Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BA77CB50F80E11EFB0CBA557762E951A.roa
File: BA77CB50F80E11EFB0CBA557762E951A.roa (raw, json)
Hash identifier: eWXmdosrrFk0U+uluLJIN9mT7HXhKO78KHv9MF9nlZI=
Subject key identifier: 5A:73:16:7F:24:6C:93:FF:5D:DE:B0:C2:58:34:58:A7:80:CC:F0:7F
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 016FA6
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BA77CB50F80E11EFB0CBA557762E951A.roa
Signing time: Mon 03 Mar 2025 09:06:01 +0000
ROA not before: Mon 03 Mar 2025 09:05:57 +0000
ROA not after: Fri 04 Apr 2025 09:05:57 +0000
asID: 214808
IP address blocks: 154.83.88.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 94118 (0x16fa6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Mar 3 09:05:57 2025 GMT
Not After : Apr 4 09:05:57 2025 GMT
Subject: CN=67c570f9-e5aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:48:03:ef:bc:6a:9d:15:56:db:81:fc:a5:87:
59:f1:9a:55:4d:68:72:e7:94:7e:cf:23:28:9e:22:
48:73:f3:a1:85:6b:15:73:ff:6e:a7:13:d4:ca:6a:
7f:ef:e4:cf:64:1c:73:fd:28:b4:2c:46:6a:31:5a:
2e:b7:5e:b1:06:39:e0:d6:9c:86:b0:9a:72:1b:81:
3c:b2:28:5f:78:f5:38:c5:cc:ee:0d:f3:d4:c3:c9:
45:6a:df:d1:be:ff:a3:ae:c8:b0:8e:71:29:70:81:
60:74:f5:3d:c5:72:fa:7e:12:19:5f:51:ec:ae:6a:
ad:c7:96:35:d0:fc:46:8f:47:c9:f5:aa:31:c0:3e:
af:d3:a8:fc:26:4b:5e:85:be:16:0f:1d:b0:8e:46:
a8:16:a6:d8:f0:80:17:97:f8:c8:99:e2:d6:a5:88:
d5:97:de:15:80:a4:a6:f7:aa:c3:c1:91:4e:a2:37:
92:13:df:13:bd:ef:4a:10:4c:37:91:6d:c2:f4:69:
98:69:a1:50:d5:2c:e5:9c:77:2f:73:75:2b:aa:c6:
25:50:17:6b:71:51:5f:e6:e0:4a:92:e1:55:db:b8:
b6:8e:ff:71:3c:ba:eb:06:43:51:dd:28:b3:6e:9c:
1a:59:93:38:80:a8:72:81:6a:01:5c:ad:dc:d3:6f:
72:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:73:16:7F:24:6C:93:FF:5D:DE:B0:C2:58:34:58:A7:80:CC:F0:7F
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BA77CB50F80E11EFB0CBA557762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.83.88.0/23
Signature Algorithm: sha256WithRSAEncryption
af:64:ea:91:d3:a9:25:9a:be:d9:54:5c:9f:32:48:6f:c8:7b:
cd:4a:14:3f:09:e9:74:87:b3:fe:70:93:2a:a4:26:97:db:97:
c0:84:dc:1e:89:19:14:e1:7d:58:1f:04:4a:9b:0d:3b:49:10:
54:ba:c8:86:c4:28:6d:6f:03:3c:82:6e:33:d2:ae:ca:0d:31:
9f:32:99:91:c2:c3:46:4a:80:ce:96:16:e9:40:2c:94:bb:3b:
7a:7c:b2:7d:87:7b:dd:68:93:bf:49:a3:da:74:72:7b:15:9a:
8c:53:0d:32:b4:b6:45:d1:ca:e9:39:e3:4a:b1:e5:66:e6:c3:
f8:a8:21:a0:e6:33:da:f3:5f:02:e4:d3:13:58:18:3f:f2:c4:
65:8c:ba:a0:a5:b2:d9:db:99:4b:fd:94:e3:79:ad:22:e3:11:
06:f8:44:78:ce:e4:d2:82:e9:7d:65:13:56:63:29:7e:b4:ec:
ba:e7:ce:62:55:b0:5a:10:13:43:31:c0:a5:64:0f:aa:98:cb:
b1:4b:2f:7b:19:85:26:84:1e:90:5a:10:2b:1d:e3:e2:51:b3:
bf:72:83:3d:ef:3c:8d:b2:e0:7c:dc:82:1c:e1:ad:c7:ec:4b:
79:4b:86:2a:4a:16:b5:eb:3b:92:fd:07:5e:65:b6:a3:18:cf:
85:05:3e:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 02:53:57 2025 by rpki-client