Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1FB838BED98411EFB9396974762E951A.roa
File: 1FB838BED98411EFB9396974762E951A.roa (raw, json)
Hash identifier: rZHJG15ECwrv6g9yxmysTo5g+XF4niISKjbOTvfeCjY=
Subject key identifier: B2:D7:6D:CF:A2:8F:63:4A:FA:74:FC:D7:A2:20:FF:0B:D7:42:63:96
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 014200
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1FB838BED98411EFB9396974762E951A.roa
Signing time: Thu 23 Jan 2025 12:18:16 +0000
ROA not before: Thu 23 Jan 2025 12:18:13 +0000
ROA not after: Fri 28 Feb 2025 12:18:13 +0000
asID: 62240
IP address blocks: 154.195.188.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 82432 (0x14200)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 23 12:18:13 2025 GMT
Not After : Feb 28 12:18:13 2025 GMT
Subject: CN=67923388-de25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:61:44:16:a8:92:52:e7:81:5d:97:99:82:d8:
dc:fa:f5:41:c0:a1:71:6b:47:dc:b3:e3:70:9b:fd:
18:0c:7f:53:d2:7f:a1:b3:cd:02:b2:ed:92:bf:b5:
c4:98:94:01:25:df:ef:77:e2:4b:af:e2:6e:84:bb:
dc:6a:b7:ae:ff:8c:ad:8a:48:88:4a:1b:6c:41:df:
6e:36:a5:a1:cc:e2:15:dd:b2:69:33:1d:35:e2:73:
9e:43:20:cd:70:04:12:01:8c:52:2e:52:b0:16:da:
68:29:5e:db:59:a8:94:d1:f2:1f:0b:8c:52:80:14:
0c:43:a3:04:80:9c:dc:95:f6:fc:51:d9:93:b5:c5:
ed:5c:77:6f:dd:1f:09:1e:af:ed:3e:bf:76:f7:90:
0d:e6:2f:a8:fc:f5:81:d7:82:82:d5:88:c3:8f:78:
2a:29:06:48:e9:5c:3e:72:96:bb:06:e6:ca:a8:b0:
21:5e:a0:32:be:38:3c:dd:92:d6:70:3c:37:f9:35:
28:7c:3c:f8:9d:5b:b1:fd:10:1f:f6:b0:b2:c9:eb:
16:42:98:e7:61:f9:9e:ad:d4:d0:2e:5f:af:7c:46:
ab:72:31:0a:00:09:64:8b:12:3a:99:63:c9:8d:44:
58:1f:f3:bf:5b:9a:f3:ea:af:b7:8c:3f:a2:40:8d:
1d:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:D7:6D:CF:A2:8F:63:4A:FA:74:FC:D7:A2:20:FF:0B:D7:42:63:96
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1FB838BED98411EFB9396974762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.195.188.0/24
Signature Algorithm: sha256WithRSAEncryption
9e:86:5b:99:f6:f8:5e:03:74:40:3f:63:b3:3a:19:aa:32:f8:
ab:be:02:eb:31:07:96:33:66:16:3b:9f:47:3e:21:3b:2c:91:
fd:0a:33:66:bd:7f:33:23:33:ee:f8:bc:3c:b7:a6:3d:6d:50:
29:82:65:13:07:2f:df:c5:94:60:55:7f:b5:70:ad:50:57:32:
a2:86:a8:03:2e:56:c2:9b:82:70:5a:c7:36:fb:77:3e:9a:1e:
06:99:86:15:e0:49:b9:20:ac:e3:e6:ff:e1:7f:d5:1c:bc:ba:
c1:c6:3e:ae:99:5a:2a:b7:c5:a7:f7:fa:dd:27:19:f6:97:62:
00:01:0f:1d:37:98:fb:54:d3:f4:72:64:6a:3f:c1:4f:4d:54:
09:b3:7f:b9:f7:29:57:d7:b2:d2:ee:55:0c:4d:0d:12:4e:d4:
8d:e7:64:75:b5:53:25:81:d2:42:1c:9e:53:d6:eb:8f:0d:6e:
31:b6:73:40:ec:98:5c:b8:97:9b:e8:94:25:d9:b3:a0:4b:5d:
16:b9:97:0a:2c:d8:f1:d1:ea:4d:e3:45:bc:7f:30:62:94:1d:
7a:e1:d1:cf:ca:5c:10:08:d5:f2:9c:67:76:38:dd:d7:45:db:
21:3e:09:d3:9b:26:b0:3e:f6:5d:02:17:30:f4:b4:3f:a5:b8:
55:bd:02:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 11:51:52 2025 by rpki-client