Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E05FF496CDDE11EFA2B9E6BB762E951A.roa
File: E05FF496CDDE11EFA2B9E6BB762E951A.roa (raw, json)
Hash identifier: EFCBmq7m2GbnyXLmeSKHVYlN+gzxidDplY1xXvXPkkQ=
Subject key identifier: 33:91:42:67:C9:63:1E:FF:42:13:87:10:FF:25:6D:44:31:49:94:AA
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0137AF
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E05FF496CDDE11EFA2B9E6BB762E951A.roa
Signing time: Wed 08 Jan 2025 16:37:40 +0000
ROA not before: Wed 08 Jan 2025 16:37:36 +0000
ROA not after: Sat 03 Jan 2026 16:37:36 +0000
asID: 984
IP address blocks: 154.89.166.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 79791 (0x137af)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Jan 8 16:37:36 2025 GMT
Not After : Jan 3 16:37:36 2026 GMT
Subject: CN=677ea9d4-1ec7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:b8:ed:bb:ba:a6:9b:e4:3c:80:72:a5:6d:ef:
8d:b6:67:78:ed:2b:ff:d0:cf:f1:2a:79:f9:9d:b2:
cc:13:80:08:dc:40:78:65:ef:50:55:70:b9:b1:58:
03:43:ac:d6:33:30:1d:ce:21:20:30:c8:9f:18:6f:
d1:0c:20:65:9e:ec:e8:ff:06:2a:8d:79:e5:6c:15:
17:db:f1:24:4b:71:b4:32:a2:c8:55:11:cc:d3:83:
8d:e2:63:fd:97:c4:fa:b4:fa:57:57:49:69:3b:8d:
44:0f:f5:25:a6:95:60:d8:1f:d4:67:a2:24:b5:97:
5c:a9:b2:f2:f5:2f:a4:4a:dc:8f:17:65:73:20:60:
9d:07:18:b5:a3:64:31:86:a7:a9:69:e5:19:ea:30:
11:e3:50:d4:95:e4:5d:a8:49:53:03:04:7c:91:a0:
ab:eb:c6:d2:1a:83:0c:b7:19:44:73:9d:d7:e9:02:
e7:35:56:7b:b1:30:d4:90:9b:08:c7:33:0c:ca:b8:
22:97:44:c4:f6:9e:fa:cf:28:ab:79:5c:28:bb:3e:
6d:f9:b2:01:f6:a4:2a:68:b4:f0:65:61:40:20:c0:
12:b1:90:1d:f9:b6:3f:75:cf:22:6a:c5:ce:33:be:
3c:00:7a:3d:e5:50:5b:63:8a:b5:2d:e8:bc:8d:0b:
67:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:91:42:67:C9:63:1E:FF:42:13:87:10:FF:25:6D:44:31:49:94:AA
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E05FF496CDDE11EFA2B9E6BB762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.89.166.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:1d:2d:29:df:64:09:03:4f:62:26:45:2f:89:fa:ef:c9:94:
cc:f8:21:ef:c5:8c:52:c4:e3:6c:c5:2f:e5:1f:08:66:36:ed:
3d:69:23:fe:b1:ed:5a:c6:89:85:bd:de:b4:ca:0e:48:57:aa:
37:64:61:5e:0c:5e:66:a5:a2:fd:38:89:aa:5c:6b:48:05:51:
af:63:a8:d0:ec:0b:f9:f8:4a:f3:7c:30:2f:d5:51:3f:b4:b7:
62:44:ff:88:4d:cb:ee:a4:39:a1:48:b4:8f:cc:3b:53:a0:ce:
68:e4:98:8a:4d:11:d6:42:25:f4:55:ed:5c:cc:86:a2:05:22:
1a:5f:66:60:1c:3e:27:80:28:8c:2f:60:67:ec:15:cc:3e:96:
10:15:59:58:73:68:67:7a:eb:5c:79:8f:b0:d1:7b:5d:ba:50:
5c:ef:ec:cc:ee:5e:f9:2d:e8:97:54:69:6a:12:03:5b:65:cd:
e3:81:ad:ac:35:fa:4b:1c:7e:2c:2d:65:26:fc:31:b3:6d:0a:
1f:af:f6:a6:6a:c8:f3:a1:6e:20:72:aa:8a:44:bc:76:35:8a:
d8:dc:73:98:cd:59:2a:e6:cf:d5:28:c0:61:2c:93:74:4b:02:
35:3e:96:9b:84:38:74:68:9f:76:f4:f9:74:fa:e5:3c:d5:80:
ae:66:10:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 20:19:06 2025 by rpki-client