Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DD5D8E04F99711EF90072C45762E951A.roa
File: DD5D8E04F99711EF90072C45762E951A.roa (raw, json)
Hash identifier: 6A+lbk2BGQoN5wH/lOiNFpA9/3jROkyQpGmeGQ5nm/U=
Subject key identifier: 55:2C:5D:87:64:0F:1C:01:E1:72:A0:18:CD:1C:DC:B2:52:E6:47:F2
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01724A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DD5D8E04F99711EF90072C45762E951A.roa
Signing time: Wed 05 Mar 2025 08:00:12 +0000
ROA not before: Wed 05 Mar 2025 08:00:08 +0000
ROA not after: Fri 11 Apr 2025 08:00:08 +0000
asID: 60223
IP address blocks: 154.81.179.0/24 maxlen: 24
154.81.182.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 94794 (0x1724a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Mar 5 08:00:08 2025 GMT
Not After : Apr 11 08:00:08 2025 GMT
Subject: CN=67c8048c-d3ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:3e:69:1a:2f:40:00:84:9c:6c:5c:f3:ef:97:
3c:e9:42:8c:e4:d3:af:9f:7c:85:2a:a7:03:b2:9d:
87:58:87:e6:b9:62:3a:d9:46:04:b9:0d:2f:44:4b:
18:cb:e0:79:79:50:a3:9f:70:17:9e:16:8c:2d:46:
68:33:fe:53:75:5e:f1:23:4c:66:a3:83:7d:29:a5:
c1:40:6c:dd:45:d6:54:00:5c:d7:5c:74:cd:5b:bd:
d0:ea:96:3d:b5:d8:d9:46:6d:b4:7d:7b:f7:f2:54:
5b:de:5d:48:f6:32:1a:9b:85:d0:f6:2e:09:dc:4d:
ee:14:aa:22:6d:0c:2a:f1:2f:e6:6c:7a:a5:93:3c:
5b:5a:b8:67:86:a1:2c:a6:dc:ae:aa:44:61:ac:75:
e1:c1:50:57:36:cc:bf:81:32:49:60:13:83:d8:3a:
10:30:a2:17:f0:24:32:73:0b:7b:d9:25:57:2a:94:
5e:62:43:a5:3f:7f:8d:00:ee:b5:07:76:40:86:44:
42:aa:2a:a2:c0:c5:ba:cf:f2:b5:b3:57:5c:83:c8:
fb:e1:0f:57:5a:13:ca:3a:b2:ae:6c:ee:bb:8c:c7:
71:79:f1:fe:2f:fd:66:d3:95:81:3f:09:ec:e5:b2:
de:77:8c:f6:bf:26:c5:9f:de:34:ae:96:66:31:85:
30:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:2C:5D:87:64:0F:1C:01:E1:72:A0:18:CD:1C:DC:B2:52:E6:47:F2
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DD5D8E04F99711EF90072C45762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.81.179.0/24
154.81.182.0/24
Signature Algorithm: sha256WithRSAEncryption
95:fe:8a:eb:33:fb:4e:45:b3:f9:95:64:03:9d:f1:61:f7:d7:
28:4f:5d:9f:e9:22:17:e8:cb:13:3d:1a:ad:80:81:7b:8d:17:
8e:f8:74:5f:29:e0:f3:cc:72:c6:b1:89:75:16:e7:61:7d:7d:
af:d1:49:bc:14:de:d2:15:3e:eb:2c:7f:f7:ee:c6:b3:8e:97:
7c:37:99:e5:34:42:2f:9c:ad:8f:84:b2:df:86:81:19:57:ba:
da:b1:bc:25:06:94:ca:28:fa:c7:b8:8d:66:13:77:84:97:35:
b6:0f:09:15:fd:5d:3b:b4:1e:b3:1d:00:39:ac:07:bd:d4:e3:
05:53:aa:94:9e:ea:aa:3c:1e:e3:f6:29:b0:ff:4f:1f:f2:d0:
07:26:d8:42:7c:c5:37:b8:1f:e8:40:e3:15:35:d8:78:6b:23:
21:55:1e:98:2b:59:d9:30:12:2a:46:ce:4d:2b:60:83:df:e0:
51:65:9a:80:e7:43:ce:35:58:56:25:e1:f3:5a:32:e5:08:ae:
ce:43:73:85:18:b5:4c:6a:e2:5d:bd:0d:2d:f2:81:9f:5c:e2:
dd:1e:dc:ea:7b:94:be:a5:a1:9f:eb:eb:64:49:13:56:fd:ec:
6b:9b:37:1b:76:07:37:42:86:b2:82:44:2b:1d:57:26:05:b4:
4f:4f:e0:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 22:20:12 2025 by rpki-client