Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/070B12B4D8A811EFA0F8C1AA762E951A.roa
File: 070B12B4D8A811EFA0F8C1AA762E951A.roa (raw, json)
Hash identifier: gqpzShiO7B6a2fjD84LjMi3Nh6YMe4856i8F/AhZjI4=
Subject key identifier: 2D:A4:ED:AD:EB:73:86:D3:CF:65:25:57:9A:0F:22:EF:2C:13:ED:A7
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 013EA8
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/070B12B4D8A811EFA0F8C1AA762E951A.roa
Signing time: Wed 22 Jan 2025 10:02:46 +0000
ROA not before: Wed 22 Jan 2025 10:02:42 +0000
ROA not after: Wed 05 Feb 2025 10:02:42 +0000
asID: 395793
IP address blocks: 154.200.56.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 81576 (0x13ea8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 22 10:02:42 2025 GMT
Not After : Feb 5 10:02:42 2025 GMT
Subject: CN=6790c245-8c6d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:61:43:01:9c:3a:48:9d:e9:8f:33:e9:0d:c6:
24:ce:bc:d7:df:53:60:90:1e:80:ba:a9:4a:cd:67:
40:0d:84:64:f6:74:92:5b:a0:8b:6c:34:10:4d:6c:
9f:e9:30:a4:19:7b:a6:d8:cc:98:f3:1a:32:0c:f3:
e2:ec:0c:6b:af:09:02:b7:8c:59:c6:6d:df:ea:f2:
63:b3:47:de:64:f3:be:7b:5b:d4:be:2c:63:d2:a9:
1c:50:41:5b:5d:51:93:91:3a:e0:71:77:bc:fb:e9:
fe:6b:cd:a0:98:c3:40:e3:ff:5e:f8:25:9e:cb:ea:
b8:f7:98:08:72:58:09:15:a4:a9:5a:5c:6b:1e:14:
b7:5d:54:2f:9c:1b:d4:58:a4:b2:7a:1e:10:98:14:
95:f3:c8:b0:cd:7e:ca:44:af:24:14:fd:9e:dc:92:
80:b6:1c:e3:63:28:c7:b6:21:8f:29:f9:65:1f:de:
7d:3a:f3:62:12:b9:e0:59:1d:75:f5:8c:b7:5c:81:
01:78:78:c5:da:b9:fd:fe:6e:1b:09:31:73:24:3f:
77:05:a5:7e:2e:59:e1:7c:25:ee:0b:11:a8:10:95:
a2:74:ca:ee:18:5e:95:98:22:bb:7a:6b:b7:d7:f3:
3a:2b:46:f6:ae:20:46:2e:a8:c8:00:68:8b:23:21:
db:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:A4:ED:AD:EB:73:86:D3:CF:65:25:57:9A:0F:22:EF:2C:13:ED:A7
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/070B12B4D8A811EFA0F8C1AA762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.200.56.0/22
Signature Algorithm: sha256WithRSAEncryption
3f:c6:58:ce:05:52:a9:4d:29:ca:24:d7:03:a2:3f:65:55:4f:
0d:97:54:ad:35:02:65:e6:ab:e4:83:d9:8b:ba:65:e9:ac:c1:
d3:80:fc:5d:e9:bb:a6:f2:34:00:7c:25:56:4a:a0:53:58:df:
7f:35:16:94:ef:dd:7f:ee:45:43:0c:a1:a2:4f:3a:c4:42:78:
02:2e:69:bb:ec:41:51:bb:21:9f:27:a7:42:40:9e:eb:92:27:
64:20:74:c2:6a:e6:42:67:6b:4c:02:e2:50:a6:45:9c:9e:7a:
9d:8e:c5:d3:90:b4:de:b0:00:ff:95:75:62:a0:bf:fc:de:b0:
0b:f1:89:29:4e:6a:0b:98:c5:61:be:0c:cf:1c:79:74:01:6f:
5a:10:fd:c1:9e:69:c2:3f:a5:af:5c:d7:66:b3:da:02:fb:6d:
8b:de:bc:03:cc:72:48:7f:83:31:01:91:80:7b:d2:2c:bb:83:
7f:9c:35:c6:52:da:93:74:03:6b:2c:af:a3:a3:5d:66:e2:80:
60:8a:09:b5:3f:26:60:d4:5b:26:c5:97:2f:93:d5:de:be:99:
de:66:f4:33:b2:2f:ba:35:94:de:f5:04:8f:b1:a8:97:30:3f:
84:02:62:ea:65:90:1d:f3:1d:0f:61:53:88:3e:5a:5a:bb:43:
22:85:af:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 19:16:04 2025 by rpki-client