Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C1A81B38CDB511EF9F3927B8762E951A.roa
File: C1A81B38CDB511EF9F3927B8762E951A.roa (raw, json)
Hash identifier: fG9Nhxvdc7nraXnPtMOLPaKe8bY3uBwa6aTLasxbhsE=
Subject key identifier: 79:20:8E:DD:D6:A1:2C:1F:66:C3:01:4A:11:39:A7:35:FF:BB:1A:DD
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0136B4
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C1A81B38CDB511EF9F3927B8762E951A.roa
Signing time: Wed 08 Jan 2025 11:43:20 +0000
ROA not before: Wed 08 Jan 2025 11:43:14 +0000
ROA not after: Tue 16 Dec 2025 11:43:14 +0000
asID: 984
IP address blocks: 154.200.138.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 79540 (0x136b4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Jan 8 11:43:14 2025 GMT
Not After : Dec 16 11:43:14 2025 GMT
Subject: CN=677e64d8-5e27
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:62:86:06:f6:1e:bc:e7:00:37:b9:36:4f:4e:
51:59:8a:61:ed:12:04:0e:53:82:67:9e:a8:d1:e6:
2b:e7:01:08:5c:3b:c7:f4:67:ea:b8:c0:d6:cb:dc:
73:87:65:c5:5b:5c:64:f9:aa:fe:ae:7b:87:31:76:
5a:cd:d7:73:82:db:cf:31:e5:71:c5:4f:c2:25:e2:
b7:04:c2:38:86:c3:89:09:35:23:58:bb:6b:0b:e0:
8a:96:c8:5f:2b:64:e5:2d:8b:3b:0f:88:4a:21:0e:
54:54:dd:29:03:6f:07:2f:ed:3f:82:f5:e2:d3:17:
05:2b:58:76:fc:e1:38:9c:22:b6:b7:ca:f7:53:76:
43:b4:bc:64:0e:90:88:b8:78:b4:b2:46:8a:6b:c0:
11:d4:b0:d7:88:24:16:0e:b2:0d:84:d2:87:56:66:
6b:06:a3:6f:9c:fe:ff:e1:7e:b2:a4:68:19:af:ec:
e0:1e:28:9f:b4:af:58:b7:5d:4a:cf:a2:53:28:a2:
6a:7e:66:ce:45:24:01:d7:df:60:1c:25:22:9a:f9:
4f:33:b8:3d:7d:b2:68:b2:5a:72:fe:56:48:70:ac:
a5:f8:e3:bd:35:bc:3e:a9:ef:4b:bc:81:d8:dd:a9:
da:de:fa:90:95:e3:27:ba:99:9f:e8:6b:2c:32:80:
10:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:20:8E:DD:D6:A1:2C:1F:66:C3:01:4A:11:39:A7:35:FF:BB:1A:DD
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C1A81B38CDB511EF9F3927B8762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.200.138.0/24
Signature Algorithm: sha256WithRSAEncryption
c3:bd:ff:7b:63:90:ac:e7:f0:31:fa:c5:5a:50:f2:35:41:7e:
fa:28:eb:b0:d4:2f:a6:e6:60:4b:6c:15:33:cd:2e:3b:2f:c3:
a8:62:4f:49:d5:e8:83:25:2b:d2:dd:7b:8e:c1:be:0d:bd:0c:
b1:2a:b4:76:9a:80:cf:0e:45:80:9a:c6:05:9d:ad:ce:99:96:
d3:96:13:6c:72:48:d6:7e:0f:be:6a:7c:7e:dd:08:3f:78:33:
dd:25:5d:84:ed:e6:bf:fe:54:06:b3:e0:56:e8:35:b1:d7:1b:
c0:21:67:9b:c2:05:cb:4e:d9:da:c6:68:8a:09:db:97:3d:c9:
41:5b:42:e0:0b:fa:a6:0c:85:da:2d:af:62:b9:90:ec:92:02:
95:61:f1:13:e7:d6:2e:2b:e1:78:63:51:a9:d9:97:b0:d6:28:
be:2a:1c:0d:73:fd:98:07:c9:e1:b9:84:fc:0e:73:55:3c:6e:
94:cc:36:26:0f:ea:a0:9f:1b:4c:51:d6:b0:7d:76:92:f2:10:
55:62:b8:3f:e8:16:c0:5b:b3:bb:34:76:cb:fc:0c:1e:c3:93:
84:72:8b:6f:a9:cd:bd:af:85:fa:e3:df:a1:92:5d:dd:ae:44:
e7:99:36:82:42:9b:51:3c:4a:bb:60:4e:7e:a2:0a:a2:72:74:
bb:b4:49:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 20:18:49 2025 by rpki-client