Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D012720AF46511EF9852A24E762E951A.roa
File: D012720AF46511EF9852A24E762E951A.roa (raw, json)
Hash identifier: 0UpvsCiVSWI1/A9F2l3lRKzB0iuil1nnUfonU3BuN18=
Subject key identifier: 91:F6:AA:3D:4E:7C:80:CF:0D:87:C4:06:3B:32:05:BF:96:45:9C:C5
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 016544
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D012720AF46511EF9852A24E762E951A.roa
Signing time: Wed 26 Feb 2025 17:19:19 +0000
ROA not before: Wed 26 Feb 2025 17:19:15 +0000
ROA not after: Sat 19 Feb 2028 17:19:15 +0000
asID: 17561
IP address blocks: 154.197.89.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 91460 (0x16544)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Feb 26 17:19:15 2025 GMT
Not After : Feb 19 17:19:15 2028 GMT
Subject: CN=67bf4d17-d8a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:a9:ad:d2:55:49:fd:e1:dd:fd:a6:58:cb:4e:
bd:c9:55:7b:a6:d3:57:d2:1f:71:d4:24:4c:34:0c:
f5:0c:fc:03:39:3d:15:4d:b9:bd:d6:3b:16:84:96:
4a:f9:52:6d:da:2d:a1:af:85:0f:56:02:67:09:3e:
42:fe:24:1d:27:2c:f7:3e:a3:a7:24:11:7b:b6:60:
d8:71:d7:e6:e6:81:db:a7:2c:6b:df:12:81:4f:3a:
35:fc:1b:20:08:09:7b:fc:83:cf:39:fe:85:12:6f:
f2:72:65:1a:35:1d:60:ea:7a:57:69:eb:6a:b0:c2:
07:e6:d5:74:e7:7d:d6:71:59:2c:71:e2:f4:ae:67:
00:40:46:5d:c8:7b:47:46:0f:76:16:fd:9d:b8:30:
d9:6e:cb:f9:fe:2b:af:68:a3:c3:71:fe:05:a9:53:
d2:a0:f2:c2:34:c8:19:2d:22:23:9a:e1:c7:d7:44:
6e:0e:dc:01:0d:a3:ac:b0:c9:84:7e:a8:0b:2e:ef:
02:23:06:e3:a0:c5:ad:11:f3:ab:57:c7:fe:11:e6:
f1:fa:c1:fd:1e:6c:82:91:8e:95:98:a2:fe:72:b3:
fd:91:db:d4:ff:cc:92:c0:dd:ee:06:4c:18:42:d5:
55:96:cf:7d:a9:dc:90:8e:37:45:48:dd:39:32:2f:
d6:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:F6:AA:3D:4E:7C:80:CF:0D:87:C4:06:3B:32:05:BF:96:45:9C:C5
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D012720AF46511EF9852A24E762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.89.0/24
Signature Algorithm: sha256WithRSAEncryption
72:f4:b1:57:a8:e7:b0:36:53:d2:6b:0d:91:2e:fa:24:0a:74:
5e:46:e5:7e:81:8d:a9:00:b9:b8:87:39:d7:a9:c0:62:7d:ed:
9a:48:b9:82:61:ea:0a:55:59:be:58:0d:98:80:d1:cd:e7:c2:
32:1d:49:c8:d5:2c:ad:40:08:94:12:c9:eb:6a:70:a9:e7:cc:
d6:06:86:e6:d2:94:c3:92:25:d7:ad:f3:0d:76:04:f9:7b:f1:
cd:59:00:32:6f:ca:8f:af:67:8a:2b:bd:18:39:19:db:1b:ab:
26:e4:97:dd:71:92:88:36:21:e4:3f:4b:ef:4b:86:2f:12:a0:
1e:1e:ea:4f:b9:c2:53:3f:83:e8:ac:b5:44:a8:bb:9b:55:d7:
f1:fd:29:a4:35:05:ba:f5:cf:ab:ee:a6:26:a8:d8:95:88:75:
66:49:3c:f1:9d:a4:5d:8a:08:a9:5f:37:45:9c:91:fb:87:60:
94:cc:9a:1e:87:c3:4d:36:5e:83:18:28:29:18:0b:99:2c:43:
7b:50:95:0a:75:af:bb:c3:0f:ce:72:33:42:d3:98:3c:6e:ac:
ad:44:58:68:2b:d6:3d:ac:55:dc:76:2e:35:f1:6c:0a:d9:db:
e1:0b:af:f8:63:ba:c6:12:07:1b:df:85:29:d2:2e:3a:f0:fe:
54:f1:a0:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:50:46 2025 by rpki-client