Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D58063E2C25F11EF97309798762E951A.roa
File: D58063E2C25F11EF97309798762E951A.roa (raw, json)
Hash identifier: +78LusYC9g8H4ZSUajBC+bS3e7zeAG1imTqdFWNrYYs=
Subject key identifier: 07:5D:60:1C:02:7D:C8:12:B5:A7:36:65:4A:CB:AF:A5:C7:A3:EC:ED
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0123A4
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D58063E2C25F11EF97309798762E951A.roa
Signing time: Wed 25 Dec 2024 01:30:33 +0000
ROA not before: Wed 25 Dec 2024 01:30:29 +0000
ROA not after: Wed 10 Dec 2025 01:30:29 +0000
asID: 984
IP address blocks: 154.199.95.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 74660 (0x123a4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 25 01:30:29 2024 GMT
Not After : Dec 10 01:30:29 2025 GMT
Subject: CN=676b6039-0446
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:1f:35:33:9d:0d:7c:44:f6:7e:41:bd:16:ad:
b2:d1:11:4c:53:11:a5:17:43:0d:77:bb:3d:07:4a:
0d:fe:50:27:7e:2f:fa:54:64:46:14:a4:33:47:36:
80:b9:ab:52:f5:30:e0:d7:bc:d6:2d:d6:46:c6:ed:
4b:47:26:c3:76:e3:ea:94:80:93:05:85:2b:4e:ff:
4f:d0:cf:11:a5:6d:3b:f3:a6:e6:1c:c4:0a:e5:89:
a6:68:94:ef:5a:65:e8:e3:95:f5:d9:23:c7:46:4b:
29:2e:c4:18:8a:db:f6:e1:81:71:1c:70:01:c6:4c:
0a:63:8a:b5:fd:58:ae:7a:59:82:91:63:79:0b:0c:
06:5e:87:dd:3e:a8:de:ea:43:ea:02:64:4f:e6:e1:
42:2f:19:91:9a:14:92:13:c3:41:a2:b8:ae:27:50:
97:02:3e:ab:3e:16:16:eb:af:74:54:8a:b3:9b:15:
50:a4:40:ce:06:da:96:09:8f:f0:5f:b2:bb:7e:9e:
0b:ca:db:32:39:85:e9:c6:d8:b2:d9:92:2d:d6:4d:
42:17:f3:87:e6:33:0b:9f:5c:15:aa:8a:75:5f:4f:
89:d8:e5:90:a2:0a:15:2d:57:36:fb:88:23:e2:31:
a1:a0:eb:db:c0:44:0b:fd:20:ec:23:e1:40:2a:9b:
ac:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:5D:60:1C:02:7D:C8:12:B5:A7:36:65:4A:CB:AF:A5:C7:A3:EC:ED
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D58063E2C25F11EF97309798762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.199.95.0/24
Signature Algorithm: sha256WithRSAEncryption
c0:9f:24:4d:48:67:51:d1:ff:0f:7c:fe:a1:76:f0:6a:d2:cd:
19:f1:53:1b:d9:51:d8:65:99:77:f4:47:bc:b3:b4:a6:ed:e1:
76:60:3b:9e:e8:11:be:b1:ea:cb:47:ed:7b:3e:2f:07:2b:a3:
e2:bb:b7:c6:6c:7c:42:38:8a:33:47:4a:19:52:2c:ae:d3:9b:
e5:6d:19:17:78:8f:8e:03:cb:58:c0:35:7d:27:c4:71:a6:d5:
4c:b1:9b:3d:98:af:fa:32:db:31:3e:cc:f4:bf:48:8c:f0:69:
10:88:1d:19:f2:78:7b:a1:bb:05:c7:9a:f9:49:22:d5:55:cd:
e3:be:1b:b2:14:38:ca:01:be:7e:78:24:23:ce:3a:6f:41:3c:
e7:87:32:e7:44:6c:42:b5:7e:79:33:58:6b:c2:0b:d5:51:b8:
9d:d6:f6:1f:52:74:15:5d:90:ed:96:d3:9c:3c:61:c4:40:12:
dc:8f:40:b0:07:8d:4c:be:96:21:a6:d6:75:2a:d6:0a:88:45:
03:ea:dd:b5:e9:1b:a6:a6:9a:67:f1:8f:e9:ae:e9:83:49:2c:
0f:3e:95:86:42:75:6b:32:48:b7:e5:42:e7:59:24:c2:dd:da:
c8:57:6b:9f:36:c2:6f:3a:0e:8d:4b:01:f8:aa:35:30:07:50:
5b:35:b5:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:57:27 2025 by rpki-client