Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C57ED10EC60B11EFAE9FF76E762E951A.roa
File: C57ED10EC60B11EFAE9FF76E762E951A.roa (raw, json)
Hash identifier: MlpCnMR+nMC8eSx0T4YsF88gp33HRe9qfhojR5qIOIM=
Subject key identifier: FB:F2:63:03:F7:82:8D:46:27:5C:67:23:62:38:42:A0:5C:A8:4E:93
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 012EBA
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C57ED10EC60B11EFAE9FF76E762E951A.roa
Signing time: Sun 29 Dec 2024 17:38:53 +0000
ROA not before: Sun 29 Dec 2024 17:38:49 +0000
ROA not after: Sun 12 Dec 2027 17:38:49 +0000
asID: 17561
IP address blocks: 154.217.64.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 77498 (0x12eba)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 29 17:38:49 2024 GMT
Not After : Dec 12 17:38:49 2027 GMT
Subject: CN=6771892d-42da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:18:96:bb:d8:08:b7:58:cd:aa:36:6f:10:33:
40:fc:fc:0b:73:cf:5e:5d:c9:7b:a7:a5:8d:b5:cd:
d4:fc:94:c4:75:7a:77:ad:b3:b8:27:14:a0:d7:5b:
90:19:f7:88:ca:77:8b:0a:32:1d:31:54:23:65:fa:
5a:44:9e:01:5b:6a:1d:c9:a3:3f:8d:5d:4c:13:a8:
e0:9a:97:d6:1a:6e:3c:1a:6c:77:66:9f:a8:ef:1c:
9b:80:c6:3b:01:63:42:55:2a:7e:67:da:a5:48:d0:
28:f6:19:8e:0a:00:26:b5:f7:d7:1f:6f:52:44:a1:
eb:de:f6:c8:14:77:c1:c5:b9:28:43:ef:1f:91:9d:
21:4e:c6:bc:4d:b8:b3:56:d6:fe:3e:08:0d:72:20:
5f:c1:a8:32:15:9d:e9:a1:46:75:e6:e3:cd:8c:ab:
b2:19:91:6f:f1:35:5a:8a:16:b2:ee:a6:f1:c5:c3:
63:25:aa:ba:38:9a:50:b7:e9:81:5b:f0:b9:e0:3f:
02:df:b0:01:34:b1:d1:90:17:90:5a:8d:79:29:82:
66:75:e6:50:b3:0b:0e:b4:ea:f4:5b:bb:d4:d0:39:
7b:ca:f9:c7:54:2d:49:75:ae:90:d3:ff:38:52:4b:
31:f9:de:74:38:de:3f:de:d2:b3:33:ae:5e:d7:f9:
eb:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:F2:63:03:F7:82:8D:46:27:5C:67:23:62:38:42:A0:5C:A8:4E:93
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C57ED10EC60B11EFAE9FF76E762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.217.64.0/24
Signature Algorithm: sha256WithRSAEncryption
84:43:9c:b4:96:61:b8:c9:38:56:f5:05:ea:f6:33:c6:4a:4e:
dd:6f:ab:24:e9:13:34:4c:f9:a7:41:ad:7c:c7:3b:a9:55:48:
01:6e:79:ec:97:90:d9:86:3c:33:aa:c6:ae:2f:37:1f:b6:c0:
d2:93:cd:a2:18:18:34:0e:0f:08:e1:7b:11:af:f3:f8:23:1b:
48:a2:57:25:76:88:6a:7c:e7:e2:db:6e:aa:79:19:7a:26:5b:
81:96:c1:b6:17:d0:4f:bf:8f:38:bd:05:de:8f:07:8d:2a:89:
61:cf:b7:0b:9f:dc:cd:f9:a0:70:64:d2:39:98:ce:5b:0b:c7:
9a:d4:e1:43:7c:8b:34:18:f0:01:ff:10:b7:98:2c:5b:c2:8a:
99:85:c2:3b:80:ad:d7:13:28:2b:93:51:b5:c4:0e:f5:5c:9d:
6b:32:a3:82:64:27:c7:dd:a7:b3:e1:f0:b6:cd:08:5e:cf:f6:
fb:02:fa:cc:3c:8f:d5:33:96:0d:71:d3:cc:c4:63:db:3f:17:
2d:7f:db:43:74:a0:f6:d7:89:0c:c2:3d:9f:54:5d:b4:d4:7a:
b5:7b:17:70:90:98:7e:ea:a4:ff:ce:fc:f6:34:d3:1d:1e:c3:
15:14:22:84:e3:5c:b2:bd:9d:20:35:e4:ae:ba:90:cf:8f:b2:
5a:cc:99:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 20:20:40 2025 by rpki-client