Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D673FFCEF41A11EFB7049942762E951A.roa
File: D673FFCEF41A11EFB7049942762E951A.roa (raw, json)
Hash identifier: b3NEQ8QiOWc9TPuvnMpSsSSIM7X24jmkqo7MpaIXSmM=
Subject key identifier: 8A:EA:F3:60:0D:E2:24:4C:D2:65:99:2F:C4:B9:04:28:B0:D4:20:D8
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01614B
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D673FFCEF41A11EFB7049942762E951A.roa
Signing time: Wed 26 Feb 2025 08:22:38 +0000
ROA not before: Wed 26 Feb 2025 08:22:34 +0000
ROA not after: Fri 20 Feb 2026 08:22:34 +0000
asID: 984
IP address blocks: 154.89.26.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 90443 (0x1614b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Feb 26 08:22:34 2025 GMT
Not After : Feb 20 08:22:34 2026 GMT
Subject: CN=67becf4d-6d8b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:d3:16:cc:2b:6f:53:8a:60:27:40:8c:e3:34:
2b:24:31:d4:bf:d5:a6:24:b0:dc:52:e2:68:f9:f6:
1e:57:55:1f:ee:32:e9:53:38:35:07:6b:02:2f:71:
34:d1:73:34:fb:1b:5d:03:81:81:47:46:a7:d6:c9:
05:d2:88:1e:62:e9:7e:93:c4:7a:40:3f:f9:b4:8f:
0d:00:f2:9c:5f:1b:f4:6d:69:23:20:15:2b:0f:e6:
bb:27:67:62:14:4b:fa:9e:7e:e4:28:6c:1e:d8:2b:
35:8b:b8:97:cb:b9:b2:9b:f9:ca:3c:04:66:e2:73:
b5:d4:fb:80:ff:7c:03:38:3c:74:40:6c:86:4a:e6:
72:81:2f:6d:d3:92:05:80:69:d0:a4:ee:6b:f9:23:
fd:26:20:97:dd:7e:50:09:6a:b2:9e:47:31:29:52:
12:4d:b8:de:0b:07:15:d3:00:be:21:81:7a:86:63:
ad:cd:57:22:d4:21:db:e5:10:71:82:fc:4f:b0:35:
76:6b:ab:2b:84:3e:4f:3e:16:9f:91:39:61:c0:38:
4b:d6:b4:fe:a5:2e:f6:bf:46:c6:43:de:b7:e8:4f:
4d:0a:05:ea:5b:d3:b4:7a:2b:c1:7e:b6:97:53:d0:
62:60:ec:da:2e:7f:76:4c:41:75:2f:66:69:6c:ce:
fa:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:EA:F3:60:0D:E2:24:4C:D2:65:99:2F:C4:B9:04:28:B0:D4:20:D8
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D673FFCEF41A11EFB7049942762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.89.26.0/24
Signature Algorithm: sha256WithRSAEncryption
b3:2d:dc:b2:0d:6e:6d:ce:1e:a2:72:57:b3:60:21:b2:61:dd:
77:43:bd:73:31:6b:00:b6:a6:41:29:89:83:de:7d:09:97:c7:
cf:da:9d:01:42:4c:cc:00:2e:cd:cf:39:82:9f:97:93:2f:f5:
fa:b4:42:16:ea:48:35:86:ca:58:f0:26:6b:0d:a1:64:a4:6c:
f5:8f:73:f3:48:00:b0:45:79:92:38:e5:2f:36:22:3c:cb:54:
4a:62:8d:ed:95:cb:48:5a:f7:4c:e3:16:ab:67:1a:ea:3a:c8:
80:1a:c8:ef:2b:e4:05:a3:db:ee:31:4d:39:6a:63:cf:61:9a:
85:db:d8:d0:ce:76:d9:ff:32:df:5c:df:8e:6d:c5:fc:50:04:
ba:14:af:02:a7:5d:35:b5:33:b2:2f:7f:67:83:2d:45:88:b2:
ab:ac:cc:8d:bc:f2:07:6b:55:c6:f2:3b:9f:c8:2c:f4:c3:3e:
96:db:aa:05:05:47:6f:49:d7:99:87:84:4e:91:b8:ef:c0:f2:
f4:5f:52:70:ca:72:51:7e:21:f9:38:e4:75:0b:9a:d4:e1:42:
8b:30:be:70:6a:83:b8:5f:79:d1:e5:57:56:74:80:ad:61:d3:
9c:62:d0:b4:0f:6a:57:31:24:9b:99:a1:3b:e1:e9:93:b3:44:
e8:c1:dd:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:50:46 2025 by rpki-client