Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DFD04220CDBA11EFB914075A762E951A.roa
File: DFD04220CDBA11EFB914075A762E951A.roa (raw, json)
Hash identifier: MGECY6siO50Nwmzat96ubUHVStkZyJ8m9zXVhPPcodQ=
Subject key identifier: A7:33:67:DD:0B:A1:67:6E:2D:CF:FF:0B:7A:73:EA:16:CA:29:CD:AD
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0136DE
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DFD04220CDBA11EFB914075A762E951A.roa
Signing time: Wed 08 Jan 2025 12:19:58 +0000
ROA not before: Wed 08 Jan 2025 12:19:54 +0000
ROA not after: Tue 16 Dec 2025 12:19:54 +0000
asID: 984
IP address blocks: 154.200.184.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 79582 (0x136de)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Jan 8 12:19:54 2025 GMT
Not After : Dec 16 12:19:54 2025 GMT
Subject: CN=677e6d6d-e4cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:32:46:79:57:b7:93:fe:ab:f2:1a:13:af:dc:
71:a0:73:c6:e4:1d:c6:e3:7a:17:bf:b5:8d:ba:87:
37:77:e2:1c:72:61:87:09:79:9f:66:79:6a:b2:f7:
b1:a7:8d:52:f2:52:fd:58:1b:d7:f8:53:c1:ff:1f:
10:db:84:9b:a6:a2:35:d7:79:15:1f:d4:4b:57:f2:
60:dc:e0:57:29:0b:c1:b0:24:72:a6:15:93:2a:49:
0f:ee:84:98:08:d3:12:40:49:d3:63:53:f1:67:79:
b2:78:14:45:e2:f3:b1:02:25:30:46:01:10:34:5e:
b8:b2:18:12:cc:89:e6:e6:0d:ac:9f:f1:ca:67:3e:
f9:08:a9:6d:e8:35:64:cf:fc:39:80:c6:27:24:17:
21:7a:ae:7a:37:9c:6f:f0:56:5b:47:a9:0f:bc:62:
fc:38:1e:b4:f6:0c:60:27:7f:39:09:a8:5c:30:44:
3f:f0:78:ec:73:ad:1b:b3:9c:8a:d6:76:2d:3e:7c:
53:0f:bb:95:3b:e4:99:8f:22:91:15:c4:7c:d8:f0:
f8:46:a2:4b:8e:40:1a:15:e0:3e:2e:be:f2:d7:71:
f0:f8:0a:56:46:42:d2:37:1d:96:fd:3e:32:e7:4d:
19:bd:ed:a9:fa:ac:cd:b4:78:92:8e:24:56:07:e1:
06:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:33:67:DD:0B:A1:67:6E:2D:CF:FF:0B:7A:73:EA:16:CA:29:CD:AD
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DFD04220CDBA11EFB914075A762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.200.184.0/24
Signature Algorithm: sha256WithRSAEncryption
af:35:8a:53:57:88:a8:8f:73:80:13:6d:08:a5:eb:8b:ce:86:
e2:24:73:e0:5e:72:41:e5:7b:0a:f4:bd:94:3e:4b:9f:51:cc:
55:d8:f8:e2:c2:c2:88:39:4c:47:5a:d3:a7:02:79:80:fc:4a:
71:f3:1e:7c:b6:8d:3d:92:81:98:eb:ad:0d:fe:d4:6c:23:40:
19:a9:18:14:a5:35:19:73:da:e7:5d:e3:aa:24:38:b0:f6:08:
ff:1b:1f:e4:4d:16:c4:8f:63:bc:69:40:49:eb:70:e6:cb:c7:
5b:16:1b:a3:6a:73:a1:02:05:18:73:e6:d5:7d:d6:2f:c7:a9:
20:7b:76:04:28:f6:ad:71:ab:a5:b7:3e:81:14:c4:40:07:80:
7a:8e:94:22:b0:bc:30:9c:45:2d:7c:09:31:4a:e2:9c:8b:cf:
08:5d:47:32:7f:c1:a2:80:f0:a5:f5:d8:1a:37:1a:d9:bd:a7:
df:06:e8:d7:36:1f:3c:93:c7:e8:8a:6e:bb:ce:50:32:56:9f:
72:30:fb:00:67:9a:e5:e6:f0:e1:ed:cc:51:bf:4a:84:73:8f:
50:f6:89:5c:73:44:82:51:b1:14:c8:83:5b:f5:56:f6:3e:f9:
36:4c:c2:9d:ef:f4:bf:55:e6:4d:0f:ab:0d:98:f1:e3:ed:f5:
37:1b:61:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 04:28:42 2025 by rpki-client