Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D021AE3CC3C311EFB152D371762E951A.roa
File: D021AE3CC3C311EFB152D371762E951A.roa (raw, json)
Hash identifier: mOxZHjFdGPX4g8oltWi/gFbF3oDltu5GtJn67CPVujQ=
Subject key identifier: 26:B1:BC:2E:80:DE:6B:A1:A4:37:2E:CA:12:85:F9:00:88:54:F3:70
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0127BA
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D021AE3CC3C311EFB152D371762E951A.roa
Signing time: Thu 26 Dec 2024 19:58:45 +0000
ROA not before: Thu 26 Dec 2024 19:58:41 +0000
ROA not after: Sun 12 Dec 2027 19:58:41 +0000
asID: 17561
IP address blocks: 154.82.18.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 75706 (0x127ba)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 26 19:58:41 2024 GMT
Not After : Dec 12 19:58:41 2027 GMT
Subject: CN=676db575-66bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:4b:9d:73:d9:2d:75:7b:5e:37:23:33:9e:9f:
13:e2:96:9f:d9:e7:b0:d3:83:89:68:1e:d3:7c:83:
f4:2c:be:68:e4:ba:da:0f:c9:fe:c9:e2:6c:e7:dc:
bb:3e:f9:cc:86:04:a6:e3:60:6d:85:ea:86:d1:a6:
bf:ee:ff:be:a8:ee:e2:59:a5:ad:c8:07:ce:9a:48:
33:55:76:85:6a:fb:8e:86:63:e7:e1:38:1b:d3:36:
d5:a5:9a:28:db:7e:29:af:7c:aa:20:43:7e:c0:9b:
20:27:b7:f0:bf:fd:e2:b1:50:79:12:fb:54:dc:9c:
e1:bf:1d:de:a2:10:08:3d:72:cf:08:46:31:47:ff:
0d:66:23:31:cf:5a:9b:0a:7b:a8:56:d6:ad:31:b5:
96:94:51:24:ea:12:54:36:18:23:e0:56:10:59:85:
24:f3:62:06:79:c7:34:39:f9:e4:03:fa:72:96:a9:
3e:50:6d:02:00:a8:79:1d:e7:21:a7:63:40:00:d2:
91:f2:e8:a5:3d:e6:ed:8a:0d:c6:8f:4e:90:6d:b7:
ca:3f:fc:2f:6d:16:39:75:ba:e0:a2:da:33:ba:e2:
9b:dc:be:ea:59:3d:29:8b:61:7f:46:b2:d7:45:ae:
e1:d7:ba:7f:ab:25:3f:96:02:ad:f3:d5:5e:6c:65:
5a:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:B1:BC:2E:80:DE:6B:A1:A4:37:2E:CA:12:85:F9:00:88:54:F3:70
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D021AE3CC3C311EFB152D371762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.82.18.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:39:5c:58:77:d8:1b:21:01:ab:ff:c1:f6:68:88:83:7e:33:
2d:4b:b2:08:00:4b:1f:f4:14:58:a1:93:5c:50:97:c1:b2:6b:
9a:72:de:a4:e3:9c:9e:aa:7d:4a:cb:a7:35:4f:b5:3b:c6:bd:
96:76:af:84:56:4b:b6:d6:b4:98:45:a7:d7:ed:19:a9:65:46:
1c:f1:7a:68:bc:2e:a9:19:f9:33:97:25:fa:47:65:90:ee:f9:
0f:44:4b:a6:f5:d9:ad:c7:bd:23:6f:61:e0:8f:94:49:ee:0c:
e8:bb:4b:ff:72:11:ea:c3:09:1a:90:2d:de:b5:5e:c2:13:ea:
7d:4f:0a:fb:c5:15:fd:35:d1:59:0e:61:e4:ed:15:04:2e:44:
d8:0d:a6:d9:ce:c4:4a:92:b8:ee:52:20:8f:18:85:97:19:6b:
cf:3a:96:f6:6b:fe:17:48:3f:92:4b:5f:e6:3a:85:0f:39:89:
6a:a5:ab:d0:3d:6d:28:1a:04:5d:0c:f7:c7:59:38:cf:a7:c8:
7a:d7:fb:33:bb:01:05:2f:8b:61:d3:f5:cf:2a:ef:f2:96:16:
2d:2e:37:7f:f9:be:ba:96:37:2d:db:53:5b:9e:53:f6:81:f9:
e1:0e:a2:82:9e:e8:d3:f7:99:c0:7c:c9:23:aa:61:cd:c1:0d:
a3:5a:9d:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 16:44:35 2025 by rpki-client