Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0FB35FB6DA5611EF9875357C762E951A.roa
File: 0FB35FB6DA5611EF9875357C762E951A.roa (raw, json)
Hash identifier: ZVs/wFJpTDVXBGVkE431icD+dF+QlJZtyjhUHBh/73o=
Subject key identifier: E9:48:52:E2:B7:E8:7C:59:5D:E4:F9:95:81:88:C1:1B:D3:D3:36:D5
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 014764
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0FB35FB6DA5611EF9875357C762E951A.roa
Signing time: Fri 24 Jan 2025 13:21:04 +0000
ROA not before: Fri 24 Jan 2025 13:21:00 +0000
ROA not after: Wed 05 Mar 2025 13:21:00 +0000
asID: 44559
IP address blocks: 154.209.135.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 83812 (0x14764)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 24 13:21:00 2025 GMT
Not After : Mar 5 13:21:00 2025 GMT
Subject: CN=679393c0-7a4a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:0f:a8:18:9e:80:40:46:40:a5:19:fb:aa:e2:
c6:fa:19:1a:75:c3:47:91:2e:53:9f:ab:d5:62:39:
96:9c:f9:01:f4:9a:33:36:39:ff:94:1f:a1:18:32:
bc:66:09:b1:76:1b:6e:a6:8b:f6:0f:8e:ca:3f:40:
33:e8:2c:48:c8:cb:c4:d1:0f:f4:ec:59:45:58:81:
d4:21:aa:f2:9d:65:0c:0f:25:58:82:19:fb:2d:b7:
bc:13:ff:90:03:69:f4:83:d8:f0:92:bc:38:44:9e:
d2:d6:39:64:fd:ad:a0:cc:31:1d:e5:d6:df:3f:78:
ac:72:da:33:6e:f9:1c:25:62:76:1e:58:03:2a:df:
87:72:d6:54:a5:b0:60:0d:7c:29:5d:24:9a:ce:99:
ff:e9:95:41:7e:28:99:fe:bf:de:bf:d0:6a:35:36:
51:72:9f:e7:75:0a:b4:ef:de:3e:c7:0c:ad:50:8f:
19:5b:0b:19:e5:ce:1d:35:b4:e5:16:a6:47:2b:c0:
02:c8:da:36:f1:fa:90:34:0f:0f:5e:7f:4c:26:da:
a0:6e:fb:23:8a:b0:f6:70:bf:d9:0b:27:f8:84:f6:
07:90:21:15:c8:e1:e1:a8:fd:fb:bf:d0:e3:43:ee:
c2:6d:99:49:bd:1e:d7:59:af:9c:b0:c0:32:c4:cf:
4f:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:48:52:E2:B7:E8:7C:59:5D:E4:F9:95:81:88:C1:1B:D3:D3:36:D5
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0FB35FB6DA5611EF9875357C762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.209.135.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:a9:7b:99:e6:48:55:16:e9:86:0d:97:10:9f:cc:c9:3c:51:
9f:95:d3:68:b8:c5:b3:f1:5d:ad:d8:93:9e:67:f9:a6:5e:3d:
cf:8a:98:ea:b3:bc:cf:97:c7:84:47:03:c6:75:f2:4b:82:b6:
79:77:3e:e7:5a:79:49:dc:88:54:5e:52:25:75:40:a0:ad:26:
e5:27:1b:4d:f3:03:75:e5:d1:d4:f7:23:44:d1:5b:42:c4:ec:
e2:51:89:9d:ef:08:57:b3:31:b4:c2:19:6c:fd:1d:3b:ad:4b:
50:9e:60:df:93:d6:bf:66:2c:96:ef:4a:75:93:5d:c8:32:7d:
f6:0f:d5:6e:7b:bb:fa:b7:29:29:49:11:b2:b4:77:2d:04:16:
c0:db:d6:1f:2f:0b:a5:72:be:22:ba:91:2d:94:d4:92:09:4c:
0f:ef:de:0e:71:12:e0:a6:4c:4c:bb:be:20:03:da:8e:2f:ee:
e9:cb:15:75:a8:54:50:2f:80:02:dc:5e:57:a3:1f:12:df:f0:
e3:80:00:55:f9:31:ce:d4:9e:a2:43:0e:52:e0:a4:c2:4d:99:
b9:c9:f1:c8:38:45:2e:13:40:5d:25:04:67:1c:33:d8:14:21:
fe:4d:ae:91:a5:9a:74:d9:4c:3f:b2:c1:56:24:d0:f1:3b:4a:
3c:b5:2c:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 10:07:10 2025 by rpki-client