Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FB0A8DCEBE9311EFB9EA91A3762E951A.roa
File: FB0A8DCEBE9311EFB9EA91A3762E951A.roa (raw, json)
Hash identifier: wkf3Clj6VFZ0fRfHIPMI6bjcNrrHLDLY9b8Mxwmxe68=
Subject key identifier: 6C:CD:56:F3:29:F9:57:DA:11:5B:8D:86:71:AA:D4:7D:0C:44:3F:C5
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 011C34
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FB0A8DCEBE9311EFB9EA91A3762E951A.roa
Signing time: Fri 20 Dec 2024 05:33:45 +0000
ROA not before: Fri 20 Dec 2024 05:33:42 +0000
ROA not after: Wed 10 Dec 2025 05:33:42 +0000
asID: 984
IP address blocks: 154.82.204.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 72756 (0x11c34)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 20 05:33:42 2024 GMT
Not After : Dec 10 05:33:42 2025 GMT
Subject: CN=676501b9-b17b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:55:04:09:0e:14:9c:12:09:f9:65:a1:be:42:
6e:76:f5:9d:e9:38:da:75:1d:ae:ef:95:45:d1:a4:
64:96:ca:cf:9c:88:1d:a4:50:5e:b5:4e:7f:13:4f:
94:de:61:ad:a6:e7:a2:75:30:70:01:8f:ca:55:aa:
b3:6a:f9:3b:1a:c2:e0:38:e8:c0:44:ea:3e:be:ca:
4c:60:8f:11:27:0f:e0:ff:e7:cd:34:b8:20:9e:08:
ee:2d:c4:4c:98:52:36:69:6d:15:f5:eb:3a:fb:ff:
c5:dd:97:a7:7b:48:8b:37:76:6f:6b:2a:8e:27:42:
a2:e7:1f:fe:72:2e:63:3b:74:26:5e:05:0e:19:72:
b3:8d:19:49:58:47:4c:b4:5e:5c:74:92:c8:58:1e:
ab:65:13:ae:05:39:ef:99:1f:59:03:84:80:9c:b9:
f5:6b:e1:f9:c9:fa:bd:fd:99:af:b7:27:82:26:b1:
93:cd:e4:03:00:9a:d8:1e:e0:2a:d5:23:2a:28:29:
0f:dc:c7:15:5a:44:92:0f:a3:c2:7b:f8:66:0e:5a:
94:d3:18:38:b1:46:4d:eb:19:6a:ca:2e:72:dd:08:
be:9f:d3:96:6e:db:c7:3b:e5:41:4a:21:71:63:c3:
74:2d:d2:2b:0d:29:0e:06:85:e6:f3:5f:29:a2:62:
e7:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:CD:56:F3:29:F9:57:DA:11:5B:8D:86:71:AA:D4:7D:0C:44:3F:C5
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FB0A8DCEBE9311EFB9EA91A3762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.82.204.0/24
Signature Algorithm: sha256WithRSAEncryption
88:57:b9:44:df:6f:5e:fd:b8:33:23:bb:99:7e:9a:0b:9b:75:
49:ad:41:18:dd:3d:4f:ee:7b:d6:b2:eb:a2:55:52:fa:69:2b:
0c:17:4a:94:37:20:6e:a1:59:7a:d3:83:89:4b:18:f1:63:9e:
bc:04:1a:c8:60:75:7e:9a:3d:29:f5:60:42:08:55:59:42:ac:
fc:9d:08:1a:28:1e:77:41:1e:d0:f0:a6:87:19:3a:51:c7:a1:
7b:88:10:06:03:b3:54:90:53:d1:f2:56:a3:a9:42:dc:8e:29:
5e:85:03:a3:12:04:7f:65:07:75:11:93:dd:de:7e:53:03:30:
e5:bd:cd:58:e1:da:b8:db:02:4d:00:00:2b:ee:1c:db:93:d6:
cc:e2:ac:94:8e:f0:cc:0c:2d:1c:dc:a9:2b:91:89:08:27:9b:
cd:d7:16:fd:a8:32:48:33:34:c9:47:69:94:22:59:92:cc:be:
8e:d4:90:a2:ff:ec:9a:b0:bf:ad:84:84:4b:6c:ba:3e:8b:48:
52:61:fd:a7:fd:41:25:dc:94:93:ac:7a:96:b5:3c:02:58:84:
1e:a1:87:90:bd:9a:df:3b:a6:35:8d:f0:0a:bf:eb:fa:e2:e0:
4f:b6:13:e8:aa:86:96:9d:66:2d:9e:f5:c5:c8:93:00:08:4c:
3b:b2:8a:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 13:16:57 2025 by rpki-client