Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B27DE42CCDBE11EF9C650670762E951A.roa
File: B27DE42CCDBE11EF9C650670762E951A.roa (raw, json)
Hash identifier: ab0NTeYKqHiOjMCHghwIyGDKvFky4GgbXMXNGuGLI/M=
Subject key identifier: 6D:D0:FC:03:62:FB:29:5D:1B:72:67:99:04:9E:8D:B2:4B:3C:E2:DC
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0136FE
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B27DE42CCDBE11EF9C650670762E951A.roa
Signing time: Wed 08 Jan 2025 12:47:19 +0000
ROA not before: Wed 08 Jan 2025 12:47:16 +0000
ROA not after: Tue 16 Dec 2025 12:47:16 +0000
asID: 984
IP address blocks: 154.200.219.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 79614 (0x136fe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Jan 8 12:47:16 2025 GMT
Not After : Dec 16 12:47:16 2025 GMT
Subject: CN=677e73d7-83ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:15:b0:30:22:48:70:4e:7d:99:45:63:fb:db:
93:ec:6f:62:e8:bd:44:54:7a:ed:d0:db:6a:3a:4d:
d0:66:53:2a:28:be:95:43:7b:3d:77:72:82:ea:40:
ac:80:8c:04:f7:86:51:b5:d8:15:f0:01:bb:7d:58:
e5:ef:ad:f9:7e:77:31:82:af:c8:1b:d3:19:e4:a6:
a8:d9:0f:e4:9a:f1:ee:91:54:43:dc:3f:2a:a8:ca:
8a:5b:a6:3e:df:34:4c:14:0d:d5:3c:81:54:2e:c7:
f1:e6:35:9c:cd:af:08:ba:58:89:ed:d8:d4:74:82:
78:cb:09:f0:45:d0:0f:79:e1:c0:c5:1a:d2:c6:1c:
1c:01:ff:f9:84:e4:2c:d0:56:0e:9e:71:9c:a4:20:
b6:d8:c1:2e:af:16:57:67:b5:05:41:a4:2d:45:fd:
3c:ee:85:ad:f1:9f:54:a6:3b:07:19:8e:95:35:77:
96:8b:7d:12:db:e9:34:c5:40:2b:ce:be:a8:2a:ff:
30:86:cc:9f:31:14:80:19:92:48:b4:74:43:49:16:
e0:73:fb:c9:b9:fd:95:6c:15:7f:95:d1:d5:9b:02:
c1:5a:4a:66:2d:bc:83:04:03:c7:c5:e5:d2:2f:d8:
34:b1:49:0d:a6:1b:c6:58:6a:db:d0:d6:96:f0:9b:
c7:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:D0:FC:03:62:FB:29:5D:1B:72:67:99:04:9E:8D:B2:4B:3C:E2:DC
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B27DE42CCDBE11EF9C650670762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.200.219.0/24
Signature Algorithm: sha256WithRSAEncryption
20:5d:e2:ea:1e:22:bb:e8:3d:f8:60:ed:4e:60:2c:a7:42:15:
30:67:5c:0d:72:43:81:16:ce:1a:a2:e5:1d:d1:fc:f7:96:05:
1f:42:54:39:df:6c:7f:4c:98:c0:e6:95:75:95:12:77:5a:ab:
cc:76:dc:18:b4:47:57:87:ac:f3:f2:33:8e:a7:42:78:ae:e4:
07:37:09:c8:7c:30:7c:af:3a:de:03:1f:84:22:4a:d1:bf:b8:
4d:49:e7:98:a3:b7:b8:bd:b7:0f:a9:30:5b:e0:14:9b:19:7b:
22:19:01:98:72:1e:b9:83:46:8d:61:a8:51:e5:71:66:55:5f:
3f:e1:be:91:b4:11:5a:2d:29:3f:57:34:9f:18:44:85:01:ac:
96:6f:c8:7d:e2:06:cb:da:76:ab:77:c7:8c:bd:cd:bf:d4:aa:
7f:33:b3:68:d3:fe:60:02:b5:c4:cb:06:40:fa:0e:52:22:3f:
c5:ba:46:da:bd:eb:31:00:84:80:85:f2:90:4f:dd:2b:b3:ce:
9c:98:18:f6:69:09:e7:27:eb:75:2d:1a:1c:7f:19:ad:23:f1:
46:0f:1e:c4:50:6b:b5:fd:86:b3:bf:f8:a6:95:a2:74:f8:d3:
9f:6c:c1:c9:f7:0f:38:42:78:86:c3:55:1a:e7:c5:47:b4:70:
59:b0:89:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:51:48 2025 by rpki-client