Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CD3CAC1EC41611EFAD555790762E951A.roa
File: CD3CAC1EC41611EFAD555790762E951A.roa (raw, json)
Hash identifier: x12N2UHm84UwkRzn3kDeM7E4cc1KyaYf8wTvzBfXQ3E=
Subject key identifier: 18:55:AC:A5:3E:68:A3:2B:D6:53:00:29:A4:1C:C0:8C:17:25:7E:F2
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 012963
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CD3CAC1EC41611EFAD555790762E951A.roa
Signing time: Fri 27 Dec 2024 05:52:48 +0000
ROA not before: Fri 27 Dec 2024 05:52:45 +0000
ROA not after: Sun 12 Dec 2027 05:52:45 +0000
asID: 17561
IP address blocks: 154.197.78.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 76131 (0x12963)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 27 05:52:45 2024 GMT
Not After : Dec 12 05:52:45 2027 GMT
Subject: CN=676e40b0-3148
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:be:12:fa:90:fd:13:ca:04:2b:e0:75:34:09:
50:43:d2:55:85:9c:79:68:f3:6e:00:90:64:fb:3c:
22:14:2e:30:6a:c4:e3:9b:f2:01:21:e1:95:9d:1e:
b6:79:4e:35:f8:1f:ff:fe:77:59:bb:65:47:89:b4:
ed:50:28:e4:e0:1d:2d:6d:10:58:ee:9d:f7:cc:b0:
17:2d:89:1d:76:fe:40:77:a7:4f:a6:fc:95:9e:d6:
00:33:50:62:82:37:e1:80:51:1e:e8:78:e2:d0:a3:
3f:5f:0e:97:5b:15:e9:a0:d9:da:14:a9:dd:76:9f:
40:94:ce:af:08:10:e3:25:d7:a2:5c:cc:37:4b:1f:
d0:9e:51:4b:f8:0d:14:1b:78:93:ae:52:2d:a5:0d:
38:79:3f:f8:6d:62:ff:53:c9:ae:54:b3:6b:64:b2:
8a:85:93:2c:54:5a:cf:13:3d:63:ca:95:a1:5e:df:
e2:e2:b1:0f:60:16:38:a0:92:d5:72:d2:c1:d4:62:
00:93:55:33:d0:e5:cb:d9:e1:ca:3a:da:2e:24:fe:
cb:4c:7f:5a:8b:ac:da:93:4d:be:32:58:99:ae:ca:
bc:ac:b4:10:02:04:16:4e:98:9b:5c:c5:b5:19:f9:
9a:ab:00:e2:e5:54:f7:9e:4c:06:53:b5:05:74:4b:
aa:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:55:AC:A5:3E:68:A3:2B:D6:53:00:29:A4:1C:C0:8C:17:25:7E:F2
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CD3CAC1EC41611EFAD555790762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.78.0/24
Signature Algorithm: sha256WithRSAEncryption
c1:3f:13:29:ec:8d:a8:8e:65:31:dd:63:63:03:90:68:8f:57:
69:e4:6f:3d:1b:6c:29:1c:38:4a:2b:f3:f0:5e:5f:7a:73:91:
03:d4:6c:f7:07:ee:4a:91:6b:bf:d2:0a:28:20:28:5f:54:f8:
e4:e0:d8:29:4e:2d:30:3c:df:54:29:69:3b:1c:75:87:d8:a6:
de:5e:d8:36:e1:1d:6d:48:d7:0f:24:70:d8:23:cf:ec:6c:12:
b8:27:8c:e4:47:34:23:fb:62:d0:52:34:40:97:fd:db:ac:56:
29:af:c2:a8:3c:8f:aa:f6:5f:fc:16:41:07:53:2c:36:db:22:
23:f1:7c:f6:18:d2:96:24:ff:5d:6e:92:8f:94:ff:2b:2c:19:
65:3c:82:34:92:2e:bb:41:5f:8b:ea:7e:ba:ca:26:8d:48:0a:
5b:66:79:a1:5f:1a:a0:44:5c:5e:cf:97:58:dc:d0:a1:1c:d7:
f0:82:74:d4:5f:29:d2:dc:1a:14:e1:1c:20:66:fd:a9:1e:44:
c5:86:9e:3b:a2:66:1c:45:5f:f2:8c:4a:00:bf:9e:1e:25:9b:
d9:42:cf:68:bd:ae:36:5c:71:c3:65:6b:ae:2c:c3:3d:79:cd:
f3:a5:7a:1c:96:59:1b:61:35:1a:dd:44:e4:a0:2d:da:e5:b3:
74:bc:0f:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 03:50:40 2025 by rpki-client