Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1AD79D86CBEB11EF8597104F762E951A.roa
File: 1AD79D86CBEB11EF8597104F762E951A.roa (raw, json)
Hash identifier: FNNWAa7Oziz940xlt83Vj1UPgJrRftkICTV+EqF5KPY=
Subject key identifier: FB:1A:89:5E:72:96:D0:DF:2C:43:CF:00:94:4A:5E:09:05:91:77:BA
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0135AA
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1AD79D86CBEB11EF8597104F762E951A.roa
Signing time: Mon 06 Jan 2025 05:00:10 +0000
ROA not before: Mon 06 Jan 2025 05:00:06 +0000
ROA not after: Tue 04 Feb 2025 05:00:06 +0000
asID: 5065
IP address blocks: 154.84.184.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 79274 (0x135aa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 6 05:00:06 2025 GMT
Not After : Feb 4 05:00:06 2025 GMT
Subject: CN=677b635a-786d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fc:0d:ea:79:50:3f:82:a9:ea:45:11:8b:31:34:
30:99:0a:5e:83:61:d0:4d:aa:7f:39:e3:7c:55:ac:
ff:1f:13:e8:af:d3:8c:40:04:05:fc:08:6a:a9:3e:
ec:9e:68:04:80:15:75:4d:db:27:b6:a0:38:b0:aa:
3c:9c:8b:7d:8e:a9:e4:34:8c:9d:13:9e:54:f8:ef:
9d:46:d7:74:81:cb:82:0e:fc:f0:a2:a5:ce:5e:d6:
59:30:b6:c3:65:dc:71:16:4b:1e:a4:94:5c:0b:c0:
42:5b:24:10:0b:ce:98:b0:a9:06:a0:9f:d0:25:9a:
ce:8d:f8:09:3a:0f:62:d8:5e:38:3b:f9:73:09:70:
71:d1:d1:a9:01:e4:b3:97:56:f0:98:fc:df:91:d8:
1e:7b:59:7c:00:0c:20:16:d9:a5:db:28:83:1b:c0:
97:20:c6:52:0d:c3:a8:74:40:a2:7c:82:2d:71:06:
01:0a:93:ab:17:70:e3:07:3a:7f:3b:ad:31:b0:5e:
34:a3:94:ce:c9:10:04:a3:77:f1:4f:74:b6:42:1c:
0b:5b:17:9f:64:9a:ca:75:e2:21:54:4f:6b:88:cf:
6d:af:09:b0:4d:d9:aa:1b:2f:47:02:cd:71:c5:6c:
86:5f:3b:10:c6:f9:09:1e:45:7c:c5:88:4d:96:d3:
85:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:1A:89:5E:72:96:D0:DF:2C:43:CF:00:94:4A:5E:09:05:91:77:BA
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1AD79D86CBEB11EF8597104F762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.84.184.0/22
Signature Algorithm: sha256WithRSAEncryption
84:10:4c:e9:1d:fc:16:0f:a5:ff:55:f0:e5:16:99:24:6e:e0:
ed:cc:14:e6:7c:db:6b:38:00:54:73:97:60:33:e9:13:f3:0d:
86:ff:f9:30:48:30:38:0c:cb:5f:9d:d1:10:ed:9a:6f:63:1c:
2d:d4:b4:96:79:a7:b1:f5:cf:ad:46:28:96:b1:74:0e:40:9c:
ea:ba:ff:97:34:f1:2d:62:fe:0f:5a:11:3a:07:55:0f:34:2c:
d7:0a:51:aa:4a:b5:8a:f6:af:39:ce:4d:e4:77:b3:13:25:a5:
ac:9d:6b:6c:2f:bc:2e:ed:b4:a1:2f:57:e3:90:a0:3e:fd:ef:
c3:5f:14:1b:52:da:7f:5e:77:bd:cf:b8:40:9d:fa:91:db:84:
ad:08:26:5a:ab:98:49:4c:eb:8e:fa:44:c5:9c:4a:72:4b:15:
c7:c9:b9:e8:d9:69:33:77:ca:1d:09:4a:5a:e9:19:32:fb:45:
d6:8d:99:b5:60:70:d5:a1:24:20:0a:8d:64:7d:99:9f:0f:33:
9e:76:82:6f:cf:32:ff:eb:87:3d:11:8b:d0:5f:00:0d:30:87:
37:ed:ab:56:d0:c7:09:2d:5d:82:12:d2:17:d5:99:ca:28:28:
d7:64:76:66:3e:9f:52:ae:b2:27:72:a1:ac:57:e9:c7:e2:ef:
58:df:1d:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 11:48:12 2025 by rpki-client