Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EA75E208FB2C11EF88F90775762E951A.roa
File: EA75E208FB2C11EF88F90775762E951A.roa (raw, json)
Hash identifier: kG6MKVJIuoQGxIe+0+a2qd+3k9isvuSc5oeAUSp1aBE=
Subject key identifier: 6E:95:05:07:4C:CB:38:80:4B:8F:67:DF:E4:02:39:C3:15:41:32:5C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0172CE
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EA75E208FB2C11EF88F90775762E951A.roa
Signing time: Fri 07 Mar 2025 08:19:40 +0000
ROA not before: Fri 07 Mar 2025 08:19:36 +0000
ROA not after: Fri 27 Feb 2026 08:19:36 +0000
asID: 12709
IP address blocks: 154.85.21.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 94926 (0x172ce)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Mar 7 08:19:36 2025 GMT
Not After : Feb 27 08:19:36 2026 GMT
Subject: CN=67caac1c-6c15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:6b:15:3e:3b:98:41:9b:f7:d4:7e:12:22:42:
7a:aa:3b:c6:33:fe:5f:03:ce:b6:c6:ad:d1:f7:92:
6e:bb:d0:8b:08:24:32:12:a8:3b:0e:90:9c:20:17:
ef:3c:0f:bd:74:bf:db:ec:b5:fd:af:f0:3a:d7:4d:
c6:31:e8:6c:b8:30:33:58:af:91:7e:fd:59:71:b0:
94:96:97:f5:ac:1f:c3:05:9e:14:f5:c5:60:81:6e:
74:79:4f:c7:cf:b5:15:4a:12:07:0a:60:de:85:72:
24:85:57:48:fd:46:56:e5:fb:a7:83:83:2c:9d:d1:
96:d8:9a:66:36:2b:54:0f:44:a9:a3:7c:26:13:73:
ff:ac:0b:02:dd:85:80:6c:41:ee:f3:91:7d:2e:eb:
2d:88:25:f1:d8:64:b9:b5:5f:e1:e8:ee:39:80:b5:
67:ed:41:34:84:a2:87:8b:af:76:40:3f:80:fc:cc:
1a:31:e0:c6:1c:32:53:9b:25:33:d1:a5:d8:20:23:
50:01:5c:fb:55:7f:7c:71:d5:f0:43:a3:44:0b:5c:
2b:dc:91:d7:d9:fc:0e:b6:8e:0c:36:5b:57:a2:00:
c0:ae:0b:ce:a8:e0:02:06:98:3b:b0:ee:bd:88:17:
12:14:d5:9f:b7:97:ea:ca:65:e1:09:7f:15:18:ea:
70:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:95:05:07:4C:CB:38:80:4B:8F:67:DF:E4:02:39:C3:15:41:32:5C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EA75E208FB2C11EF88F90775762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.85.21.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:13:06:3e:be:3b:3c:7a:b1:b1:9f:de:31:8f:0a:91:40:99:
66:0f:85:97:0b:16:3a:48:b7:95:90:b5:d4:e9:36:1f:52:63:
ee:24:48:eb:34:a9:50:a6:f1:66:50:5d:25:bb:3d:50:86:83:
80:d6:5d:13:6a:34:77:87:6b:a6:b3:93:64:38:4f:41:cc:9c:
97:0f:39:05:a9:ba:70:0d:6d:a3:72:60:9c:d5:90:16:b6:95:
b7:0c:aa:a2:d3:ab:69:93:ec:07:c4:f7:cc:05:ac:de:64:b5:
09:07:06:10:c9:6e:6e:72:98:f7:28:be:d6:e1:f3:6f:c4:af:
d6:c9:b4:bb:b4:24:4c:18:57:40:bd:b0:1f:bd:55:cd:af:ff:
e2:61:50:40:3a:7c:09:b3:12:b1:d6:91:32:36:0a:90:1a:44:
05:ee:25:ef:02:8f:a7:a9:e9:17:aa:f8:94:d0:ec:56:2f:9b:
2f:a4:b5:4f:42:c3:2e:07:6a:35:80:e7:76:3e:4c:41:42:02:
1c:7d:6d:1a:60:3c:43:fc:8c:1f:b5:ee:62:89:ff:20:56:90:
0a:18:7a:72:bc:97:28:fb:6f:69:9e:04:0c:e1:1c:bb:43:ee:
41:35:ff:6c:f1:4e:9f:93:a9:a2:b6:8f:ec:2b:e8:e2:8a:16:
3a:82:3e:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 11:11:12 2025 by rpki-client