Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B9072F4AEF8511EFA280B27C762E951A.roa
File: B9072F4AEF8511EFA280B27C762E951A.roa (raw, json)
Hash identifier: NUzQHfXHN/k/B4vL3LTw0uUv2lXGwg6dhCgezR2c438=
Subject key identifier: 1B:63:F3:82:A5:81:3A:DD:13:9A:A1:E4:30:3E:CC:EF:88:B0:35:88
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0158E0
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B9072F4AEF8511EFA280B27C762E951A.roa
Signing time: Thu 20 Feb 2025 12:25:09 +0000
ROA not before: Thu 20 Feb 2025 12:25:05 +0000
ROA not after: Tue 17 Feb 2026 12:25:05 +0000
asID: 62240
IP address blocks: 154.201.124.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 88288 (0x158e0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Feb 20 12:25:05 2025 GMT
Not After : Feb 17 12:25:05 2026 GMT
Subject: CN=67b71f25-8c74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:9c:d0:5c:1e:ab:7b:42:03:81:67:d3:0f:b3:
1d:e6:d2:bc:89:27:af:e1:81:6c:bb:53:50:e7:e3:
cf:13:20:5c:c3:38:54:74:db:5c:66:fc:a7:4c:4e:
f4:69:1b:94:82:73:0e:0b:28:82:9b:1d:2f:40:0f:
94:1c:e6:78:aa:62:b2:46:b6:00:5f:75:ac:18:44:
0b:b0:68:01:4e:0b:44:a9:e1:c9:4d:01:63:a3:1e:
66:bb:d9:59:20:50:f6:ba:d9:78:10:43:40:bf:94:
f0:76:ad:bc:03:0c:4f:5d:53:53:88:f6:59:40:15:
38:25:f6:2b:76:14:b4:45:f7:0e:ff:eb:5d:20:68:
e8:6a:7b:1f:96:7d:31:9a:13:86:f6:55:c1:aa:6b:
30:35:ab:f5:59:ff:d6:cd:d4:37:f0:5b:a1:2b:58:
dd:46:20:55:44:73:49:72:fe:e8:73:89:f7:4e:4e:
40:3b:92:84:31:10:28:2f:7b:eb:6b:32:e7:72:9b:
9d:b8:13:fe:ce:f4:8a:de:0e:8a:ae:08:49:b6:56:
1b:c0:1e:71:1f:cc:71:b4:e9:14:a7:b3:1f:ba:42:
f6:7e:3d:b2:84:24:2b:2e:93:43:49:1e:a3:5b:b2:
40:09:b0:de:31:f0:6d:e1:9f:60:20:a4:c7:d2:2d:
0a:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:63:F3:82:A5:81:3A:DD:13:9A:A1:E4:30:3E:CC:EF:88:B0:35:88
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B9072F4AEF8511EFA280B27C762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.201.124.0/23
Signature Algorithm: sha256WithRSAEncryption
58:46:99:fe:1a:46:f2:62:74:23:f4:fc:6e:1e:81:f7:1e:0f:
e5:c3:a7:47:1b:e5:15:62:f9:34:33:83:57:f0:47:8a:ca:97:
58:46:80:3f:6e:ef:1f:2f:d1:0e:76:80:16:d0:ee:a3:a4:8f:
5a:73:43:e2:34:80:52:17:e2:41:05:d8:bb:0e:3f:4f:32:7e:
bc:af:40:3a:70:a2:12:39:95:05:12:8d:9f:ca:c2:92:a2:0a:
0a:18:ae:d2:aa:72:78:1c:a5:f8:8d:e5:c9:07:23:52:05:00:
56:d9:d7:fc:2b:2f:c8:d2:86:2d:34:51:dd:f1:60:82:c5:71:
c1:10:46:34:93:cb:8f:80:fb:94:22:18:49:ca:a6:25:19:a5:
83:1c:1f:b3:f6:c2:2a:c1:32:3f:ef:a0:8f:02:f5:e8:02:92:
23:2b:9d:2a:3f:a6:75:9f:e3:c6:12:d7:18:16:d5:77:22:78:
c1:c1:7f:b4:a8:10:74:66:48:da:f0:fd:f6:14:92:8d:dd:cc:
54:ff:01:a2:ad:a2:ff:b7:81:8e:22:1b:38:66:58:ec:ec:6f:
a4:c1:55:02:68:50:12:a1:d4:67:76:2d:da:f0:47:c5:fd:01:
fd:83:e1:f0:d9:7f:c7:b3:34:30:39:60:21:41:cb:71:d0:10:
b1:88:46:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 3 22:32:29 2025 by rpki-client