Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CC7A99B0C35F11EFB83C7E7C762E951A.roa
File: CC7A99B0C35F11EFB83C7E7C762E951A.roa (raw, json)
Hash identifier: jLUFBTodDqswe6Mc5Gdi4+0dIMY/DXxe1JDCwRu19LE=
Subject key identifier: DC:B8:0B:C4:EA:09:D6:5A:0B:73:2A:46:19:6F:E8:21:36:B5:91:1C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 012638
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CC7A99B0C35F11EFB83C7E7C762E951A.roa
Signing time: Thu 26 Dec 2024 08:02:49 +0000
ROA not before: Thu 26 Dec 2024 08:02:45 +0000
ROA not after: Fri 12 Dec 2025 08:02:45 +0000
asID: 984
IP address blocks: 154.91.37.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 75320 (0x12638)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 26 08:02:45 2024 GMT
Not After : Dec 12 08:02:45 2025 GMT
Subject: CN=676d0da9-518c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:34:f7:c4:cf:93:f0:b8:8d:c5:c5:b8:83:fe:
98:c2:bb:f6:82:40:61:b0:8f:9e:da:09:c6:4b:b6:
3f:a9:5a:5a:2d:6c:32:28:17:16:e2:4c:f3:d8:44:
d4:cf:bd:b8:95:7e:28:bf:78:0e:54:07:93:f4:ca:
25:77:44:85:d4:98:b8:33:5f:d3:8c:4b:cc:e4:16:
1b:a5:1b:86:5c:ad:91:71:59:97:0b:a6:41:aa:89:
ad:8c:21:9c:00:c0:22:1b:75:55:30:06:24:a0:6d:
6f:62:b7:f9:5f:e8:8a:3c:f9:4c:8a:30:c1:40:37:
c2:f0:d0:49:55:b4:11:9f:60:90:82:c4:b6:d1:84:
b0:2e:92:a8:23:bd:a1:9a:de:14:40:80:b8:3d:1f:
47:5e:12:c4:07:52:f4:f8:db:fe:3a:5f:0c:79:4c:
12:bd:af:12:ff:e1:df:45:d6:80:57:b5:10:7a:d3:
b2:67:d1:9a:19:62:e9:be:b6:34:5c:c0:c8:8e:4b:
6c:d9:9a:f8:85:c1:07:97:eb:70:eb:9c:57:df:e0:
fa:8d:ce:62:2c:f5:ac:6d:eb:a3:c1:ef:ef:a3:b4:
d9:d8:af:ca:ac:c3:ea:eb:49:57:43:48:4d:53:a8:
1c:24:46:9b:b9:b4:a9:1b:aa:79:35:ce:91:c6:60:
01:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:B8:0B:C4:EA:09:D6:5A:0B:73:2A:46:19:6F:E8:21:36:B5:91:1C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CC7A99B0C35F11EFB83C7E7C762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.91.37.0/24
Signature Algorithm: sha256WithRSAEncryption
36:44:3b:03:d0:9d:91:3e:f6:6a:bd:66:04:e5:db:43:9e:15:
d6:75:ff:90:bf:70:35:43:0a:f1:3b:50:e6:47:55:a2:8e:c5:
1f:87:be:dd:f4:f0:94:40:fd:bf:c5:36:26:42:44:a4:a6:23:
c1:4c:d8:1c:da:fe:7a:12:4c:18:ec:6c:98:0f:e1:6d:2e:e9:
41:d5:cb:a5:5a:e1:5a:1e:26:68:75:44:44:0a:a6:19:e9:f3:
20:92:b4:69:9e:b0:15:37:cb:a8:d5:c2:a3:91:3b:a3:cd:0b:
c2:42:91:0d:5c:eb:f0:e9:36:ee:ed:16:c7:b1:af:f8:f9:43:
82:f0:a4:72:a2:20:ec:e1:c0:ab:ac:ec:1d:c8:55:d9:58:fe:
f0:7b:84:ac:3f:15:35:d8:38:cf:14:2b:47:3d:37:c5:d7:b1:
62:4b:46:3f:4e:18:51:7a:8a:5d:0a:71:b4:a6:d4:b0:44:61:
ee:91:7f:ed:b7:b1:f3:1a:ae:d7:89:74:8d:fe:64:4b:e0:09:
f5:a4:bc:d8:2a:76:51:b7:f0:f4:c0:e9:81:03:94:90:68:c5:
8f:2b:6d:c0:ac:d7:99:df:64:95:21:12:40:da:d4:06:64:3a:
bc:15:bc:2a:c6:b6:6d:a1:3d:e3:b6:2f:be:95:0a:8e:cc:f5:
b5:51:b0:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 20:16:49 2025 by rpki-client