Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BF201A7E071B11F0901328A7762E951A.roa
File: BF201A7E071B11F0901328A7762E951A.roa (raw, json)
Hash identifier: rdCXoWQ2lkdXnqUNsHzUKF6aklccx4UGPaiuwqNT1S8=
Subject key identifier: F0:0B:80:59:24:73:21:F4:CA:D8:55:A1:37:2E:82:27:B1:22:8A:3A
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0175A2
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BF201A7E071B11F0901328A7762E951A.roa
Signing time: Sat 22 Mar 2025 12:47:00 +0000
ROA not before: Sat 22 Mar 2025 12:46:56 +0000
ROA not after: Tue 01 Apr 2025 12:46:56 +0000
asID: 29802
IP address blocks: 154.202.100.0/24 maxlen: 24
154.223.90.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 95650 (0x175a2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Mar 22 12:46:56 2025 GMT
Not After : Apr 1 12:46:56 2025 GMT
Subject: CN=67deb144-f515
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:2f:03:cb:07:37:07:fd:35:b0:d8:f2:bc:97:
87:7e:89:b0:44:80:6b:e6:ab:70:1e:d8:fa:3a:ba:
5a:33:a0:41:5f:90:a8:7e:50:f4:f0:68:12:1a:c9:
16:f5:5b:de:e2:f0:4e:46:4a:50:05:70:43:b5:de:
5a:42:04:d7:0a:2c:6c:93:e0:5f:95:15:8e:55:44:
10:6d:58:e7:27:1d:72:93:d8:34:dd:48:31:93:b0:
01:76:48:1d:39:91:4b:5c:f6:db:84:42:b0:71:67:
e3:ba:95:99:08:f5:92:5b:e0:57:ca:4a:27:c8:3a:
1f:3e:21:be:1a:ed:cb:fc:2d:f1:31:de:b1:5c:b8:
e4:c8:eb:64:c9:85:04:d5:b7:66:b3:47:df:a9:a6:
bb:c9:5b:11:8f:0d:5c:1a:6a:d2:ae:c3:84:bf:c3:
65:19:fb:cf:f5:34:ad:0a:de:82:50:fb:4c:60:22:
a2:b2:c8:07:3a:86:d4:5c:ca:16:7f:65:6e:ac:07:
7a:bc:e7:2a:c5:04:2d:60:f4:88:9e:19:71:58:5a:
cb:ee:c9:62:75:72:74:1a:8d:59:3d:f9:63:b2:34:
c9:4b:d9:76:55:23:2f:93:17:c9:7e:e5:b6:87:12:
33:29:05:7c:74:ba:46:df:62:37:30:03:85:64:ac:
e6:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:0B:80:59:24:73:21:F4:CA:D8:55:A1:37:2E:82:27:B1:22:8A:3A
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BF201A7E071B11F0901328A7762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.202.100.0/24
154.223.90.0/24
Signature Algorithm: sha256WithRSAEncryption
99:22:8b:47:47:ae:ca:c5:96:89:bf:99:b8:7f:86:f0:b5:75:
cd:81:8a:2d:15:96:45:38:f1:7a:35:40:53:a0:52:07:c8:f0:
0d:ee:c6:42:1a:e7:e4:8a:74:38:76:b6:9d:63:22:4c:70:e9:
2a:64:6e:75:e6:87:19:6a:55:ee:91:85:ad:4f:bf:05:e9:f7:
de:54:24:4b:02:b8:d1:53:5f:2b:74:f0:ae:90:7b:54:22:bb:
45:15:02:03:d8:c2:41:91:41:84:7a:c6:f8:b5:19:96:75:ad:
a1:58:3b:82:c6:ed:ab:6b:ca:7c:dd:77:e4:ae:b3:88:67:05:
f2:a3:2b:92:2f:7b:b3:77:05:27:c6:37:19:de:86:64:fd:d7:
13:f3:d0:9b:09:d3:8d:d5:47:be:9d:d8:e7:b8:c5:93:50:f1:
51:f0:3e:97:5c:8b:ec:bf:30:50:b2:e1:56:c2:97:23:a0:b7:
b9:c3:a3:65:f4:6e:1d:07:fa:3f:95:c8:29:01:99:5c:70:84:
e0:4c:db:cb:29:ed:a7:8d:54:40:45:be:ff:72:b8:a9:fc:d0:
e9:35:c0:f5:2d:78:f3:80:48:f1:32:99:a5:57:fb:b8:6b:fd:
45:25:e4:e7:78:31:93:96:3b:e2:37:3b:20:82:4a:f9:c4:dc:
21:f6:86:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 05:34:50 2025 by rpki-client