Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BAAB794EC42B11EF9A2C5294762E951A.roa
File: BAAB794EC42B11EF9A2C5294762E951A.roa (raw, json)
Hash identifier: BYPYXBOh/SeNwNmgzS3+vTTTyzCT6QW3H1zTVuoKDzo=
Subject key identifier: 3B:F3:24:66:56:96:2D:B6:9E:D5:4B:43:A4:27:C6:85:05:49:95:07
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 012A29
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BAAB794EC42B11EF9A2C5294762E951A.roa
Signing time: Fri 27 Dec 2024 08:22:37 +0000
ROA not before: Fri 27 Dec 2024 08:22:33 +0000
ROA not after: Sun 12 Dec 2027 08:22:33 +0000
asID: 17561
IP address blocks: 154.202.123.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 76329 (0x12a29)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 27 08:22:33 2024 GMT
Not After : Dec 12 08:22:33 2027 GMT
Subject: CN=676e63cc-9d71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:4b:7e:b1:68:b3:d5:77:c6:cc:69:2b:1e:f2:
d8:2a:3a:d2:ce:88:c1:29:95:2b:8d:62:8b:70:f2:
cb:23:08:d2:c0:72:9a:c9:85:33:d1:02:93:1c:b3:
84:ce:75:a9:eb:49:90:6b:28:15:d6:88:7b:ef:08:
80:0d:e8:4f:93:25:ba:b1:96:c9:b9:93:67:93:89:
5f:52:84:a6:7a:c9:ba:bc:e1:d5:06:19:94:97:5d:
99:87:f6:91:cf:0a:7c:d9:82:e0:e4:93:cf:ce:69:
3e:44:64:63:63:6b:48:91:84:f6:7e:13:cf:0f:aa:
73:31:f5:ea:3b:68:65:83:1d:3c:f2:dd:61:82:df:
9d:e4:71:ff:86:a9:9a:90:da:0b:d5:a1:a7:c7:66:
83:bc:c9:2b:3a:0c:9d:da:93:62:c5:90:32:52:0d:
53:81:c8:77:56:f2:73:91:bd:ba:1a:1a:6a:5a:e6:
24:2f:c2:4d:60:c5:9c:05:95:0b:22:39:b4:fb:76:
a3:72:ab:14:52:1a:54:55:15:f0:ad:01:c8:de:55:
1c:fb:96:7b:83:c1:9e:b9:85:e2:98:80:ac:e5:1d:
da:33:89:b7:1f:a4:41:63:9c:a0:da:2f:2d:2d:f8:
fb:0d:1e:6f:9e:8a:77:4a:72:6e:e1:e0:d8:a8:19:
75:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:F3:24:66:56:96:2D:B6:9E:D5:4B:43:A4:27:C6:85:05:49:95:07
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BAAB794EC42B11EF9A2C5294762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.202.123.0/24
Signature Algorithm: sha256WithRSAEncryption
a0:34:b4:cb:5b:e7:a5:79:45:22:51:1e:eb:1b:7f:6b:97:b7:
10:5e:b3:70:d6:53:0e:7b:52:90:6c:2c:c4:65:96:f0:03:ea:
13:bf:d8:3d:c6:48:f7:84:46:4c:29:4d:c6:7f:c7:e7:12:d9:
0b:fd:ba:ea:77:26:a8:25:19:17:7b:a9:1f:c6:7d:23:d7:e0:
92:17:8f:e7:46:74:86:c4:d3:e2:ef:f5:54:76:49:87:f8:99:
88:2a:ec:ad:67:20:3d:59:44:da:6e:b6:e5:b4:73:d6:f4:3e:
6a:79:1e:b7:60:34:85:c9:d0:6b:8b:3a:22:f2:4b:70:89:7f:
af:c3:39:3c:b3:df:5c:59:8d:00:a2:72:40:45:72:04:fb:eb:
5d:a1:45:19:94:34:9f:5a:cc:9d:27:93:87:84:12:e7:0b:64:
e4:f4:5b:34:8e:36:95:fe:7f:a9:76:af:ed:8c:c7:5c:bd:8a:
27:31:e0:a7:f0:97:19:26:f5:53:a9:79:29:e6:e0:7f:df:d9:
e6:61:23:f6:d0:4a:a8:2b:5a:fa:99:7a:34:98:59:e6:a6:33:
05:1d:7f:41:d2:1b:1c:c0:3d:cb:6f:4c:d6:d5:a1:3f:25:77:
a1:0e:4f:e7:2f:9a:4f:63:c7:56:44:61:ef:b2:ba:90:c2:b7:
d1:e4:aa:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 22:08:01 2025 by rpki-client