Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DD445B78C0D511EFA3935153762E951A.roa
File: DD445B78C0D511EFA3935153762E951A.roa (raw, json)
Hash identifier: +znIt6Q6dDaeCOdwakdZTr18FDEH5Ilx+pVZ3WwohIk=
Subject key identifier: 94:B0:05:B7:40:9A:EC:39:2D:9C:60:C9:21:BC:B2:B3:AC:34:7C:DE
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 011E5A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DD445B78C0D511EFA3935153762E951A.roa
Signing time: Mon 23 Dec 2024 02:30:24 +0000
ROA not before: Mon 23 Dec 2024 02:30:21 +0000
ROA not after: Wed 10 Dec 2025 02:30:21 +0000
asID: 984
IP address blocks: 154.89.139.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 73306 (0x11e5a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 23 02:30:21 2024 GMT
Not After : Dec 10 02:30:21 2025 GMT
Subject: CN=6768cb40-6c0f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:79:85:6c:f1:55:85:49:e7:8d:26:91:ef:c0:
0b:fd:a5:f1:94:76:27:60:31:0d:5b:84:e0:51:97:
d3:be:9b:db:5b:9d:40:9c:e0:ce:45:e2:f7:a3:b8:
85:c8:c9:a7:83:bf:e1:82:b5:69:ab:fc:38:bd:f1:
1d:fa:81:dc:ba:b2:59:2d:be:b2:7b:7a:8f:7a:1f:
89:a4:cf:74:da:c2:c7:09:25:26:d2:e7:b9:e1:42:
2e:61:d9:a3:8c:db:67:ce:4d:7a:fb:c6:1c:1a:1c:
9e:8f:5f:68:f9:f5:64:52:a8:ad:f6:d9:11:50:c8:
a8:b0:cc:d9:58:96:fc:b9:47:d6:eb:f6:ae:b9:ea:
30:96:7c:75:64:a5:c0:4d:1f:92:09:62:50:78:e8:
7b:ff:bd:7a:29:81:ca:24:64:8a:f3:68:7d:aa:36:
97:45:27:a9:97:29:55:2e:58:b1:40:9b:82:b6:4f:
45:5f:b0:7e:f1:4f:d7:a2:50:a5:66:9e:90:32:51:
12:28:93:dd:03:67:05:29:ae:a6:bc:2e:ce:07:d0:
b7:0c:9f:20:58:0d:df:b2:6f:d1:4e:bf:f4:d3:4d:
70:fd:48:9f:55:92:38:b3:d4:ab:4b:56:29:13:4e:
7c:8e:22:6d:77:e7:ef:41:43:a1:7f:a5:c3:64:d4:
fe:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:B0:05:B7:40:9A:EC:39:2D:9C:60:C9:21:BC:B2:B3:AC:34:7C:DE
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DD445B78C0D511EFA3935153762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.89.139.0/24
Signature Algorithm: sha256WithRSAEncryption
ca:0f:f7:bc:21:f5:3a:0d:dc:83:d5:b3:5d:46:ba:75:31:83:
e7:2f:29:d1:6f:3b:2b:f9:3e:9e:e0:87:df:b8:50:02:c1:93:
22:32:03:81:06:33:0a:36:2e:e6:18:bc:62:26:7b:22:f9:94:
7f:73:15:aa:40:f4:3e:64:bb:b3:1d:5a:35:d2:ea:a0:00:17:
ad:2b:59:af:74:14:9e:9b:84:f5:3a:0b:03:9c:43:13:4f:4e:
b7:e0:1b:b0:18:f5:b7:59:9e:cd:ac:b9:b0:ce:c1:d6:9f:b0:
87:11:16:57:e4:3f:60:9b:83:71:8a:c7:66:69:f6:6b:71:11:
42:3f:06:be:eb:0a:bf:d1:74:61:04:d7:9a:f5:92:82:b3:76:
92:c8:57:2c:a3:97:7c:cc:b1:9a:52:9b:0f:48:b6:7b:ab:10:
2d:de:b3:16:e9:ac:73:80:c4:23:64:00:76:77:58:ab:e7:3b:
c5:83:d4:5a:41:34:b7:c1:60:ad:ed:83:01:87:7c:c5:c9:3f:
5b:07:33:4f:22:7b:c9:b4:f8:07:8e:e0:ca:d5:19:b2:f0:b2:
60:f1:64:2b:02:04:c0:51:7d:47:f4:55:ac:0e:9a:68:35:bd:
ae:40:0b:4c:b3:28:d8:83:ee:cd:62:c6:01:e2:9c:d0:d7:1f:
c7:50:9a:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 20:18:56 2025 by rpki-client