Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AC303C2AF2D311EFA481ED86762E951A.roa
File: AC303C2AF2D311EFA481ED86762E951A.roa (raw, json)
Hash identifier: 8gl8F2q1orXftVk6udq4SMknTJfByZS4EZAwhoiXCdQ=
Subject key identifier: DB:82:6D:EA:52:9E:07:CC:DC:29:CB:9A:5F:66:4E:F7:7B:86:0D:24
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 015C96
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AC303C2AF2D311EFA481ED86762E951A.roa
Signing time: Mon 24 Feb 2025 17:20:41 +0000
ROA not before: Mon 24 Feb 2025 17:20:38 +0000
ROA not after: Sat 29 Mar 2025 17:20:38 +0000
asID: 203020
IP address blocks: 154.223.137.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 89238 (0x15c96)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Feb 24 17:20:38 2025 GMT
Not After : Mar 29 17:20:38 2025 GMT
Subject: CN=67bcaa69-20df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:53:04:3e:90:56:4a:2f:7a:05:45:b3:8f:eb:
bd:db:7d:66:ab:68:a9:13:66:9d:28:34:e0:92:f9:
83:c0:ea:15:13:0b:5c:c2:3e:78:01:f2:d0:ea:70:
ec:8b:ba:21:a9:b4:51:a2:b5:54:61:c3:07:55:e0:
fc:b7:f3:fc:9b:f2:c3:ec:5e:9c:39:9a:20:a0:e9:
9b:3a:67:32:20:7c:cf:d1:0b:97:84:3f:67:39:51:
a8:ad:c1:1c:b6:3d:8d:7a:c9:58:07:7c:2e:d3:f7:
38:67:9a:d1:10:83:22:ad:9c:db:85:e7:54:51:ee:
74:02:31:fd:63:a8:a3:28:3f:ad:74:f8:53:a6:3e:
fb:6a:ab:95:74:c2:f4:b6:c5:5f:2e:43:a0:ad:2a:
16:77:14:ac:ab:eb:04:d6:2b:11:d8:b8:27:50:fc:
b7:7a:03:f2:6c:63:c4:8a:96:5b:df:6a:20:1b:a7:
25:b7:9d:2b:82:83:d7:e4:6a:b7:62:a1:55:d7:d4:
40:aa:e2:0f:ce:34:c4:80:19:1e:46:aa:b1:53:70:
55:50:a5:95:38:63:e7:66:3a:3b:76:53:6a:33:3f:
9c:31:b4:8d:d3:a6:3f:8a:30:48:c9:32:e2:ec:27:
ba:a1:b5:e5:e1:4e:69:b4:e9:5a:6b:dd:e9:9b:8f:
1a:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:82:6D:EA:52:9E:07:CC:DC:29:CB:9A:5F:66:4E:F7:7B:86:0D:24
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AC303C2AF2D311EFA481ED86762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.223.137.0/24
Signature Algorithm: sha256WithRSAEncryption
08:2c:05:a5:c9:b6:83:1a:5c:66:4a:f2:6c:f6:a4:ae:b2:f7:
54:8f:67:c4:16:19:38:6a:3c:6b:1a:51:09:79:09:00:44:15:
be:b3:bb:a4:4b:5e:52:d6:ac:25:9e:4e:3d:1d:b2:94:73:e9:
62:d1:4a:06:ed:79:84:cb:f4:ba:e7:0b:a9:84:ea:e5:b7:00:
60:e5:85:77:02:f1:84:32:61:1d:9f:72:1c:fa:bc:bc:52:ea:
12:f0:57:f0:26:22:3b:76:62:95:f0:28:c5:36:6d:16:0a:a7:
bb:f6:a7:59:dd:17:94:81:1c:7d:64:33:5d:72:cb:34:e8:fe:
f9:a8:74:6b:89:06:c9:a4:2f:d8:7d:8b:8a:75:9d:5c:a6:20:
52:bc:4e:27:f4:a8:9d:b3:9c:16:af:05:47:6c:cc:23:ab:13:
c4:34:21:ca:b0:63:7d:1f:15:f0:22:70:44:e9:8a:7e:0f:cf:
4b:a8:fe:5e:61:61:1a:3a:39:8d:fe:26:f2:dd:d7:19:b0:4e:
ea:9e:c5:07:0e:53:fd:bd:fe:46:b7:f1:02:a4:f8:5b:e1:f4:
ad:b3:f4:ad:45:3b:ed:bc:94:02:81:5c:3d:03:3e:eb:3f:8b:
a1:2d:2a:08:63:64:4c:07:c3:e2:d2:f1:57:9f:95:22:5d:0e:
f2:1b:d9:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 04:55:03 2025 by rpki-client