Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C5920CCCF44D11EFAB8DF1A7762E951A.roa
File: C5920CCCF44D11EFAB8DF1A7762E951A.roa (raw, json)
Hash identifier: KZGEcZywoh246gLKpRVop5EJa8WP7Dmldq12dQaoRp0=
Subject key identifier: F2:BC:83:33:A3:06:FF:89:64:04:B2:10:46:27:55:C0:17:B2:F0:F4
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01644D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C5920CCCF44D11EFAB8DF1A7762E951A.roa
Signing time: Wed 26 Feb 2025 14:27:14 +0000
ROA not before: Wed 26 Feb 2025 14:27:10 +0000
ROA not after: Sat 19 Feb 2028 14:27:10 +0000
asID: 17561
IP address blocks: 154.82.209.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 91213 (0x1644d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Feb 26 14:27:10 2025 GMT
Not After : Feb 19 14:27:10 2028 GMT
Subject: CN=67bf24c2-318c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:2d:c2:c5:a2:cf:cb:8a:24:16:00:1a:fa:e5:
d8:eb:1c:c2:13:42:db:62:2f:27:5c:90:d7:2d:43:
2e:e6:c7:00:93:1b:c4:95:43:70:ec:f4:e0:2f:c8:
a1:68:93:83:d3:c7:f4:ac:58:ce:0c:02:59:d6:d9:
90:b2:c5:7b:05:30:7d:7d:6a:94:3e:02:ee:87:62:
d0:43:07:43:76:0c:9f:f7:11:56:ef:14:dc:41:ad:
83:a4:aa:00:e6:5d:6d:5b:37:92:1c:21:5a:5b:67:
4f:85:45:ed:7a:56:4c:70:95:bd:28:ac:46:92:36:
68:18:55:40:0f:e2:30:ea:79:d5:81:0c:73:a3:73:
26:1f:49:57:49:3c:fa:69:00:b7:c0:12:c8:f8:d9:
f5:f2:1f:05:6d:65:c0:43:48:47:ff:21:c5:fc:88:
5b:8e:81:9e:fb:47:33:64:65:16:31:84:71:1a:08:
9d:4f:4e:04:cd:d7:7a:90:79:04:55:15:93:08:2a:
fd:04:be:e9:53:9d:af:2a:b0:9a:1f:c4:fb:de:ae:
3d:cb:91:6c:b3:2e:3c:8c:c7:f4:a5:57:48:aa:68:
2e:51:db:63:1a:1e:26:97:e3:ed:ed:ae:c9:d3:86:
b5:5e:72:08:71:c2:93:44:46:52:40:91:6f:55:1d:
2c:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:BC:83:33:A3:06:FF:89:64:04:B2:10:46:27:55:C0:17:B2:F0:F4
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C5920CCCF44D11EFAB8DF1A7762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.82.209.0/24
Signature Algorithm: sha256WithRSAEncryption
79:e0:d5:b7:cd:35:1e:f0:1e:fb:f0:84:fb:8c:0d:8f:0b:6d:
51:ca:ca:3a:9b:b3:d6:46:2d:58:b5:bc:1c:21:51:5b:f9:2a:
c2:4f:f3:0d:9b:4d:d1:78:b9:70:1b:55:26:2b:9f:0f:10:09:
f6:24:18:d1:c9:ec:e6:f3:a2:f9:96:7e:df:d6:97:66:be:b9:
9e:61:fc:2b:db:43:5a:d3:7c:37:13:a9:ae:86:63:c1:4f:30:
e6:26:14:4c:6b:a7:88:27:0e:89:8f:6d:7c:57:0e:d8:1d:44:
5b:45:73:fc:69:b6:fb:54:fa:c8:e2:a0:7e:d9:61:cc:cc:95:
57:3d:ac:38:c2:c9:4b:26:0e:a9:5f:69:5c:3c:a3:29:f3:9c:
3f:fc:e6:43:13:d9:c6:8e:d9:d5:a7:49:90:94:a3:87:2d:c4:
a4:49:be:b4:6b:64:e3:a0:d3:e6:76:d2:ea:c7:15:53:1b:26:
fa:49:bb:ae:91:7b:9f:78:a6:f9:c6:89:e7:54:39:fe:0b:26:
c4:27:02:96:cb:ad:19:37:ff:d0:57:40:db:1a:a9:73:27:3e:
3a:32:3b:ac:f0:42:d9:6b:cc:c2:7e:35:31:91:4f:43:cb:53:
f6:65:fb:1d:a5:e6:3f:a3:45:09:0b:ea:22:4d:ac:65:22:90:
d4:00:3e:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 16:45:07 2025 by rpki-client