Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/ED0DA2ECC61D11EFA2FE2261762E951A.roa
File: ED0DA2ECC61D11EFA2FE2261762E951A.roa (raw, json)
Hash identifier: yqtkaYDMeUNq2NoUNn5Q3V3W8u9gr/PZrJAbXXYyjVA=
Subject key identifier: 81:0B:2D:51:EF:AB:49:1E:A6:FB:DD:3D:ED:50:48:F6:23:BA:08:C3
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 012F52
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/ED0DA2ECC61D11EFA2FE2261762E951A.roa
Signing time: Sun 29 Dec 2024 19:48:50 +0000
ROA not before: Sun 29 Dec 2024 19:48:47 +0000
ROA not after: Sun 12 Dec 2027 19:48:47 +0000
asID: 17561
IP address blocks: 154.217.140.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 77650 (0x12f52)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 29 19:48:47 2024 GMT
Not After : Dec 12 19:48:47 2027 GMT
Subject: CN=6771a7a2-7a31
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:da:c0:7b:a4:66:73:44:df:45:f3:b6:75:03:
52:a8:81:ba:75:8d:bc:26:37:e3:42:e0:24:a6:aa:
55:3d:90:f1:e6:df:dd:16:42:d9:4c:ff:24:1e:d7:
d1:61:b3:cd:a5:1d:b8:2d:17:a1:9c:4f:52:78:84:
65:4c:6f:ce:cb:8e:32:a1:e4:53:48:45:3f:69:b5:
c5:b5:44:99:dd:f1:97:4c:61:f3:ab:75:ae:5d:c1:
da:e0:9d:6e:57:b4:8d:94:68:00:b6:b2:41:43:2b:
60:08:63:3a:26:01:75:6f:54:8f:0e:6f:ea:38:8c:
83:b1:16:e8:16:a0:ba:5a:c3:a9:01:10:a3:d7:ed:
c1:99:22:96:ce:88:6f:2b:fd:a1:79:35:99:a1:4d:
0b:54:f9:41:77:1c:d0:10:80:cf:c7:84:91:ca:c8:
67:10:c7:67:fd:19:ba:c9:33:58:8c:5a:94:87:82:
37:d7:43:07:c9:32:34:c6:a2:c1:37:b4:be:c7:a8:
36:58:9c:76:8e:43:9c:60:a9:a6:6d:b1:23:8b:36:
6d:e5:65:e2:a6:b3:a6:62:b9:c2:ad:13:17:a2:0f:
4d:b9:10:82:2a:b7:f1:9f:74:07:11:cc:7d:83:70:
e2:ac:a7:93:3c:a0:b5:55:97:09:d8:a9:4f:8b:ff:
89:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:0B:2D:51:EF:AB:49:1E:A6:FB:DD:3D:ED:50:48:F6:23:BA:08:C3
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/ED0DA2ECC61D11EFA2FE2261762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.217.140.0/24
Signature Algorithm: sha256WithRSAEncryption
34:2a:14:27:c9:50:ff:89:b1:f6:99:fa:46:c5:2f:ed:62:2a:
b7:95:42:06:e7:c0:bf:df:06:3c:20:f6:a5:45:31:b9:71:7d:
a5:24:9a:0d:99:27:80:b8:b1:13:a9:8e:e5:9e:7c:59:8d:21:
4d:cf:0e:99:72:5d:f9:1d:b9:9c:9f:5e:06:8b:67:7b:ba:29:
79:de:87:2c:6b:51:70:82:88:89:8c:20:95:96:ef:7f:89:f5:
a5:b7:e5:08:4c:fa:4a:a2:cf:98:c8:81:f5:f8:9d:f2:18:a7:
53:a1:f4:7c:33:7b:fd:ea:82:d5:5b:af:50:32:85:b2:80:74:
93:6e:f3:7a:b5:06:e1:f8:bc:dd:44:10:a0:44:58:90:22:4a:
b9:da:26:9f:83:63:2b:36:bd:b3:e4:4a:cf:bd:84:06:4f:32:
7e:32:85:75:e1:2f:f2:71:9a:8a:76:06:11:a9:a0:01:3a:ff:
d3:02:2d:16:36:16:a7:fa:a0:27:c1:02:5f:9f:7f:a6:0c:3b:
e4:e2:4b:3f:99:ba:b5:1a:51:4d:f6:aa:9c:65:af:d0:04:5c:
69:c6:6d:91:f5:34:cc:0f:b4:df:98:36:53:5c:bb:fe:be:5b:
3f:09:df:2e:2d:0c:90:e3:b4:63:e5:62:dd:99:60:31:f9:c4:
49:09:20:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 20:17:09 2025 by rpki-client