Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EEAB8DCAF42211EF8ACFC677762E951A.roa
File: EEAB8DCAF42211EF8ACFC677762E951A.roa (raw, json)
Hash identifier: 0YUPh+SEgKvRRCt0j2kgD7KaFXSEKe/q3xfXf3EAD7k=
Subject key identifier: EA:CF:3F:D4:1E:7F:0B:13:AC:4D:BE:7D:B2:A3:F6:B0:17:1A:F4:D7
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0161BC
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EEAB8DCAF42211EF8ACFC677762E951A.roa
Signing time: Wed 26 Feb 2025 09:20:34 +0000
ROA not before: Wed 26 Feb 2025 09:20:31 +0000
ROA not after: Thu 19 Feb 2026 09:20:31 +0000
asID: 984
IP address blocks: 154.206.233.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 90556 (0x161bc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Feb 26 09:20:31 2025 GMT
Not After : Feb 19 09:20:31 2026 GMT
Subject: CN=67bedce2-2be9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:4e:ee:6a:40:fe:d5:23:ba:e7:ba:d1:72:7e:
ba:6d:f1:be:3b:bc:e9:01:83:eb:fd:1e:1d:5c:b4:
63:85:37:5a:5d:f5:5a:6d:77:6e:1a:c6:1c:f5:cb:
c2:88:a0:89:a0:41:a5:e3:ad:c0:04:6c:30:e0:db:
13:94:83:6a:a8:3a:a8:8f:55:27:3c:1f:fa:25:2f:
70:20:6d:31:7c:99:8b:06:92:1c:1d:10:cf:4d:f9:
0d:b2:62:05:c2:25:f0:e0:a9:33:92:29:f6:99:af:
43:46:4b:ee:28:70:71:43:34:ef:bb:9f:b8:09:47:
30:9a:f2:80:88:71:ab:42:0e:ed:e0:1f:29:48:fb:
5d:d0:70:73:87:3a:df:e4:8c:9d:70:4d:f7:be:96:
8d:4e:2f:db:e2:a7:9b:c8:be:5f:4d:03:1d:5a:45:
48:0b:43:71:5d:c3:08:60:4e:1f:47:9a:0d:08:41:
fe:53:10:df:2a:e3:a6:9c:03:75:f5:5a:13:4e:66:
81:92:fb:48:b7:8e:e0:28:1a:e9:02:aa:00:82:87:
c6:c2:e4:6c:68:91:72:38:31:87:ea:c8:82:ff:12:
f3:9c:01:f5:ed:dc:5c:b3:e8:6f:50:f5:06:26:92:
25:06:e5:18:60:2b:8b:97:17:2b:a0:99:2e:1d:92:
bb:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:CF:3F:D4:1E:7F:0B:13:AC:4D:BE:7D:B2:A3:F6:B0:17:1A:F4:D7
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EEAB8DCAF42211EF8ACFC677762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.233.0/24
Signature Algorithm: sha256WithRSAEncryption
49:ce:33:cf:0d:70:eb:24:26:66:47:ce:d4:36:d1:82:c1:bd:
08:04:ce:67:af:8f:b8:7c:17:f9:90:03:a5:7e:e7:70:b9:e7:
73:43:0e:df:48:b8:49:c0:d3:3a:06:30:59:ed:77:76:56:34:
75:7d:85:97:cd:89:88:a6:48:25:40:82:46:7c:46:2b:29:2d:
5c:c2:92:83:bb:18:79:46:d0:fe:27:6a:a1:a2:30:26:eb:2a:
cd:78:f6:0d:d1:f4:f4:a3:e9:d5:7d:f8:d4:76:6a:22:19:64:
96:b0:88:70:34:94:5e:79:01:20:ea:8c:2a:3b:06:21:f6:16:
d9:3b:04:e4:b0:b8:fe:74:9f:45:b1:eb:37:e5:92:bb:b2:4b:
26:6d:64:8e:7b:15:ab:0a:ee:49:25:58:e8:6d:e0:6d:42:1e:
04:d0:f6:83:48:74:5d:40:5e:36:35:5f:55:37:ae:8f:26:0a:
6a:56:c0:a3:e5:1b:8d:27:03:f6:42:ee:99:3b:57:1e:75:71:
4a:c2:31:80:e4:92:06:6d:67:6d:e6:26:ae:e7:b7:87:3d:a0:
44:90:d0:e4:ca:c3:08:7f:e2:ff:b0:7a:89:4a:61:12:88:b0:
8e:05:24:c9:cf:f5:b1:35:80:b9:d2:1a:a5:be:ad:af:6c:3a:
81:83:6c:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 20:21:08 2025 by rpki-client