Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B577F1E8C26C11EF86306C77762E951A.roa
File: B577F1E8C26C11EF86306C77762E951A.roa (raw, json)
Hash identifier: /5NKvRrhP5ckgzPFcMIEf/hSDBj4PvwACBxYehWZHCs=
Subject key identifier: C9:78:83:27:8B:72:97:DB:62:9C:91:69:40:74:EF:04:99:3D:DB:8E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 012434
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B577F1E8C26C11EF86306C77762E951A.roa
Signing time: Wed 25 Dec 2024 03:02:43 +0000
ROA not before: Wed 25 Dec 2024 03:02:39 +0000
ROA not after: Wed 10 Dec 2025 03:02:39 +0000
asID: 984
IP address blocks: 154.211.166.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 74804 (0x12434)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 25 03:02:39 2024 GMT
Not After : Dec 10 03:02:39 2025 GMT
Subject: CN=676b75d3-ec98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:21:01:ca:72:c8:e8:f9:f5:ca:89:e7:94:4b:
07:86:a8:2b:93:4f:b6:ab:1d:56:6c:7b:4c:68:b4:
80:9b:6c:fa:a5:9b:5c:ff:bb:9d:2d:2a:78:01:80:
af:32:19:20:62:6b:56:a6:a5:5b:6c:0f:10:df:e7:
97:d4:50:89:32:10:b9:8f:86:b9:67:b4:ba:0d:88:
be:80:a2:53:c7:1a:6a:6b:70:e8:28:af:02:51:32:
21:61:44:e4:f8:8a:f6:45:8d:57:a1:71:0f:4f:cc:
27:d8:9d:d6:ad:00:94:bd:66:f7:c6:97:78:bb:f9:
53:c0:0c:28:07:42:67:97:65:f7:c6:e6:27:d6:15:
29:dc:8b:a1:0d:9b:a2:66:db:aa:76:5b:23:82:b2:
fe:32:c9:71:7c:e1:9f:ad:cd:d8:92:6f:b5:68:2d:
95:2e:4c:f9:91:15:e7:8b:c3:4a:8c:23:02:bf:f0:
21:9a:df:0b:46:11:88:23:86:a5:4b:fb:bb:db:b9:
44:02:fa:f3:58:4f:10:cf:60:c7:41:a8:20:9b:4a:
a6:26:e9:3c:44:a8:94:36:32:6e:3a:77:61:5e:20:
df:cf:09:3d:54:c0:2a:ce:bd:24:54:33:a9:0f:90:
4d:9a:b0:84:54:53:da:6b:2c:f0:dc:82:e7:90:72:
7e:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:78:83:27:8B:72:97:DB:62:9C:91:69:40:74:EF:04:99:3D:DB:8E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B577F1E8C26C11EF86306C77762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.211.166.0/24
Signature Algorithm: sha256WithRSAEncryption
49:ed:74:37:e1:49:b2:af:a2:e8:b8:28:14:cd:f8:7d:0f:a7:
5f:c2:18:7a:8f:89:79:03:28:a7:98:28:c3:88:b9:e8:87:76:
b8:b1:b3:c0:8d:dc:4c:41:85:c3:f0:38:f2:3b:ea:c8:c1:6b:
65:3d:be:8b:20:41:3e:0b:d1:e8:51:f7:18:60:5c:6f:0d:5f:
d7:ee:91:a4:34:de:19:33:a0:fd:c2:71:e9:19:35:62:08:07:
65:26:92:c9:fd:f2:99:67:61:81:94:61:3c:f4:3b:a4:01:50:
f8:f5:e2:1c:22:f6:a2:8e:70:a4:1e:b4:72:b5:ce:f7:73:5f:
c7:44:13:80:e1:bc:37:21:57:c6:af:f1:26:72:75:8b:b6:81:
c4:4e:3c:6f:97:6e:0a:ff:ce:d4:c7:8c:e3:f8:a0:6d:1d:54:
3f:59:c0:66:3a:7e:b5:9a:b6:68:3c:5e:39:7e:b0:c4:00:63:
b2:67:07:9c:a4:ea:97:e3:c0:1f:d1:28:47:48:05:91:25:b8:
76:19:bc:05:26:5a:c6:0b:d9:f9:52:44:ab:4a:d5:ab:e3:a9:
44:55:fe:37:d2:86:30:97:cd:7e:cc:af:2b:f5:ee:34:d3:3f:
f7:5f:11:91:7a:1c:5d:6b:f2:4f:eb:48:6e:bf:74:87:0f:ef:
02:a9:f5:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 20:21:03 2025 by rpki-client