Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/173B1E26DFDE11EF90E25C4F762E951A.roa
File: 173B1E26DFDE11EF90E25C4F762E951A.roa (raw, json)
Hash identifier: az0U2UDFj1FL3rm1VwRZIoqRu0O1XlOQlVts2r2ekuQ=
Subject key identifier: 69:CF:C1:9E:76:32:EA:9D:54:04:4A:64:E6:05:72:FE:76:A8:C2:0B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 014DB3
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/173B1E26DFDE11EF90E25C4F762E951A.roa
Signing time: Fri 31 Jan 2025 14:17:24 +0000
ROA not before: Fri 31 Jan 2025 14:17:19 +0000
ROA not after: Mon 03 Mar 2025 14:17:19 +0000
asID: 139880
IP address blocks: 154.215.64.0/18 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85427 (0x14db3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 31 14:17:19 2025 GMT
Not After : Mar 3 14:17:19 2025 GMT
Subject: CN=679cdb74-d7cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:85:e3:da:fa:b7:00:8f:f0:dd:16:06:cc:0e:
e6:57:2d:2e:79:e8:13:22:b9:5c:51:44:bd:7d:27:
72:50:a2:6e:5e:f1:f2:02:ec:78:1e:b8:e2:f8:c4:
12:39:97:ae:40:3b:f8:61:96:4a:42:c5:84:c9:a1:
6b:81:cd:d9:3d:b9:7b:eb:6e:63:8d:a7:9f:6c:d7:
3c:96:55:5c:5c:e6:fc:ba:45:53:98:6e:5b:95:40:
52:d1:9c:b8:40:2c:7a:56:15:0d:ee:7c:fb:31:4a:
42:60:b3:67:0e:93:7e:c4:29:80:d4:f3:2a:68:2d:
dd:ec:b8:90:01:13:de:e6:17:74:ae:e9:05:86:fa:
bc:02:2d:ae:cb:4a:f6:8a:28:60:59:59:3b:bb:ca:
87:93:1b:64:65:38:fc:e4:45:bf:94:ec:d3:a3:c1:
5b:e8:43:32:0b:88:5a:c2:7e:65:fd:2d:66:f3:4a:
ac:ec:76:80:28:95:d1:3f:ab:04:46:55:a5:5e:43:
3c:08:0a:d2:6d:4d:73:b0:52:41:95:91:96:56:0e:
fb:3f:6a:0e:ec:a1:d2:24:99:d7:9c:d1:93:93:55:
ed:3f:39:e3:0f:c8:ec:ce:eb:7a:e4:b0:19:e6:4b:
83:af:1c:5e:bb:fc:a7:08:4e:7f:5f:13:16:37:74:
d4:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:CF:C1:9E:76:32:EA:9D:54:04:4A:64:E6:05:72:FE:76:A8:C2:0B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/173B1E26DFDE11EF90E25C4F762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.215.64.0/18
Signature Algorithm: sha256WithRSAEncryption
7e:44:ca:55:65:a2:e0:f1:a3:05:43:96:01:42:d4:0b:30:fc:
e1:9c:8f:11:f5:73:3e:9d:6b:1a:ef:27:88:e7:f7:11:f8:16:
e6:30:9c:be:56:e2:93:30:82:11:64:3e:f1:fb:fa:fb:50:22:
e1:10:27:41:9d:bd:27:77:3f:a8:76:c7:09:49:4d:f0:5b:3a:
25:56:d4:32:e2:45:3d:10:11:0b:59:ce:5c:c1:d3:3c:92:2f:
95:3b:91:96:2f:ab:91:fb:b2:47:29:d1:27:b3:d5:3e:0e:0b:
97:35:b6:4c:94:80:5e:8e:46:e5:a2:ca:4e:d8:7a:94:6c:2a:
db:7e:ed:4d:82:24:e3:8e:e0:e1:30:d7:3e:8f:76:7f:4f:35:
20:8c:08:62:f5:6e:1b:78:d9:db:8e:c6:86:82:af:d0:8c:29:
6d:2c:4d:5d:21:de:ce:6b:ea:d0:0e:57:0f:8c:42:c8:95:2b:
cd:f9:a3:06:9e:ae:1d:4c:a8:bf:0d:0c:ab:aa:b1:e9:6d:80:
5c:14:78:f5:c9:f8:e8:f2:c2:05:26:3a:0c:ef:32:96:9c:a8:
78:c0:a2:46:62:d2:4f:1a:12:d9:c4:3a:9b:0c:73:f8:25:a3:
b7:c2:a2:a4:24:1b:b5:ba:c4:c3:dc:e8:2e:3e:a4:5d:b1:12:
78:9a:77:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 06:04:18 2025 by rpki-client