Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DE2A7648C93711EFB14E839A762E951A.roa
File: DE2A7648C93711EFB14E839A762E951A.roa (raw, json)
Hash identifier: 3CKS2wgcVy5r/NG+9TfzqmYTV0qqL61BzRXtb/KI7aE=
Subject key identifier: 40:C2:6D:F1:F2:B6:3D:E7:83:ED:60:95:1A:77:98:6E:32:6B:A9:20
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0133E1
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DE2A7648C93711EFB14E839A762E951A.roa
Signing time: Thu 02 Jan 2025 18:32:06 +0000
ROA not before: Thu 02 Jan 2025 18:32:02 +0000
ROA not after: Mon 13 Dec 2027 18:32:02 +0000
asID: 17561
IP address blocks: 154.223.91.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 78817 (0x133e1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Jan 2 18:32:02 2025 GMT
Not After : Dec 13 18:32:02 2027 GMT
Subject: CN=6776dba6-04b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:53:dc:0b:08:d4:86:b6:94:67:d8:60:45:ea:
83:f7:fb:4c:13:63:4a:6d:03:26:cf:a9:39:c0:29:
4c:d3:0b:fb:6c:0b:ee:1b:48:fb:54:66:1c:da:8f:
ba:64:e5:45:69:93:e1:d1:9c:79:8c:9c:9b:6d:f5:
5b:f6:95:26:62:bb:31:dd:36:57:f2:15:98:dd:40:
cb:96:c7:2a:67:75:a4:14:f8:b1:5a:cc:2f:88:2a:
b7:39:8a:e5:ba:b6:c4:d0:2b:37:6b:d8:77:88:7e:
b1:50:98:4a:e4:bc:13:4e:a7:5d:0d:b5:73:ab:b5:
98:3f:44:2c:c8:47:82:b2:44:9c:3f:bf:eb:9f:09:
ad:f7:d9:68:fe:00:a3:53:85:93:ac:cf:73:24:08:
93:1d:5e:57:a3:f5:72:af:46:7a:b1:00:32:9f:d0:
1a:e1:2c:93:dd:45:6f:71:ca:6b:8c:7f:2b:89:8d:
c5:5c:5b:58:6d:e2:ac:e3:46:ed:4b:a9:ca:58:10:
14:5a:01:58:25:97:e4:d9:e6:80:dd:b2:ba:ed:e1:
6c:40:a5:9e:ea:a6:56:00:76:d9:6f:c9:ee:34:83:
5a:8c:be:0c:95:73:64:de:a1:72:ef:a8:71:ab:20:
9d:e4:f0:2d:49:1e:99:92:35:f8:aa:c1:ad:1a:d7:
e3:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:C2:6D:F1:F2:B6:3D:E7:83:ED:60:95:1A:77:98:6E:32:6B:A9:20
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DE2A7648C93711EFB14E839A762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.223.91.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:4e:1e:a9:47:a3:01:5d:39:17:f6:25:5b:cb:d2:3c:5d:5e:
af:2c:13:91:f1:31:b0:f0:39:e9:11:f7:2e:21:cb:17:10:59:
47:3e:13:34:4c:8b:a6:01:6c:93:3c:29:0c:cb:32:e9:e7:83:
c2:0c:5e:e6:c1:c1:c3:8a:67:26:ad:d6:ed:f0:83:ce:ff:39:
8a:15:3a:1f:9a:2c:c0:b0:d5:45:a9:d0:f0:8e:67:1d:e9:da:
b7:4a:3f:35:48:73:93:1d:b0:46:3a:81:35:4f:5a:ba:09:04:
4b:6b:16:a5:d9:6b:a7:58:7f:c0:a6:95:6c:09:a2:ba:40:49:
4b:b3:22:53:7e:84:e2:dd:81:fb:1a:73:47:3d:b7:53:9c:47:
5f:32:14:a6:d3:ee:8c:fc:13:01:49:f7:68:23:0c:c6:e6:e3:
9a:3b:6a:a2:bd:45:4e:f1:21:bd:b2:8e:0b:26:b9:dd:e7:f5:
ce:22:d3:ab:3d:68:b5:11:bc:67:67:59:4e:97:c7:f9:31:d8:
4e:ea:88:e6:aa:bb:8b:bc:43:44:73:14:67:ff:b5:9c:ac:4f:
1c:15:1a:38:82:59:36:26:14:5d:97:f1:1c:1b:e8:4e:df:82:
f2:bb:bd:fb:52:b1:c6:a5:bf:22:d3:9d:1b:bc:53:70:1a:97:
75:80:ab:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 23:20:38 2025 by rpki-client