Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C7A8858AC8AC11EF892934A8762E951A.roa
File: C7A8858AC8AC11EF892934A8762E951A.roa (raw, json)
Hash identifier: ZsBhnHZ/gB2arDif+AH52VDLTqtkRTeHjotp39khTjo=
Subject key identifier: 43:75:45:89:E6:FA:41:E1:C2:86:04:9E:CA:84:7A:A1:68:EF:A2:63
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 013184
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C7A8858AC8AC11EF892934A8762E951A.roa
Signing time: Thu 02 Jan 2025 01:56:28 +0000
ROA not before: Thu 02 Jan 2025 01:56:24 +0000
ROA not after: Sat 13 Dec 2025 01:56:24 +0000
asID: 984
IP address blocks: 154.220.157.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 78212 (0x13184)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Jan 2 01:56:24 2025 GMT
Not After : Dec 13 01:56:24 2025 GMT
Subject: CN=6775f24c-d732
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:15:fc:87:13:da:69:e8:6a:d4:1e:d0:38:7e:
0d:9f:06:3f:85:72:33:f0:f5:ad:16:9d:4e:d3:fc:
2c:d6:d9:c8:87:7a:5c:49:49:fe:eb:37:05:83:ff:
16:92:94:a5:af:f4:45:19:d6:ae:56:1f:76:43:8b:
ff:b5:14:e6:4e:f7:81:a1:f4:9c:d3:1f:32:4f:02:
18:48:a8:34:5d:e9:af:34:f7:3f:b9:dd:48:59:b3:
e2:e3:b4:ee:59:75:f4:ae:53:5f:8d:70:4a:a4:77:
d4:c1:fc:50:fd:a3:e4:7e:83:83:85:0f:7f:aa:a6:
e2:9d:71:5e:47:cc:d6:14:a5:02:b1:59:11:3d:c4:
30:85:9b:73:3e:f5:00:2a:df:3f:03:2c:55:c0:71:
30:8e:45:69:8c:b6:1b:6c:75:d2:75:eb:ff:62:f5:
07:3a:e5:89:ad:55:01:b7:ff:7a:2d:7d:68:08:f7:
a6:79:a5:83:c5:13:80:ff:89:b1:1f:99:25:ff:88:
59:eb:aa:01:2c:f3:b4:89:f8:3f:c1:e0:dd:ec:76:
e4:1c:74:98:a9:1a:df:cb:de:9b:5f:81:ea:19:42:
84:6b:2e:d5:dc:02:7a:cd:d0:31:2b:c5:c5:b0:fc:
f9:b1:0d:37:a1:87:60:90:1b:cf:e4:d7:b2:8e:cb:
2e:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:75:45:89:E6:FA:41:E1:C2:86:04:9E:CA:84:7A:A1:68:EF:A2:63
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C7A8858AC8AC11EF892934A8762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.220.157.0/24
Signature Algorithm: sha256WithRSAEncryption
21:35:fc:32:57:cc:19:3b:fc:b4:3f:fb:fe:72:65:48:51:52:
30:b1:9c:07:6e:90:ff:9e:54:5b:13:4b:51:cf:04:3c:fb:a9:
94:09:f3:e2:d8:42:08:fa:c6:04:17:d4:be:b7:35:b0:c9:f9:
38:68:f4:97:4b:60:e9:ac:12:85:97:d7:1b:1b:d1:37:14:03:
36:2e:0d:c1:0d:91:e2:60:f8:e4:d3:77:4e:15:e6:06:b7:26:
bc:04:b0:a5:cb:7e:ac:c0:42:84:f9:72:6a:d3:9f:59:af:a3:
b5:e9:70:94:ad:b8:f6:51:00:e3:b1:08:51:8f:2e:0e:57:4f:
a7:d9:a9:a6:ad:b0:50:2f:df:e4:03:b8:b0:74:9b:94:dd:27:
1a:15:ba:e5:ad:62:90:c7:9d:85:82:22:50:aa:51:22:29:e9:
27:3a:ad:f8:ad:8c:33:12:29:4a:91:db:d4:e5:d5:00:e6:98:
f2:79:45:31:d1:77:9f:94:35:2f:bb:22:8d:93:ab:f3:ec:4b:
b0:a7:a1:e2:e0:e0:d6:40:57:c5:82:5a:e7:72:ce:e7:85:48:
ec:e6:01:0a:86:85:9a:61:6f:e3:c6:74:ac:c1:cb:8c:ff:6e:
23:b4:c5:d7:f3:50:6e:c3:1d:e5:6b:e1:ce:93:3d:e9:b3:1c:
7e:7d:f7:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 04:28:48 2025 by rpki-client