Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FD6AE4A4C0D911EF96CB8A71762E951A.roa
File: FD6AE4A4C0D911EF96CB8A71762E951A.roa (raw, json)
Hash identifier: BBiTJAHp6JHncBlgdHR4VaPQmD9xSr3V44UNSld3jBc=
Subject key identifier: 86:89:BA:A8:55:1A:04:9A:5B:8D:0B:3E:A3:F9:45:22:49:49:89:C6
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 011E90
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FD6AE4A4C0D911EF96CB8A71762E951A.roa
Signing time: Mon 23 Dec 2024 02:59:56 +0000
ROA not before: Mon 23 Dec 2024 02:59:52 +0000
ROA not after: Wed 10 Dec 2025 02:59:52 +0000
asID: 984
IP address blocks: 154.89.166.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 73360 (0x11e90)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 23 02:59:52 2024 GMT
Not After : Dec 10 02:59:52 2025 GMT
Subject: CN=6768d22c-6480
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:6f:a8:2b:94:4f:4f:98:20:53:e2:96:75:45:
15:3b:62:8d:c4:8a:b1:f8:71:5d:fe:1f:3e:c6:a9:
b8:bc:a8:9f:9c:da:d8:2a:f9:a4:5e:86:d4:1c:b5:
60:1f:5f:18:11:07:d6:38:bc:04:c8:98:d3:2e:4f:
ce:1b:95:08:81:12:78:9a:0f:2e:29:00:65:e0:61:
2f:39:82:24:1f:5a:c7:c8:67:1c:7f:d3:6c:c0:5a:
64:6e:e6:a4:b5:5f:34:c2:07:5e:64:e6:d5:ae:6e:
97:fa:2f:9e:13:31:67:72:88:5e:9e:45:d7:17:cd:
dc:9c:e5:5b:9c:a9:45:df:9e:56:5f:30:31:a8:4e:
80:e9:9f:d7:6e:0c:ca:0e:56:8a:89:0f:69:fe:3f:
2f:c6:f9:8c:22:90:4f:5c:a4:1c:09:09:c3:13:c4:
75:9b:b0:c8:a5:bb:a3:09:ff:c4:2a:55:99:1e:77:
a2:f8:49:f5:ee:1b:45:d5:19:ef:e1:c9:e4:fc:9e:
f5:34:05:e9:08:be:41:51:07:14:66:87:1a:bf:7b:
59:76:c8:b7:bd:9d:b5:36:e0:8a:30:37:33:c7:6c:
f6:7e:fd:cf:8d:78:74:b0:10:2c:54:3c:a4:78:e9:
ea:4a:b3:53:06:fe:16:ba:53:db:f6:cb:75:ef:ad:
59:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:89:BA:A8:55:1A:04:9A:5B:8D:0B:3E:A3:F9:45:22:49:49:89:C6
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FD6AE4A4C0D911EF96CB8A71762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.89.166.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:0e:02:4a:aa:ba:71:d5:ef:79:c1:31:08:13:2b:4e:dd:e8:
57:58:72:99:3f:b9:b7:6f:52:f2:a4:90:c5:cf:0d:0c:f2:50:
8b:66:52:8a:cb:b9:c1:84:6b:be:26:4a:b9:5f:f5:dd:18:d6:
da:4d:5d:53:f6:e3:2b:00:d8:cd:96:1c:e5:23:40:3a:7c:59:
4d:3d:d4:f2:ca:ad:7c:87:5d:b2:1d:97:4d:c7:c9:4e:fe:b8:
ac:19:9f:38:c0:71:fa:5a:a2:17:d8:fd:8c:10:76:89:56:db:
db:fb:97:21:5f:b1:e3:56:13:e6:12:0b:51:b5:59:20:11:f0:
05:22:ed:f6:50:d3:58:40:b7:c8:e7:54:0f:c8:58:50:c8:c9:
05:71:84:24:78:ca:39:e7:d9:45:b9:31:c2:74:6e:64:5b:ff:
eb:60:4f:28:e6:ce:0c:93:9c:4d:8c:9f:34:f3:ef:2e:79:48:
f8:5a:86:08:e7:51:1b:ed:9e:85:6a:d6:3d:1e:c6:96:96:d5:
08:8f:a2:13:2c:cc:a9:70:d1:39:30:b3:92:53:43:02:4f:13:
ef:94:3a:b1:a9:91:5f:c5:9f:9f:a7:6d:79:20:91:62:59:f7:
94:77:71:e2:e7:ab:8a:71:af:5a:62:29:ca:00:14:79:25:56:
ed:1f:2b:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 16:54:43 2025 by rpki-client