Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1DC464EAD95E11EF9A0E0573762E951A.roa
File: 1DC464EAD95E11EF9A0E0573762E951A.roa (raw, json)
Hash identifier: cR+rE7CZMZAOBfXkUfbfAHUnjbvgTC//Ud6f1KdBaFo=
Subject key identifier: DD:CE:8F:A0:D9:B5:01:37:EC:22:4A:63:E1:34:2E:82:E9:D6:DE:FE
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 014053
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1DC464EAD95E11EF9A0E0573762E951A.roa
Signing time: Thu 23 Jan 2025 07:46:12 +0000
ROA not before: Thu 23 Jan 2025 07:46:09 +0000
ROA not after: Sat 08 Feb 2025 07:46:09 +0000
asID: 18229
IP address blocks: 154.210.170.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 82003 (0x14053)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 23 07:46:09 2025 GMT
Not After : Feb 8 07:46:09 2025 GMT
Subject: CN=6791f3c4-28b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:4b:11:de:42:52:17:69:91:7e:b6:37:b8:ec:
32:a4:2e:0a:93:eb:2b:cf:a8:6f:ae:e9:af:e2:bc:
c4:c4:1a:0a:36:fc:c2:18:d6:5f:f7:cf:58:9a:64:
ed:83:4a:ec:ea:18:f9:02:a7:ab:f3:8c:87:f6:5d:
92:cd:fc:b9:88:5a:4f:89:d4:ed:43:a1:db:d8:c7:
62:dc:12:95:04:c0:d1:58:ef:2c:7d:be:4e:cc:ba:
69:a1:d1:98:25:f5:90:8c:48:2c:c4:ed:a8:ac:a1:
85:64:da:b3:56:30:4e:b6:a8:2e:c0:a2:7a:f8:42:
e5:a2:3c:9c:1e:5e:1a:64:b9:d2:de:0e:ae:40:c5:
2a:03:89:19:f5:a9:35:28:20:39:4f:16:e3:83:99:
5c:2d:9b:c4:c8:24:d0:20:4b:96:29:34:93:f3:61:
4f:c7:82:fb:8f:f7:3b:17:62:05:b4:62:27:5f:6a:
d7:30:37:22:d0:73:46:93:66:20:bf:cf:55:bc:08:
77:b2:21:cb:05:fe:6c:ba:e1:9e:7b:25:10:8c:71:
d0:f0:8b:d3:61:ac:7c:de:18:d1:29:9b:02:92:dc:
3c:45:d2:8d:61:62:dc:fb:2d:5a:02:c1:51:f3:6f:
c9:af:80:01:cb:c3:cb:b4:15:65:f0:de:29:69:81:
5b:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:CE:8F:A0:D9:B5:01:37:EC:22:4A:63:E1:34:2E:82:E9:D6:DE:FE
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1DC464EAD95E11EF9A0E0573762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.210.170.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:48:50:da:76:34:5d:49:04:b1:d8:bf:29:05:b1:f0:9a:9b:
6b:8a:3f:9d:c2:1a:af:8a:45:c9:81:12:97:87:2b:04:35:ac:
3b:58:dc:ef:5a:f3:2e:49:c3:7c:b9:14:05:6a:ed:a3:80:e9:
8e:25:d6:89:a9:76:ed:2f:78:46:e8:eb:fc:05:9f:43:11:a3:
09:4f:73:96:9d:96:82:cd:33:dd:4f:4e:bd:c9:35:ed:30:53:
0f:b9:3c:28:ce:db:1f:db:54:b4:7e:d9:9d:30:90:1d:16:16:
2f:3a:b6:b6:fc:ee:d9:ae:e5:5e:f9:6d:f2:51:4d:d9:6f:08:
8e:df:42:13:e7:e3:39:57:7b:4a:c2:d0:4d:26:e1:b6:48:17:
00:93:30:bb:a8:09:75:10:25:cf:56:56:a6:cb:37:5b:79:e9:
a9:8b:bf:19:06:bc:54:90:3e:20:50:94:38:24:9e:0b:ba:d1:
11:2f:b8:b9:ca:aa:b5:32:f7:f1:47:21:cf:af:9a:f3:54:52:
0c:c7:0e:02:bc:86:8e:ec:f5:ef:66:8e:37:65:a3:3d:3b:c1:
2c:25:72:59:13:9e:29:e2:9e:06:65:25:54:51:37:99:f9:b6:
cb:4b:82:6d:65:54:ef:e6:7b:d8:05:01:04:8c:5a:7b:eb:6b:
41:87:31:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 16:42:34 2025 by rpki-client