Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CD6D2848C5ED11EF98C9A2B2762E951A.roa
File: CD6D2848C5ED11EF98C9A2B2762E951A.roa (raw, json)
Hash identifier: zR3KyXybSkEOwn3tXqDRUlVpIYJN4NtAbzd0M4UTxek=
Subject key identifier: 76:B5:A4:2E:2B:E6:B9:CA:B8:80:85:C5:56:76:A9:F3:55:DF:7C:6C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 012DBC
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CD6D2848C5ED11EF98C9A2B2762E951A.roa
Signing time: Sun 29 Dec 2024 14:04:22 +0000
ROA not before: Sun 29 Dec 2024 14:04:18 +0000
ROA not after: Sun 12 Dec 2027 14:04:18 +0000
asID: 17561
IP address blocks: 154.211.37.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 77244 (0x12dbc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 29 14:04:18 2024 GMT
Not After : Dec 12 14:04:18 2027 GMT
Subject: CN=677156e5-e147
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:68:bc:3c:15:0a:4e:9e:e7:4a:b0:02:c4:a5:
b8:85:17:c1:54:86:51:a0:50:2e:19:c8:d0:74:50:
17:e3:81:bf:9e:dc:b9:24:ab:86:c0:c1:81:1b:4e:
24:f3:30:ae:24:21:97:14:09:0f:09:b1:e7:02:38:
54:23:2f:8f:22:e7:a2:64:10:1c:b3:2f:e1:b9:03:
e2:1c:77:77:85:c4:01:6c:02:01:17:dc:c4:6e:34:
d0:ee:b4:fa:36:00:66:33:ee:8e:16:a5:9f:52:a0:
0d:7a:a6:01:f8:85:4e:d2:72:09:40:f6:bd:2d:d3:
ef:ce:58:ad:74:f8:0a:50:70:94:43:99:40:fe:d3:
ec:bb:81:ee:f2:74:42:8f:a0:79:36:8d:07:c5:2b:
e4:3b:dc:8d:4b:d2:3e:ae:a7:98:38:89:67:53:ba:
fc:92:27:d8:b4:ee:16:7d:ae:e2:53:13:a6:16:ef:
71:5a:7d:8a:c8:e7:65:f9:d1:ff:69:87:63:98:75:
e9:46:f4:df:04:1f:2b:5d:6d:b6:c3:53:35:e5:cc:
d8:b3:9a:af:30:ce:d5:0d:2c:ac:ea:01:14:f2:3d:
ce:c4:de:bf:39:8b:d0:cb:1b:34:07:07:de:33:87:
13:bb:9a:da:ec:c6:9b:f0:76:7f:d2:84:26:47:37:
ad:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:B5:A4:2E:2B:E6:B9:CA:B8:80:85:C5:56:76:A9:F3:55:DF:7C:6C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CD6D2848C5ED11EF98C9A2B2762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.211.37.0/24
Signature Algorithm: sha256WithRSAEncryption
c6:8d:21:b1:8c:7a:b9:4b:16:b3:58:6c:35:aa:95:d9:4d:ad:
1b:b3:95:9c:6e:b2:1b:89:52:48:6c:12:78:5c:3d:0b:71:d8:
ab:d1:64:f5:53:1b:b7:6a:f3:ca:93:6e:52:0b:d5:2d:5f:7e:
48:46:8d:4c:92:41:0f:ef:50:b0:20:dd:36:0f:de:38:48:a8:
d6:25:29:34:2e:dc:88:ca:ab:8e:ac:a8:4d:a4:c2:21:25:b2:
be:cf:e4:f0:ae:4b:2e:4f:fc:6f:e1:ed:8b:8e:18:10:24:74:
e0:c1:54:75:92:c9:fa:7b:5e:0f:d1:15:0b:42:ad:70:db:83:
f2:2b:22:75:ba:6c:ff:bf:b0:d1:91:fa:86:47:c2:e9:fc:41:
16:ce:1a:63:b6:e3:ec:69:1e:cc:f3:a3:09:cd:47:8c:da:d9:
2d:bb:6a:cc:3f:0d:2f:91:33:d3:11:f7:f9:e2:dd:68:f0:ed:
39:85:43:60:e3:cb:bb:a3:f1:4f:2d:52:5d:5f:23:a2:59:c3:
95:dd:17:31:51:14:dd:f6:8f:d8:18:0d:e2:47:26:2a:7a:db:
d2:d0:a1:e1:7c:d5:94:90:4e:3f:64:7c:81:c9:a3:24:d5:22:
f9:7f:7a:d7:9d:f6:72:0a:86:92:2b:8f:8d:82:25:05:95:a7:
59:c1:2a:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 07:19:09 2025 by rpki-client