Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1DE64754D98611EFBA86C881762E951A.roa
File: 1DE64754D98611EFBA86C881762E951A.roa (raw, json)
Hash identifier: jIZCD1JNkjSUgdobv3Fs9RnfoIGxML866VFVXk0Om2k=
Subject key identifier: ED:22:8E:5E:24:8F:2D:1D:6B:20:A3:38:4D:9C:E5:1B:43:4A:D4:39
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 014222
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1DE64754D98611EFBA86C881762E951A.roa
Signing time: Thu 23 Jan 2025 12:32:32 +0000
ROA not before: Thu 23 Jan 2025 12:32:29 +0000
ROA not after: Fri 28 Feb 2025 12:32:29 +0000
asID: 62240
IP address blocks: 154.196.17.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 82466 (0x14222)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 23 12:32:29 2025 GMT
Not After : Feb 28 12:32:29 2025 GMT
Subject: CN=679236e0-5e2e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:3e:8f:67:e8:a9:60:80:cc:14:93:3d:e7:fc:
b4:d7:1b:02:ff:f1:85:d0:29:8d:06:20:d4:af:b9:
00:cc:cf:18:ee:c6:41:8a:85:94:39:53:52:9f:f3:
c8:e0:54:79:7a:a3:ff:e5:15:6a:47:4e:fa:1c:eb:
a2:52:28:ca:87:ef:97:35:cd:c6:2e:e7:0a:6c:19:
8a:f2:22:13:99:d9:a3:af:20:02:56:fe:dc:9c:83:
b8:c7:5d:46:82:89:a2:e7:f3:66:d0:6d:ac:55:62:
88:c2:3c:4c:55:49:bc:80:29:26:8c:fa:5d:cb:a6:
63:82:e8:93:08:1b:10:93:b2:67:24:25:78:1a:1a:
06:f1:ec:1d:6d:0d:38:7e:d0:15:57:b6:44:fb:83:
97:3c:59:d1:fe:c2:9a:35:87:b8:41:71:56:bc:5e:
ba:58:b1:4d:00:fd:b3:ad:4f:fb:22:c6:65:90:c3:
37:c9:c3:5a:20:d6:af:a9:3d:8b:73:e7:e3:6a:c1:
37:6b:65:ad:10:63:e1:23:8d:c2:15:07:f4:62:c6:
aa:88:d4:f0:54:f4:9f:f9:d4:07:0d:ea:46:38:eb:
e7:42:8c:38:22:c0:85:d3:27:8d:51:a1:2a:c3:9e:
3b:9b:4f:c4:36:32:a0:e5:1e:ac:75:06:af:81:7a:
18:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:22:8E:5E:24:8F:2D:1D:6B:20:A3:38:4D:9C:E5:1B:43:4A:D4:39
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1DE64754D98611EFBA86C881762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.196.17.0/24
Signature Algorithm: sha256WithRSAEncryption
c5:87:bc:8f:de:c3:d0:fa:b5:59:ad:b5:20:b5:12:d1:bf:bf:
53:a5:8d:78:64:0e:5a:5f:50:96:12:00:da:a0:f5:88:78:77:
c3:0e:67:d3:de:ea:5b:5a:6a:d4:07:0b:48:5f:0e:7f:30:6d:
98:09:19:7c:35:ef:bc:c1:e5:3b:c9:e7:07:18:45:02:2b:79:
05:c4:c6:34:82:ab:9f:16:97:52:9e:51:3f:04:e7:3e:60:ed:
7a:83:bc:02:bb:cb:98:6a:5f:ea:3f:6f:f5:85:41:df:68:3e:
5b:0d:a9:84:9e:23:6f:21:3a:f0:86:3a:f8:d2:74:85:f8:d1:
6c:1a:44:f4:e9:35:86:44:a7:97:65:f6:28:d0:8a:b1:05:bc:
77:f0:4d:9e:9d:00:61:75:57:24:ed:43:d3:3a:f8:c5:c2:18:
31:ab:de:af:b5:a4:91:a1:2e:8f:f2:b0:9a:05:1b:20:f6:7e:
db:bd:64:ea:39:ae:f2:1d:0e:6f:cd:20:49:37:3a:90:ec:b6:
d7:8b:c7:90:8b:2f:a0:1c:9c:49:4c:4d:d6:ce:d1:e3:73:da:
4b:1d:84:7d:2a:67:85:2d:74:4b:60:0b:b0:2e:6d:0e:e3:62:
6b:62:76:ff:8c:13:b5:8a:1f:bc:df:cb:67:4d:66:58:d9:3f:
d5:e3:6d:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 12:02:47 2025 by rpki-client