Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DBF59114C60D11EFA938BD7B762E951A.roa
File: DBF59114C60D11EFA938BD7B762E951A.roa (raw, json)
Hash identifier: wIN3DuJR5eBI5d7PjUzAZHQkGAsz42MVnnjMJjwkmyk=
Subject key identifier: 72:B4:52:3B:3A:65:CF:C1:50:DF:BE:77:13:39:E1:34:57:D9:13:4D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 012ECC
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DBF59114C60D11EFA938BD7B762E951A.roa
Signing time: Sun 29 Dec 2024 17:53:50 +0000
ROA not before: Sun 29 Dec 2024 17:53:46 +0000
ROA not after: Sun 12 Dec 2027 17:53:46 +0000
asID: 17561
IP address blocks: 154.217.73.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 77516 (0x12ecc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 29 17:53:46 2024 GMT
Not After : Dec 12 17:53:46 2027 GMT
Subject: CN=67718cae-b22d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:5f:ab:65:11:79:4a:1f:1d:7e:c1:e1:fd:70:
81:9a:0d:8e:0c:ae:78:e4:22:fd:8b:5d:f7:5a:01:
7e:9b:80:37:55:6c:0f:b0:a1:d7:29:58:62:70:8b:
15:40:5b:aa:ed:40:84:96:04:b6:72:b7:0a:f0:a4:
49:07:b6:4c:3e:99:39:c7:e0:2b:d6:0b:2d:47:7d:
ee:02:84:eb:ce:22:95:54:96:2f:b8:d6:fd:46:f3:
db:37:44:8c:9d:c1:01:e7:28:a9:d0:31:4b:ca:15:
76:d6:9b:09:ab:d6:e8:8c:b8:94:c0:f8:95:79:28:
c1:7e:f2:89:ab:f9:11:f7:85:67:16:2b:a7:f6:e0:
6a:95:1a:4a:b2:6c:a5:c1:e2:83:86:6d:50:f4:a5:
18:9e:3e:52:d6:76:fc:4f:14:6b:17:f6:c4:38:32:
db:dc:21:59:c3:be:79:1d:26:31:4b:81:42:a4:ca:
14:15:34:1b:e9:98:95:56:be:10:07:e9:55:18:cb:
33:02:75:a3:af:a3:b9:bb:fa:a8:00:eb:65:c9:cf:
4e:ab:9f:54:8a:1f:ce:6e:4d:b5:48:17:10:05:84:
af:da:b1:f0:bd:0c:c7:49:c6:50:92:fd:91:5b:43:
f4:43:f2:5b:dd:8f:59:20:62:59:88:d0:5a:95:d3:
45:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:B4:52:3B:3A:65:CF:C1:50:DF:BE:77:13:39:E1:34:57:D9:13:4D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DBF59114C60D11EFA938BD7B762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.217.73.0/24
Signature Algorithm: sha256WithRSAEncryption
51:1a:8f:20:bb:fc:d0:43:dc:68:6d:71:9e:ef:8a:9d:50:f4:
1c:19:d5:ad:74:cb:f0:fc:08:58:72:b6:6e:a8:55:3f:cc:65:
c3:f3:f0:92:05:23:51:57:f7:e5:94:09:a3:cf:09:97:b0:4f:
57:d5:5d:85:04:1f:25:9a:37:9e:d7:a7:2a:c4:5b:ae:71:5d:
d3:14:bc:5d:4f:4e:3e:27:2d:4a:b3:86:81:4c:5d:cd:eb:25:
39:93:41:e2:03:c7:b5:2c:22:99:31:7b:46:6d:2f:3f:5e:9b:
57:56:c4:82:bd:48:01:cd:fd:b0:94:44:da:f6:15:c0:3b:64:
a9:ca:8e:4c:39:a2:7a:b3:70:05:88:a9:e2:6b:19:96:23:5e:
13:ba:e1:0d:3c:f3:8c:39:f4:c8:70:2f:60:89:e1:d8:56:84:
a3:2f:9d:bb:57:3d:d2:a2:82:a4:c5:84:c4:dd:43:6d:1b:17:
1c:d3:1f:a4:63:31:cb:a1:88:e8:bd:60:2e:71:03:c0:f3:90:
cf:60:f2:7f:1d:ad:75:31:56:a3:b3:0d:da:8b:03:f2:74:5a:
b9:ff:21:84:fb:94:ed:fd:37:9e:9f:11:37:96:11:29:7c:51:
0e:37:b0:f3:1e:06:93:99:a5:7a:d6:ec:bd:11:01:0a:75:44:
e2:e1:cb:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:45:10 2025 by rpki-client