Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D0D54180C63A11EF9EA18895762E951A.roa
File: D0D54180C63A11EF9EA18895762E951A.roa (raw, json)
Hash identifier: b4Jlvhxs5DnLxDG4Oj2OMPtL+8R3427p/I8pTPgUhKY=
Subject key identifier: 3E:8A:18:1F:10:77:89:57:7D:4B:33:01:18:6B:F0:DC:0F:B0:E6:A3
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 013043
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D0D54180C63A11EF9EA18895762E951A.roa
Signing time: Sun 29 Dec 2024 23:15:39 +0000
ROA not before: Sun 29 Dec 2024 23:15:35 +0000
ROA not after: Fri 12 Dec 2025 23:15:35 +0000
asID: 984
IP address blocks: 154.218.32.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 77891 (0x13043)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 29 23:15:35 2024 GMT
Not After : Dec 12 23:15:35 2025 GMT
Subject: CN=6771d81a-553f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:0c:cd:07:23:ef:f0:47:55:69:20:64:e0:00:
c8:ce:23:fd:e1:17:d3:b9:97:fd:97:e9:22:8f:7a:
71:fb:7f:7a:cf:41:1b:89:4b:fd:b3:92:b3:2a:4e:
38:26:42:68:2b:0e:72:91:e3:88:93:e9:b2:0d:56:
48:8e:62:dc:00:f1:db:09:96:6e:8f:17:92:28:71:
82:f3:5e:25:4e:e8:7b:d3:f5:d2:91:4f:55:af:82:
90:93:94:f5:92:be:71:d5:31:69:91:c2:9a:43:4c:
85:0a:12:4f:15:a3:b5:34:12:78:88:ae:e2:82:87:
5e:cb:cb:f4:c9:5c:0e:9e:a7:ae:31:5e:df:3c:ad:
2f:59:0e:9f:1e:b5:eb:3f:35:22:05:e2:68:16:9f:
03:8f:16:d9:33:47:b6:f0:16:75:7f:28:89:6c:bc:
69:89:93:7c:e6:ab:73:bf:45:27:b8:aa:40:ce:7c:
5f:e8:fe:fd:1c:79:45:9a:2c:3c:60:03:94:d2:bb:
19:df:83:5a:4e:da:16:13:ea:1e:38:f3:d4:9f:c5:
30:73:72:70:fc:57:35:1a:9f:1c:df:81:5e:13:cd:
d9:df:b2:85:5a:83:56:a0:77:45:e2:b5:5f:28:5b:
ab:79:10:ee:f3:2c:4f:0e:a7:9e:6f:63:b0:83:3d:
ed:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:8A:18:1F:10:77:89:57:7D:4B:33:01:18:6B:F0:DC:0F:B0:E6:A3
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D0D54180C63A11EF9EA18895762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.218.32.0/24
Signature Algorithm: sha256WithRSAEncryption
03:54:f5:f7:0e:0e:02:00:aa:c1:51:a1:e4:20:61:6e:c2:ec:
a0:36:31:e6:17:d5:76:2d:3e:45:ed:79:db:86:36:14:89:0c:
99:2c:76:45:de:43:a9:df:2b:36:6f:b8:d2:8a:68:a5:5e:16:
b7:47:7c:84:7d:03:dd:72:b5:b0:52:69:9a:a4:4b:31:a0:e6:
9f:62:a8:4b:7d:19:9f:28:7d:52:76:bc:42:55:3b:d8:f0:9a:
2f:7d:bc:08:00:87:1b:2e:57:57:15:de:a2:fd:24:25:04:f9:
02:f8:c9:c4:ee:65:eb:4c:0f:dc:d6:5b:72:c7:2d:c5:1e:b0:
6c:1d:73:41:35:1f:45:27:ad:b6:f0:b6:2a:1b:17:b4:73:3a:
e1:24:d8:7d:0a:71:75:b2:25:13:f0:b4:f9:0e:e9:3e:67:8b:
5d:3b:8b:cc:17:37:7c:23:6a:a8:d2:cc:5c:cf:07:f0:40:ee:
dd:51:6e:39:45:96:2e:03:15:d5:ff:2e:21:f6:44:32:ac:0a:
ba:01:f8:f7:48:b2:27:86:d3:2b:d4:cb:51:fd:d3:8e:3e:43:
73:a7:c3:83:e6:a4:85:8f:ea:ad:9d:55:68:cc:60:66:26:dd:
da:9d:7f:90:05:7c:f8:38:e1:e8:bc:cc:29:c9:07:35:b2:8c:
7f:99:bf:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 23:16:08 2025 by rpki-client