Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F9FECF7AC25911EFA1C8116E762E951A.roa
File: F9FECF7AC25911EFA1C8116E762E951A.roa (raw, json)
Hash identifier: 10XNdWXSt3cpzWAfP0+od+A8IMPWJF2axI6WMGsiPbM=
Subject key identifier: C3:83:31:81:F8:41:A8:30:9A:37:E0:AA:CF:19:DC:E3:9A:D2:CF:40
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01235F
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F9FECF7AC25911EFA1C8116E762E951A.roa
Signing time: Wed 25 Dec 2024 00:48:37 +0000
ROA not before: Wed 25 Dec 2024 00:00:34 +0000
ROA not after: Wed 10 Dec 2025 00:00:34 +0000
asID: 984
IP address blocks: 154.199.61.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 74591 (0x1235f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 25 00:00:34 2024 GMT
Not After : Dec 10 00:00:34 2025 GMT
Subject: CN=676b5665-89fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:4a:01:3f:71:d0:1a:ad:14:60:30:65:db:40:
45:7b:34:86:84:66:89:a7:54:51:04:da:3f:ad:2a:
69:03:55:e5:6a:f4:f2:3f:6e:25:46:29:06:0f:6b:
bb:01:d6:34:15:45:2f:5f:79:b6:e6:08:4a:6f:06:
05:bf:34:01:6d:4c:cb:9b:c5:2c:9d:4d:36:3b:e1:
25:a5:a2:7e:f4:c1:19:ef:c5:d5:d6:4b:f4:9f:5a:
29:15:17:f5:58:7e:fe:bc:2d:36:ad:4a:2a:05:0d:
86:5f:e6:aa:51:bf:dd:59:4a:63:96:e1:6d:93:d5:
d5:51:2c:96:0f:e7:e1:87:90:bd:1a:5c:c3:77:a3:
bd:34:c5:ff:77:5e:d3:4d:ab:59:3c:86:5c:16:bf:
38:17:9e:4c:36:5b:ce:d3:6d:31:7b:1a:e3:2d:eb:
d2:55:ef:a1:b0:32:95:d9:d8:08:db:a7:a6:3f:fa:
b6:8e:de:c8:35:05:dc:31:18:ae:b1:c8:81:f4:0b:
05:e0:01:97:6a:ea:66:f1:6e:50:cb:97:6d:d8:2d:
ac:12:07:57:12:ac:59:a3:19:39:3c:d5:08:c4:21:
71:8e:3e:5b:d8:6e:4c:e6:25:3a:e8:ed:ab:a9:37:
5d:40:03:cf:7f:dd:a9:89:2a:07:21:b0:84:8d:5a:
c6:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:83:31:81:F8:41:A8:30:9A:37:E0:AA:CF:19:DC:E3:9A:D2:CF:40
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F9FECF7AC25911EFA1C8116E762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.199.61.0/24
Signature Algorithm: sha256WithRSAEncryption
c4:f7:3d:3c:67:21:06:65:01:f2:ec:cf:b8:76:3d:2d:30:57:
e6:cb:2d:c7:f7:5e:32:3e:f5:93:a7:89:02:86:9e:20:17:c7:
71:7d:41:b5:34:84:06:fa:e7:29:be:06:a7:14:50:01:01:cd:
60:5b:42:5e:e8:cd:29:7e:6c:d4:b7:b4:9b:be:1a:d9:92:5a:
f2:ef:07:20:8a:42:52:80:b1:d5:92:5b:fd:f4:e2:d6:6a:e6:
8f:1e:5a:53:71:10:7c:7c:16:15:f5:1e:7d:0b:f7:7c:6a:60:
f0:cc:13:89:5b:c5:03:ea:c6:f2:3e:ab:67:a9:7e:49:fd:99:
58:5e:9d:d4:f9:aa:ee:c0:e7:c3:13:7c:71:98:28:8c:c0:d0:
01:f4:3b:83:2e:ef:ef:37:86:41:c3:3d:7d:ce:8b:e0:42:d8:
f6:6d:b7:16:d2:6a:5a:42:7c:fd:81:cd:ef:73:bb:c7:98:63:
94:32:2f:24:d4:e3:37:40:3f:82:17:e1:f9:e5:f1:36:9d:11:
71:00:6f:2f:49:7a:6c:1b:86:fb:1c:fc:34:bb:25:9e:35:2d:
b4:61:6c:71:80:18:95:f5:34:90:c4:2c:71:5f:59:04:38:38:
db:1a:09:88:cd:a1:90:23:f9:10:ac:91:bd:59:0b:ee:ff:6b:
08:ec:6f:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 06:06:35 2025 by rpki-client