Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EC5C9AA4F44111EFA1E29254762E951A.roa
File: EC5C9AA4F44111EFA1E29254762E951A.roa (raw, json)
Hash identifier: xa/S0YvhX2HSRUivsnvnzKzCvMXJErvkbH4A8F68w7I=
Subject key identifier: 40:C1:A4:0D:94:C1:B9:8D:C0:B9:CC:66:76:62:85:3C:0F:74:15:2E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 016377
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EC5C9AA4F44111EFA1E29254762E951A.roa
Signing time: Wed 26 Feb 2025 13:02:25 +0000
ROA not before: Wed 26 Feb 2025 13:02:15 +0000
ROA not after: Fri 20 Feb 2026 13:02:15 +0000
asID: 984
IP address blocks: 154.83.154.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 90999 (0x16377)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Feb 26 13:02:15 2025 GMT
Not After : Feb 20 13:02:15 2026 GMT
Subject: CN=67bf10e1-7d02
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:74:04:35:29:6a:df:56:5c:af:e4:fa:73:8c:
b3:7c:67:7c:f3:2e:c4:5c:3a:3b:6b:9b:91:6d:2b:
73:0a:c1:4e:d6:31:97:b8:9d:a1:13:89:ba:1a:21:
e8:b5:81:83:ca:57:c7:83:20:1e:9e:f5:3f:ae:8a:
0d:c6:84:58:2b:d1:a0:69:cd:a7:0d:f2:88:b3:26:
98:92:94:9b:4d:9d:b1:cf:9a:bc:09:15:a2:25:61:
d8:b6:51:81:65:83:4f:9b:0a:8e:1d:f4:13:0e:ad:
d5:bd:20:ef:08:19:e3:d1:fe:05:31:26:af:0f:cc:
a9:26:eb:94:ae:f6:c1:88:48:8a:31:13:d9:f3:62:
db:2c:d5:4e:b0:8d:a4:48:f9:94:c6:4f:48:32:e7:
1d:e8:5d:95:23:54:d5:89:8b:e6:d0:5f:c1:e7:fc:
eb:f9:2e:e6:9e:48:e2:70:09:c3:72:e4:81:f2:1f:
1f:45:b1:b9:1e:0a:a1:16:1f:00:cf:45:f0:c7:89:
be:35:03:f8:8e:2f:68:14:80:6d:5a:83:94:28:ba:
f1:04:2b:dc:ae:57:46:e3:21:c8:14:80:78:e6:86:
13:a8:6d:53:1e:34:87:36:71:6e:40:93:3d:5d:31:
ce:82:cf:2f:77:24:a2:62:76:bf:45:ed:2e:8a:e8:
9c:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:C1:A4:0D:94:C1:B9:8D:C0:B9:CC:66:76:62:85:3C:0F:74:15:2E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EC5C9AA4F44111EFA1E29254762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.83.154.0/24
Signature Algorithm: sha256WithRSAEncryption
35:e6:73:15:7d:42:f5:77:47:e0:75:39:aa:ba:06:6f:09:ce:
f2:63:78:11:21:27:7a:f7:19:75:26:9b:43:15:ce:2e:8e:24:
a6:fa:a0:c1:75:d3:b7:dc:be:12:e2:d5:55:33:c9:e8:24:a0:
c8:5d:c4:06:ac:45:d7:c5:cd:2b:5c:f3:4c:f8:48:8e:cc:af:
4c:37:e5:ad:55:4f:4e:41:14:5a:2c:02:57:7d:95:49:45:a0:
70:71:87:68:c6:dc:cd:3d:da:17:71:ce:95:75:c4:93:56:ae:
33:76:ee:e3:89:0e:c6:d3:18:91:18:df:8a:3b:29:a9:22:9d:
14:6c:cf:0c:8f:ad:5a:7d:e9:61:36:3a:b1:b5:60:05:7f:57:
83:16:17:d9:7d:00:b5:f1:66:ac:a1:40:9a:fc:2a:c0:a9:af:
2a:48:04:69:f9:1a:08:38:a6:9b:17:1e:dc:4b:2d:c7:fb:02:
38:bb:aa:eb:b3:23:8f:ea:43:38:52:e3:7f:88:ea:a0:1b:06:
c7:5a:b8:82:f4:c3:7c:e8:3a:ad:53:f9:56:3c:81:14:80:e5:
2f:12:47:a4:bb:aa:99:e4:d0:cb:fa:50:9b:9c:13:8e:1e:7c:
53:d3:ec:67:e2:72:99:01:60:ba:ba:e7:30:ad:86:6e:bd:92:
2b:1b:7a:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 20:30:04 2025 by rpki-client