Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E52914F4D2E211EFB63A6A82762E951A.roa
File: E52914F4D2E211EFB63A6A82762E951A.roa (raw, json)
Hash identifier: FAtITZvnZcmqiironYT+PpPYXjfq09u0SBndyO5BE3Q=
Subject key identifier: 39:EB:92:88:86:A1:B8:01:8B:5A:5E:DC:DD:FD:F9:58:B4:C0:68:68
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 013B7A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E52914F4D2E211EFB63A6A82762E951A.roa
Signing time: Wed 15 Jan 2025 01:49:02 +0000
ROA not before: Wed 15 Jan 2025 01:48:58 +0000
ROA not after: Sat 03 Jan 2026 01:48:58 +0000
asID: 984
IP address blocks: 154.200.170.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 80762 (0x13b7a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Jan 15 01:48:58 2025 GMT
Not After : Jan 3 01:48:58 2026 GMT
Subject: CN=6787140e-97ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:b9:2d:df:25:d5:3e:d0:9e:22:a9:be:64:e6:
c9:03:41:6b:0f:db:8e:50:b3:aa:f6:ef:a7:77:52:
7a:f0:e4:ea:3a:c3:50:a8:41:6e:88:94:f5:f0:9a:
46:d2:ff:07:58:7d:e0:19:5b:27:3f:b9:eb:ec:9c:
b0:9d:9f:14:9d:a8:1f:3e:da:45:a7:0c:31:99:bc:
3d:9b:bc:1a:e6:c4:d4:bf:9a:c5:26:36:c0:d8:95:
1b:35:10:96:b4:ed:bf:73:8f:b5:18:8a:2a:24:7c:
83:64:a6:9c:92:b3:2d:31:c8:3e:36:41:37:99:1b:
fa:fa:7c:e7:92:f0:c3:15:07:7d:31:a9:14:d5:76:
84:d2:76:1b:a5:8e:4d:6f:0b:97:9a:4e:50:c5:53:
8a:ce:3c:c3:45:0e:51:24:94:bc:e5:81:92:21:e4:
41:cc:75:c2:14:4e:90:4d:c8:4a:9d:17:7e:e6:4e:
b5:89:15:09:35:08:41:24:c5:b5:14:93:89:de:c9:
12:80:38:4c:2e:c4:43:91:7a:04:1f:3d:d2:ba:98:
50:45:b1:c4:1f:8b:55:4a:b3:50:4e:b0:0f:9d:60:
7c:61:29:12:ee:e5:57:cd:86:cb:8f:9d:8e:f5:e0:
88:a7:87:37:13:f1:8d:eb:4f:88:a7:be:8b:19:fd:
c1:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:EB:92:88:86:A1:B8:01:8B:5A:5E:DC:DD:FD:F9:58:B4:C0:68:68
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E52914F4D2E211EFB63A6A82762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.200.170.0/24
Signature Algorithm: sha256WithRSAEncryption
a8:77:d2:27:23:6d:49:82:07:23:52:f6:61:4c:1b:ef:49:57:
22:73:55:c5:1d:8c:ab:cd:59:53:ad:c7:1c:fe:41:88:bd:0a:
d5:d0:79:24:fe:e3:94:d0:0e:f3:ec:da:41:0f:76:52:11:dd:
b4:3e:91:75:75:52:c2:24:9c:77:10:0c:33:88:a7:6d:f7:ca:
f2:13:02:98:d3:6f:5e:f5:97:c5:29:fb:6c:7b:cd:da:37:79:
be:7c:be:6a:9a:34:4d:17:ff:22:ed:ae:b4:90:b7:03:7e:b3:
7c:ea:a0:ca:a1:84:19:03:a7:98:f1:c0:28:6f:4e:6c:28:be:
08:62:5e:e8:07:43:ff:be:c9:94:07:4b:2f:d5:03:0a:ee:9c:
4f:60:74:62:df:ed:0c:0d:c3:50:df:4a:ed:01:99:48:3f:06:
f2:94:d5:76:95:a0:78:37:4a:63:ed:3d:18:69:24:e9:78:5e:
00:87:2b:a4:1f:d5:2e:7c:b4:c4:90:5d:9d:6e:c0:0f:df:24:
85:32:e3:de:9e:19:75:d1:c0:39:ee:bc:3a:49:80:a8:50:bd:
c6:dd:e6:3b:88:78:45:2a:c0:09:aa:5f:2e:85:32:cd:be:ff:
50:d0:be:26:63:1b:db:17:81:e5:65:b4:f1:87:9e:4a:2c:da:
49:dc:8b:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 20:23:13 2025 by rpki-client