Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C59A86D4F42C11EF9E48C6BB762E951A.roa
File: C59A86D4F42C11EF9E48C6BB762E951A.roa (raw, json)
Hash identifier: h3ikh9M2P1HcgkXehs0t2a60YMM5nWeJFR0+FVpKkL8=
Subject key identifier: DD:5C:70:F3:9F:AE:3F:9E:5B:12:D8:A3:8F:C4:6A:94:12:62:EE:83
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 016237
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C59A86D4F42C11EF9E48C6BB762E951A.roa
Signing time: Wed 26 Feb 2025 10:31:00 +0000
ROA not before: Wed 26 Feb 2025 10:30:57 +0000
ROA not after: Thu 19 Feb 2026 10:30:57 +0000
asID: 984
IP address blocks: 154.208.76.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 90679 (0x16237)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Feb 26 10:30:57 2025 GMT
Not After : Feb 19 10:30:57 2026 GMT
Subject: CN=67beed64-b06c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:fc:fd:cc:26:c0:d9:21:9a:82:6c:d5:9b:08:
bd:48:d9:5e:16:65:87:a8:6e:c1:d4:5c:b1:ef:81:
d1:43:2d:20:ff:61:8f:7f:5a:5d:e7:29:7d:31:a1:
fa:47:c8:a9:2c:ef:b8:a0:34:73:9d:95:e1:9b:a1:
dc:bc:90:cf:60:58:bc:ed:f9:fb:aa:98:df:09:3d:
64:7a:3c:97:57:f0:aa:08:fb:c6:46:81:90:ba:e9:
d2:98:4d:8c:81:4b:93:93:e8:7f:73:23:19:a0:7c:
10:97:58:36:2a:63:05:19:69:29:d7:21:7d:9d:2c:
a1:20:e8:7d:0c:48:97:1b:96:6e:79:2f:a8:3f:88:
2c:96:00:15:97:23:0a:b2:be:33:01:0c:fb:f8:09:
bf:8e:58:4c:a5:65:f9:b4:34:6e:d9:c5:0a:37:17:
19:60:31:4e:bd:04:93:fb:65:91:48:4b:bb:0f:8b:
46:60:4a:fa:c6:5c:67:69:61:c2:1b:69:e7:0e:cd:
ae:70:ff:dd:55:ea:2e:7f:41:5b:7f:3d:f4:43:47:
31:09:de:e4:e6:95:65:fb:9d:a7:d4:9a:72:53:af:
1a:53:48:98:dc:ab:aa:de:11:0f:80:d2:98:73:3d:
ce:2a:4c:27:93:c8:e8:fc:77:e0:5c:31:b4:77:2d:
80:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:5C:70:F3:9F:AE:3F:9E:5B:12:D8:A3:8F:C4:6A:94:12:62:EE:83
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C59A86D4F42C11EF9E48C6BB762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.208.76.0/24
Signature Algorithm: sha256WithRSAEncryption
03:22:36:6b:60:18:44:a0:0f:21:f5:43:37:90:17:e9:3e:fc:
6a:03:0b:f5:97:57:bb:1a:bb:5e:b2:79:0c:c8:1c:fe:e5:51:
3c:7b:b4:fe:71:7b:cc:2f:dc:50:55:dc:97:dd:2f:72:f8:c0:
32:93:34:a2:e9:85:95:79:c0:7f:58:7c:f8:b2:64:60:4c:85:
b0:ae:93:ae:8c:4d:a5:9a:e4:6a:9b:50:5b:f8:89:4a:ca:7b:
ed:c5:52:65:b6:b3:f8:f0:36:cd:a5:09:3e:ac:c3:05:6e:42:
94:0a:8f:1f:47:ae:6b:ca:ae:21:a2:4e:ba:83:15:38:27:61:
e5:cb:c5:6c:c9:c0:0e:38:e8:e7:c7:e9:e3:b5:ce:31:8c:ed:
7b:3e:13:30:1c:c8:29:dd:bc:11:5b:f3:1c:1e:59:3a:7d:a6:
56:9f:fc:88:27:22:3e:d4:8d:6b:b9:d9:1f:fe:ce:95:bf:b9:
35:92:62:aa:70:15:24:f6:1f:7e:0e:6c:ca:fa:b2:dd:a7:32:
b7:19:7c:80:c4:53:99:2a:43:59:4d:85:32:c3:94:18:3f:32:
76:34:97:15:a8:f4:0c:db:f5:37:35:79:65:81:85:cd:cf:e4:
b5:99:56:39:0f:bf:7e:1d:a5:d6:6b:39:2b:f3:c7:37:c0:89:
b0:5b:bc:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:45:21 2025 by rpki-client