Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B9E55F04C36B11EF98AF1B4B762E951A.roa
File: B9E55F04C36B11EF98AF1B4B762E951A.roa (raw, json)
Hash identifier: wLWHfWBDp+A3jElxh8gcwVDCXTYdGxiRB0Yiai/flDM=
Subject key identifier: 18:26:50:8F:30:52:AA:DA:1F:61:63:CC:5F:63:0F:8D:2B:35:12:94
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0126F2
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B9E55F04C36B11EF98AF1B4B762E951A.roa
Signing time: Thu 26 Dec 2024 09:28:12 +0000
ROA not before: Thu 26 Dec 2024 09:28:08 +0000
ROA not after: Sun 12 Dec 2027 09:28:08 +0000
asID: 17561
IP address blocks: 154.94.144.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 75506 (0x126f2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 26 09:28:08 2024 GMT
Not After : Dec 12 09:28:08 2027 GMT
Subject: CN=676d21ac-d82e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:0d:64:bf:14:86:a2:d5:43:a7:9e:4d:a9:54:
35:4f:69:a4:d9:14:26:bc:d7:8c:0c:0a:9e:03:d5:
16:9a:85:ff:d1:43:25:d2:a2:08:23:51:34:35:86:
ef:61:b1:20:a9:6b:04:5a:3a:44:5b:f7:93:31:53:
ea:09:55:ac:e9:a8:85:db:f2:40:c0:f8:c1:b9:82:
30:e8:3c:ac:c4:c2:1b:64:62:7c:46:a4:c7:eb:48:
2f:5d:63:dd:bb:96:1c:d1:5d:19:c8:f0:ae:09:7c:
ae:0d:7d:3d:31:a7:4d:8d:d6:93:a1:14:c5:c5:22:
44:6f:84:ee:6b:aa:31:20:76:b9:26:80:ae:f4:3b:
94:47:8a:9a:22:64:89:31:82:9d:86:8f:bd:35:11:
ae:fe:5f:b7:1f:96:ba:8f:d7:06:59:f5:45:b1:ab:
8b:fd:92:37:f7:30:2a:2f:01:eb:69:1a:53:6b:4f:
5a:ff:2e:2c:b7:03:32:52:f2:87:1c:94:f3:e9:95:
56:9b:f1:cf:7c:d8:3b:db:52:39:d5:83:f9:65:5a:
bb:b8:ef:17:87:f1:62:61:99:d6:ea:1b:78:e7:09:
9c:45:d3:40:e4:11:66:ab:1a:38:8a:92:06:09:b5:
85:19:eb:94:87:86:68:e6:77:a1:a7:2b:f9:3c:9a:
20:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:26:50:8F:30:52:AA:DA:1F:61:63:CC:5F:63:0F:8D:2B:35:12:94
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B9E55F04C36B11EF98AF1B4B762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.144.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:3d:1f:2c:0b:19:9d:47:ab:d8:3a:91:f5:2c:2c:b3:3e:6a:
16:5f:43:e8:fc:85:0a:6a:ff:16:17:b2:9b:5c:db:59:7e:44:
1b:ab:e0:eb:67:af:78:b1:96:df:1d:94:27:a1:88:f2:4e:b0:
85:eb:72:88:ca:d3:12:0c:0d:ef:ea:2e:6b:e5:4c:49:08:3f:
50:54:ff:47:d4:19:69:54:55:e0:5e:40:33:de:65:ae:15:8f:
a1:70:15:e5:f0:2d:bd:a8:2e:00:83:cf:fb:80:8c:0d:03:c7:
13:69:4e:ed:bc:c9:16:67:27:9c:51:7e:73:14:3a:92:8c:be:
3e:d1:f7:88:fa:15:7f:c1:91:37:c4:a9:bd:3a:8f:e2:d4:54:
40:0f:17:9c:40:bd:d2:a6:37:ac:82:84:a1:44:24:4f:90:da:
bf:4a:2f:c3:aa:08:3a:15:4a:f0:ad:9a:a6:63:a6:a9:4d:aa:
aa:28:54:bb:ca:c6:67:6e:64:7e:c1:fd:b3:d0:8f:6d:85:e0:
ba:cc:b1:81:95:7f:6c:5d:34:e6:6c:4d:b8:1e:12:57:bc:a5:
e6:ed:e9:01:39:23:bb:b6:ec:e1:24:f4:d7:72:93:55:9a:7c:
a6:30:10:b2:f7:89:9e:16:4c:55:fe:fb:b1:37:bf:f2:ac:ca:
b9:c9:f2:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 03:54:15 2025 by rpki-client