Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E030D4CEF42911EFB832A6A8762E951A.roa
File: E030D4CEF42911EFB832A6A8762E951A.roa (raw, json)
Hash identifier: Jk3mEOMaCA03x2Uv4RJ/pBffLwe7A54KVxzSUWEcM7w=
Subject key identifier: 62:29:29:72:5F:96:0B:CF:CC:50:EE:F4:21:6B:02:FF:B7:D4:18:74
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 016223
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E030D4CEF42911EFB832A6A8762E951A.roa
Signing time: Wed 26 Feb 2025 10:10:16 +0000
ROA not before: Wed 26 Feb 2025 10:10:12 +0000
ROA not after: Sun 20 Feb 2028 10:10:12 +0000
asID: 17561
IP address blocks: 154.81.221.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 90659 (0x16223)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Feb 26 10:10:12 2025 GMT
Not After : Feb 20 10:10:12 2028 GMT
Subject: CN=67bee888-9b81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:48:70:31:95:7e:39:a7:1f:c0:36:c1:ab:7b:
74:8d:dc:66:fe:42:3c:50:0b:6a:11:c3:8d:45:95:
21:6d:43:4c:37:62:73:f5:fe:0f:e0:05:37:0b:b0:
a4:72:58:51:15:a5:04:2d:7c:6c:7c:72:4d:6b:09:
e0:d0:2f:1c:f9:07:6c:66:47:f2:7d:a0:8b:60:4e:
fe:f2:e2:12:4c:fd:ef:c2:4a:de:2e:c3:97:fb:2f:
a2:c5:f9:08:54:74:99:48:dc:83:1e:31:d4:92:15:
db:50:aa:c6:70:89:b5:19:1a:86:67:60:9f:4c:9b:
48:64:6d:53:01:d8:b9:f5:39:91:72:c8:b2:1e:ff:
64:73:d5:43:04:5a:16:fb:b1:3b:9e:25:b0:95:71:
4b:8a:18:6e:27:49:15:90:a4:eb:2c:3c:2b:71:09:
c9:81:d8:9c:94:49:01:31:3f:e1:fe:86:a4:bb:5c:
c7:e2:f0:7b:0a:df:0c:54:a0:cd:c9:bf:9d:bc:a8:
c5:f5:d5:28:0c:0a:46:16:1c:84:70:5b:43:97:af:
61:75:71:e7:8e:74:1e:16:8a:81:c3:42:ab:66:e1:
24:fc:5c:63:ff:80:8f:df:4a:e4:f1:50:cc:90:72:
3e:65:02:75:fc:13:7e:b4:7a:e0:2a:a2:e3:7e:b7:
38:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:29:29:72:5F:96:0B:CF:CC:50:EE:F4:21:6B:02:FF:B7:D4:18:74
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E030D4CEF42911EFB832A6A8762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.81.221.0/24
Signature Algorithm: sha256WithRSAEncryption
d1:41:ab:f5:ca:ec:5b:24:62:b1:c4:fc:00:4c:18:78:65:78:
29:df:d3:f5:f0:c1:0a:b5:42:78:e0:12:7f:77:46:a7:87:26:
14:79:64:bf:b7:33:d1:9e:7c:dc:48:4c:58:da:4e:97:f4:a2:
53:f5:53:89:82:50:8a:15:ea:d0:42:a1:c9:d2:f6:4e:45:48:
b5:82:31:bb:5f:b7:e6:ce:87:67:90:97:ef:b5:e2:7c:02:ae:
55:35:2f:5a:1f:7b:dc:07:e4:8d:83:80:9b:d3:7d:b0:40:e0:
fd:a3:58:e6:74:a0:04:ef:4c:5f:54:8a:2f:f6:1c:dd:ee:ed:
30:e5:6c:ef:43:81:b6:37:1e:1c:bd:7c:24:ed:0f:ba:35:6b:
ca:98:ed:a7:06:ef:12:ae:ba:d0:6c:3b:31:17:b9:f6:a6:e4:
1c:24:aa:68:35:cb:8a:81:20:ce:be:a1:54:70:35:07:45:72:
5b:be:81:7c:32:f7:6d:80:f9:a6:dc:e6:66:6a:58:d1:f7:4f:
fd:91:3c:a9:c7:10:0a:e2:5c:1f:25:65:65:cf:1d:64:4f:67:
d2:f0:0a:87:54:63:e0:12:d0:ac:ae:dc:5d:1c:71:cb:d5:37:
e6:2e:bb:db:00:b3:a9:22:13:e0:91:42:14:e8:c9:d0:47:c4:
65:04:11:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 16:41:36 2025 by rpki-client