Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CE7A0AB8C40711EF9D7F95B4762E951A.roa
File: CE7A0AB8C40711EF9D7F95B4762E951A.roa (raw, json)
Hash identifier: /cmNMEkILAqwzZxlGzMhGk1B7VrSEDu2/OYh/N1Zucw=
Subject key identifier: B9:E0:5B:F0:EE:70:3E:70:FD:A9:9A:12:8A:9B:D7:F6:63:66:AD:5B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0128F3
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CE7A0AB8C40711EF9D7F95B4762E951A.roa
Signing time: Fri 27 Dec 2024 04:05:28 +0000
ROA not before: Fri 27 Dec 2024 04:05:24 +0000
ROA not after: Fri 12 Dec 2025 04:05:24 +0000
asID: 984
IP address blocks: 154.195.4.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 76019 (0x128f3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 27 04:05:24 2024 GMT
Not After : Dec 12 04:05:24 2025 GMT
Subject: CN=676e2788-598d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:af:4d:ff:df:cf:46:c1:93:e6:02:92:0c:34:
60:40:a0:3a:07:be:a2:3b:77:73:9a:bc:cf:a2:15:
ac:87:a3:64:04:2f:21:3a:89:67:bd:3f:a2:20:7b:
6a:bc:97:6c:3e:78:bb:0b:1a:e9:85:94:0b:95:39:
1f:ad:f1:b2:ea:01:cd:89:80:94:28:36:86:ca:72:
8f:5a:2e:61:5f:d9:70:db:06:f0:a6:34:70:79:de:
f2:60:3d:9d:d6:03:92:55:f1:40:5f:0d:29:e5:e9:
df:55:58:0e:7c:0d:86:07:d0:3f:9d:88:6c:ef:bf:
d2:5c:e4:a3:a8:61:fd:9f:36:17:86:c1:9f:92:f3:
c5:48:d9:95:2c:29:3e:75:de:71:c4:fe:08:1c:df:
15:01:d3:30:97:3e:c8:5a:84:63:62:a0:8a:00:4c:
ed:20:b4:9b:e5:c8:b4:fa:88:fd:3b:67:8a:bf:81:
62:64:54:36:db:94:b7:35:e0:58:62:98:ff:de:95:
85:4e:59:04:bc:9d:47:80:99:ee:e4:6e:48:4a:39:
7a:3b:7d:57:9f:df:48:d9:f4:39:de:55:8b:1a:a4:
66:ab:4c:f4:a4:f5:0b:99:a1:9c:8d:69:4c:43:51:
ef:02:cd:49:b0:50:cd:d9:12:96:ff:d5:81:e3:51:
0e:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:E0:5B:F0:EE:70:3E:70:FD:A9:9A:12:8A:9B:D7:F6:63:66:AD:5B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CE7A0AB8C40711EF9D7F95B4762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.195.4.0/24
Signature Algorithm: sha256WithRSAEncryption
cf:b2:f5:e7:95:b2:71:03:85:37:c1:d9:dd:b6:66:87:a9:fe:
5a:0f:f9:f5:db:79:af:af:5e:a9:77:a1:d8:d9:58:2a:0e:63:
93:81:cc:5e:8e:cd:f8:6e:a1:7d:0d:9f:fd:c5:5a:b3:0b:b7:
ad:a5:d2:e1:e7:70:cb:08:a8:3e:7d:17:22:a9:ae:13:af:25:
e3:91:15:dd:17:46:ce:3d:24:59:a9:3d:6f:7f:f2:35:61:8b:
e9:fd:5e:63:70:8b:fa:a3:b9:e3:33:0e:39:d1:2a:e7:6d:de:
b0:c4:53:35:9e:d4:04:f6:14:49:2a:7e:82:ef:ed:59:bf:d0:
fd:0e:ed:25:f4:c2:e2:97:e5:4d:9d:76:68:ea:ab:f3:bd:61:
30:4c:87:9e:82:a6:18:61:b1:4b:c0:2d:d5:54:0a:10:a4:b2:
bc:4a:d1:b3:b3:07:ee:6d:b1:7c:bb:36:6d:ea:73:b7:8a:28:
47:13:20:9f:dd:86:5b:65:e2:f9:02:82:d5:73:c8:66:82:a5:
44:0d:6e:74:61:16:0d:3e:d7:aa:a4:fa:a8:c9:df:65:46:1c:
50:61:78:27:33:b8:25:45:7d:53:8d:d8:19:18:71:15:1f:d0:
bb:8d:b4:50:e2:f1:c2:54:c6:99:9e:a9:24:bc:cb:f2:d2:43:
dc:ac:a9:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 00:40:39 2025 by rpki-client