Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FEBD67BACDC611EFA8E698A4762E951A.roa
File: FEBD67BACDC611EFA8E698A4762E951A.roa (raw, json)
Hash identifier: +tDOihQznDfR/87QQOqxVpuVczrsRv1X4ogQp8cuDv4=
Subject key identifier: A1:C1:E3:8F:DD:2E:4D:37:CD:BE:17:59:3C:36:9C:F9:57:3D:2D:27
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 013744
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FEBD67BACDC611EFA8E698A4762E951A.roa
Signing time: Wed 08 Jan 2025 13:46:43 +0000
ROA not before: Wed 08 Jan 2025 13:46:40 +0000
ROA not after: Tue 23 Dec 2025 13:46:40 +0000
asID: 984
IP address blocks: 154.89.27.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 79684 (0x13744)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Jan 8 13:46:40 2025 GMT
Not After : Dec 23 13:46:40 2025 GMT
Subject: CN=677e81c3-aa52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:55:1b:0e:29:2a:1e:fb:08:7d:72:ee:c5:4d:
1d:79:55:c2:34:1c:dd:c7:be:11:f9:af:82:ee:ac:
91:ba:ef:a3:5a:60:0b:e5:a6:fa:dd:ed:e0:d5:2f:
bd:19:4b:cc:01:5e:55:63:b6:a1:e2:a6:62:1b:86:
61:ae:08:a1:00:3c:79:07:a6:45:d0:72:53:14:56:
64:6b:66:33:79:17:b0:79:8d:03:96:0c:90:d4:04:
8d:33:1d:93:98:02:06:18:b6:09:1b:d3:d3:de:cc:
4e:e7:36:88:d6:2a:d2:e3:c3:0a:01:6b:b4:1f:4d:
f1:4f:b9:0c:40:58:fa:3b:a5:64:5c:b5:9a:7a:3b:
95:2c:b9:15:fa:2e:13:a7:00:5e:cb:da:17:58:76:
95:02:4a:b7:7d:44:a1:6f:c4:b8:26:33:f7:e3:db:
f8:53:78:2d:ee:30:07:50:db:fd:08:1e:50:fd:c3:
3b:e3:3b:02:35:df:68:72:39:60:1f:ef:49:7c:50:
c5:66:50:57:5f:09:11:a8:75:a2:5e:dd:96:1d:a8:
4f:47:ba:3f:22:9f:37:8a:62:10:e3:45:70:9e:6c:
d0:1c:19:f5:de:5b:cf:5d:fb:04:aa:ff:dc:5b:d0:
97:4d:7e:93:e2:2c:10:0b:e8:17:5e:fd:91:d4:e0:
ef:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:C1:E3:8F:DD:2E:4D:37:CD:BE:17:59:3C:36:9C:F9:57:3D:2D:27
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FEBD67BACDC611EFA8E698A4762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.89.27.0/24
Signature Algorithm: sha256WithRSAEncryption
04:db:a2:e8:9c:d4:9b:e3:e5:da:2c:83:1e:db:e6:ba:58:6b:
28:05:46:54:b9:b3:f2:40:ec:08:21:a1:df:97:ec:bf:09:a9:
3a:90:72:d6:c5:e5:90:f2:bb:25:2b:f6:1e:6a:5d:14:bb:d3:
dc:a4:cc:26:a5:18:5b:e3:0c:65:61:a0:2d:48:c2:6f:63:80:
81:89:c5:68:e9:71:0d:be:f2:c6:32:ce:b9:58:8c:63:30:74:
8e:b4:cd:11:4a:d2:bd:ea:59:3a:4e:9c:5e:5e:f0:c0:4f:1a:
21:63:92:9d:4c:59:c3:4f:72:94:6c:68:69:fb:aa:08:92:92:
2d:8e:07:a4:77:63:4a:78:43:8f:6e:f2:09:5b:53:9f:0f:6e:
5e:5c:d3:1f:fd:7e:b0:88:26:3b:fe:1d:fd:76:d1:17:b3:d0:
7a:76:9c:9a:0b:79:f6:d4:42:29:f5:45:b7:ec:10:eb:7e:03:
81:a5:b5:f1:e2:4b:da:ad:a9:52:bb:54:8a:a9:2e:14:f0:22:
07:eb:41:54:25:c0:0d:0f:ea:b2:ce:23:68:e7:4b:76:22:a0:
40:18:d8:ec:da:4f:c1:db:9e:b8:52:4a:b6:17:d3:88:84:1f:
1a:6c:81:c8:50:90:2f:0e:bc:61:47:58:78:4a:a3:85:de:88:
c8:36:0b:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:57:51 2025 by rpki-client