Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EA977628C52811EFB85C0B55762E951A.roa
File: EA977628C52811EFB85C0B55762E951A.roa (raw, json)
Hash identifier: n/BkR57WI80LgymtRv3Ej9ogIlbsbg9RrbqSTxxn/PA=
Subject key identifier: 52:81:12:20:8A:91:73:0F:C1:0C:F5:B9:C9:8A:0E:5C:EF:96:2A:78
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 012BA1
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EA977628C52811EFB85C0B55762E951A.roa
Signing time: Sat 28 Dec 2024 14:35:00 +0000
ROA not before: Sat 28 Dec 2024 14:34:56 +0000
ROA not after: Fri 12 Dec 2025 14:34:56 +0000
asID: 984
IP address blocks: 154.204.27.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 76705 (0x12ba1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 28 14:34:56 2024 GMT
Not After : Dec 12 14:34:56 2025 GMT
Subject: CN=67700c94-a070
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:32:ec:10:c5:0f:a2:60:f5:64:9a:f0:0f:a7:
23:ec:94:87:6c:fb:7f:c7:f4:0d:d8:83:5e:15:60:
22:ae:e1:14:9e:ba:e4:16:43:16:3c:ed:0d:9e:c4:
fa:43:73:8b:12:f8:18:c4:f6:1d:b4:8e:48:d1:c9:
2b:02:b7:bd:e2:a7:e0:f5:98:e2:a3:f0:e0:16:de:
fd:7a:4d:4c:e4:1f:5f:f2:15:97:0c:2d:cf:44:88:
c0:15:85:0f:28:d4:94:4c:cd:57:22:b8:2a:6b:88:
3a:5d:10:63:12:b3:9e:09:cf:23:5b:5b:25:28:f7:
18:57:31:34:84:54:03:fe:46:07:67:ec:e9:bf:9f:
50:6a:de:c6:69:56:99:0b:b8:e1:ca:57:a3:46:31:
27:6d:5b:e2:eb:a7:b7:1c:d0:0d:54:4f:98:10:04:
8c:20:f1:31:80:25:a7:8f:95:cf:7a:9d:9e:9b:a3:
36:38:6d:9a:a1:03:6d:0f:35:16:5f:41:fb:61:8a:
7a:ca:a2:d4:36:3d:15:10:e2:ea:50:37:8b:50:a3:
c2:2b:99:a0:df:cb:3d:42:7f:67:d7:a1:13:e7:5c:
16:e9:1f:6b:aa:bc:c1:22:15:65:cd:ba:ca:9c:15:
d0:ea:8b:92:ad:f9:30:57:98:e5:13:bb:52:ea:b9:
5f:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:81:12:20:8A:91:73:0F:C1:0C:F5:B9:C9:8A:0E:5C:EF:96:2A:78
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EA977628C52811EFB85C0B55762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.204.27.0/24
Signature Algorithm: sha256WithRSAEncryption
12:b0:81:5f:35:81:4a:39:37:e5:dd:52:39:0c:73:e3:3d:fe:
f7:14:65:15:b6:57:f0:bd:c8:4a:7b:0e:64:8d:31:79:ff:18:
a7:7e:a9:65:a3:f0:f1:cb:40:53:03:0a:d3:05:2b:bc:6a:29:
72:81:f4:fc:87:ec:88:f0:89:6a:35:ed:9e:f6:8c:8c:d1:7e:
b9:7a:b8:41:98:b1:3e:2d:af:0c:40:3c:4b:47:e1:00:a5:46:
ba:5d:71:fd:2f:ce:35:fe:ef:ef:f3:4c:70:34:06:85:32:d2:
de:55:10:f8:e7:92:0a:93:46:44:b5:27:7a:37:94:28:06:36:
27:db:81:fa:cb:e7:08:3f:27:c9:49:b8:f5:fd:c1:16:48:df:
bc:08:38:6e:69:ff:15:08:ed:d5:f8:c4:f0:f2:1a:e2:77:ef:
8b:8a:85:37:07:62:8a:87:a2:d0:2a:97:04:2e:0d:14:5e:05:
01:ec:7d:28:b8:6b:2f:ec:fa:45:41:19:17:33:80:53:03:a3:
e2:8d:4d:54:1c:5b:4a:62:32:bf:a4:3c:c6:0f:19:fd:a0:02:
04:8e:94:56:b9:03:37:fb:ee:4f:91:4e:af:08:c2:de:cc:7a:
b0:38:f0:85:55:a8:84:d0:79:a6:bd:32:13:26:42:30:6f:4f:
2e:2a:3b:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 01:53:01 2025 by rpki-client