Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C0B98692C26311EFAB9E5FB5762E951A.roa
File: C0B98692C26311EFAB9E5FB5762E951A.roa (raw, json)
Hash identifier: s20/F7esEDyeejAcnd8QdzS3+MLC19pp1ERbRhTMGr4=
Subject key identifier: C0:EF:0E:27:F8:56:77:A3:C6:50:8A:B5:3C:D5:8C:7D:AA:BB:79:65
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0123D0
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C0B98692C26311EFAB9E5FB5762E951A.roa
Signing time: Wed 25 Dec 2024 01:58:37 +0000
ROA not before: Wed 25 Dec 2024 01:58:33 +0000
ROA not after: Wed 10 Dec 2025 01:58:33 +0000
asID: 984
IP address blocks: 154.199.117.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 74704 (0x123d0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 25 01:58:33 2024 GMT
Not After : Dec 10 01:58:33 2025 GMT
Subject: CN=676b66cc-c073
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:c4:3f:a2:a0:fe:b9:98:86:f2:fb:da:3e:eb:
54:dc:31:54:2f:c9:db:4c:f2:34:f3:73:4e:9f:89:
6f:35:83:1a:63:fb:f7:e5:61:e4:0d:b1:6c:35:62:
ae:9c:ab:c3:eb:c9:7e:3e:f0:dc:78:26:24:b3:45:
29:85:ce:41:80:c8:fe:82:f6:46:17:26:92:19:b6:
b2:9c:ae:8e:2f:b9:ea:7e:01:e6:59:6e:98:39:89:
09:41:13:5a:9a:49:0e:63:09:ab:17:3a:18:a0:d5:
a9:c0:9a:03:36:d7:08:53:3a:3d:8e:dd:3b:1e:c5:
36:7d:95:42:96:14:3a:41:84:09:df:2e:01:06:ed:
4c:68:33:5c:a8:c4:a8:f9:c3:27:39:f3:db:11:cf:
b8:a7:06:26:50:a0:cc:96:52:41:65:0b:e4:2b:e0:
ef:1d:b2:1b:5b:44:06:97:94:43:68:aa:b9:ad:12:
b8:1d:e1:11:3f:8e:e5:2c:57:45:28:a5:f7:7e:f3:
c3:3f:84:cd:86:b3:cd:01:c2:81:ea:18:f9:35:9b:
39:e6:b6:24:f4:da:ed:dd:23:7e:45:9a:03:15:e3:
93:9a:22:74:51:ba:9e:aa:66:94:65:b2:52:38:4b:
cd:be:79:94:af:54:9f:b9:74:f0:8d:ec:bf:fa:4e:
bd:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:EF:0E:27:F8:56:77:A3:C6:50:8A:B5:3C:D5:8C:7D:AA:BB:79:65
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C0B98692C26311EFAB9E5FB5762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.199.117.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:1b:ea:d7:2b:e3:37:1b:99:29:8a:7b:52:f8:b4:a8:68:1d:
57:88:bb:69:90:28:d7:3b:6d:54:40:64:4f:1b:0a:80:66:3f:
1b:5d:41:84:df:41:7f:9e:6c:d2:4f:09:a5:0b:3f:0f:c1:86:
97:b0:99:17:63:55:53:97:01:40:44:55:14:ba:63:34:42:d8:
c0:cc:53:92:ef:e1:ed:9a:48:92:3d:47:f5:93:1a:6b:c7:31:
fc:6d:4f:6c:79:03:9b:79:cb:97:b2:aa:d1:50:e2:18:20:29:
8b:a6:9d:06:56:74:ae:6b:a8:3d:0d:57:c3:a8:4b:cc:2d:6b:
f1:d8:68:e7:b5:65:0d:ea:e4:26:66:b3:cf:8f:6f:b3:41:20:
bf:06:cb:e6:bb:0b:53:eb:5e:10:43:ab:3b:68:f9:b7:29:22:
68:bb:eb:7e:0b:6b:08:fe:8d:35:4b:89:58:95:47:58:96:5d:
a1:14:e6:9d:23:87:49:4f:d3:ab:77:b7:c9:e4:39:17:72:40:
83:56:bb:d3:2b:62:fb:6c:f1:54:f1:ce:62:b8:01:07:88:67:
67:d8:82:eb:2f:d0:f6:4e:29:6a:38:53:59:41:c7:bb:49:5c:
2c:bb:07:26:17:4e:c9:d6:51:58:92:a7:97:35:f6:e4:8d:20:
8a:2e:54:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 03:55:31 2025 by rpki-client