fa:
66:06:00:96:a5:21:40:c7:1f:6b:c1:e1:4e:77:9d:a0:c1:b2:
de:eb:ce:d3:5d:ed:46:14:48:3f:c9:c6:4e:25:6b:80:44:c2:
d9:91:cc:ca:5e:4a:2b:69:c2:f5:67:fc:5a:83:b1:9d:62:a9:
96:86:32:5b:ee:75:92:20:df:b2:d9:91:31:03:e9:ef:38:d6:
2f:d0:05:75:9b:68:21:0b:96:d9:58:ac:21:d6:65:51:24:be:
cc:80:a0:1a:7a:77:9a:8c:ae:0b:06:68:85:4c:72:e5:2e:de:
c4:6c:b3:3b:ef:6d:ca:0a:27:64:dd:65:f0:01:84:5b:d9:6f:
9f:72:76:58:29:51:50:db:03:a8:de:b1:a9:96:ef:b9:10:85:
cf:e2:0c:9a:e6:53:89:cd:a2:2c:18:b8:35:f3:43:84:36:eb:
bd:8a:aa:87:23:fb:48:15:cb:bc:8e:c6:1c:0e:f3:00:29:f9:
ca:ee:ea:8c:dc:21:a9:95:ce:7c:ce:85:48:df:97:a7:ee:33:
59:8d:37:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 20:29:32 2025 by rpki-client