Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D2189CD4C1B911EF96CB2E77762E951A.roa
File: D2189CD4C1B911EF96CB2E77762E951A.roa (raw, json)
Hash identifier: Ss11NrmogOohP5NTt0rB8aYBo6uQ4R8T3RrffssSTp4=
Subject key identifier: 30:11:3D:8C:D5:C6:C0:9C:07:33:3E:AD:B7:F2:AF:0E:22:E1:70:FF
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0121DD
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D2189CD4C1B911EF96CB2E77762E951A.roa
Signing time: Tue 24 Dec 2024 05:42:11 +0000
ROA not before: Tue 24 Dec 2024 05:42:07 +0000
ROA not after: Wed 10 Dec 2025 05:42:07 +0000
asID: 984
IP address blocks: 154.193.168.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 74205 (0x121dd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 24 05:42:07 2024 GMT
Not After : Dec 10 05:42:07 2025 GMT
Subject: CN=676a49b3-03ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:c3:44:ce:bc:29:03:59:f8:10:b6:7b:1d:f1:
77:41:b7:3f:ec:1e:2b:e7:68:a2:24:5a:66:37:30:
b8:a3:89:3e:cd:e9:08:58:c3:87:10:e3:2e:ac:ff:
45:1e:73:ea:4d:86:f5:c4:f4:a1:0e:cb:85:5d:2e:
38:49:ef:05:47:36:b3:7a:39:f3:43:ba:50:f5:72:
7c:e6:10:3f:43:21:76:9a:f1:f7:5d:88:ac:a3:ea:
f0:23:9e:93:c6:15:ec:6e:86:a8:f1:98:d8:c5:bf:
9a:d4:3f:51:5c:45:90:68:cc:d5:f3:4b:39:f5:6b:
3d:ec:18:e9:20:0d:04:4e:56:10:22:3d:25:df:c1:
b9:52:04:61:1a:f2:a0:da:f6:1e:c6:b1:e0:48:6e:
ca:c6:13:16:2a:bd:25:f0:00:c5:97:66:00:08:15:
87:71:b8:13:83:50:5b:e7:5e:88:ca:9c:d3:a9:49:
fc:0c:80:cc:aa:bf:43:87:47:e3:98:a7:e7:77:14:
92:5c:01:e1:d8:5f:8c:df:2c:ab:d2:36:5e:d2:3b:
66:5b:4b:5a:44:24:d6:d6:16:9a:d5:5f:06:87:64:
2e:93:d1:ff:01:71:fb:cb:e2:62:b8:4c:52:46:83:
bd:09:12:8a:5a:a7:8d:b6:45:4a:2c:35:b4:01:48:
75:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:11:3D:8C:D5:C6:C0:9C:07:33:3E:AD:B7:F2:AF:0E:22:E1:70:FF
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D2189CD4C1B911EF96CB2E77762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.193.168.0/24
Signature Algorithm: sha256WithRSAEncryption
08:60:41:57:44:e9:f2:a7:ee:e7:ad:ed:e7:67:c1:83:b8:76:
76:dc:6c:bc:56:8a:c5:9d:84:ba:fb:8a:6f:fb:0d:4b:54:b1:
fa:8e:b3:ca:89:d0:f8:fc:d6:4f:38:4f:88:7f:e6:81:20:17:
15:29:60:46:8d:ae:f6:08:fc:f2:3b:d3:c8:27:de:0e:de:78:
8f:0c:86:71:04:ea:90:a3:86:9b:79:1d:68:e8:f3:56:4c:8f:
ba:54:2f:1a:42:a1:ca:6a:aa:89:5e:c7:47:b0:fb:92:6a:e2:
9e:1f:14:f5:e0:df:05:32:f9:d3:ef:e8:fe:dd:cc:0f:38:fe:
8c:e9:fd:14:f1:49:70:b2:bf:38:53:25:05:24:df:89:83:a9:
e3:b2:ab:d0:80:a8:b2:3e:3f:e2:93:ef:d3:d2:98:14:40:2f:
86:1c:a3:f5:be:5f:63:d0:31:6d:b8:a6:72:93:cf:01:9f:2c:
a8:f1:a2:37:5e:b0:92:c6:ea:43:dc:f1:6e:13:8b:d2:a9:07:
d5:81:c9:ba:9f:91:6d:47:de:fe:ec:df:c5:c4:d9:af:c0:ca:
2f:10:8b:d9:af:d6:32:ca:87:cb:60:2d:59:c9:98:ff:83:da:
68:e9:0f:d7:ab:38:6b:83:53:96:a7:44:5c:72:e6:a6:df:74:
b0:e6:1a:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:55:16 2025 by rpki-client