Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/229B2F4ADA0C11EFAA14778C762E951A.roa
File: 229B2F4ADA0C11EFAA14778C762E951A.roa (raw, json)
Hash identifier: aJPbLP1W2frVKTW/GjvlMSXO4foX4NP5GMCr6MuCY+w=
Subject key identifier: B7:A5:E1:9F:B4:9E:E3:70:39:C8:FD:27:93:24:17:24:BD:B7:39:78
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0143C8
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/229B2F4ADA0C11EFAA14778C762E951A.roa
Signing time: Fri 24 Jan 2025 04:31:53 +0000
ROA not before: Fri 24 Jan 2025 04:31:49 +0000
ROA not after: Sat 01 Mar 2025 04:31:49 +0000
asID: 44559
IP address blocks: 154.81.43.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 82888 (0x143c8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 24 04:31:49 2025 GMT
Not After : Mar 1 04:31:49 2025 GMT
Subject: CN=679317b9-51a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:10:c5:87:a6:cb:e2:ee:27:48:c9:c3:90:b9:
23:e0:5d:59:87:4a:6f:b6:af:64:02:14:7d:fd:ec:
81:81:6c:82:08:af:3f:93:8d:08:96:45:3d:6c:80:
e1:6b:13:73:cf:da:09:3f:55:ac:84:cf:fd:f3:f3:
2f:ba:d0:e0:b8:19:16:ab:65:03:35:2f:44:9a:3a:
1c:8f:5d:21:c6:fe:99:34:4f:f8:70:69:a6:13:81:
5e:bb:77:a7:56:88:30:ce:60:51:cf:61:1c:d6:90:
50:ad:1d:80:c0:f8:9b:bb:8a:52:15:db:a5:5e:4e:
19:bf:d9:de:0b:01:09:23:42:29:d4:c6:49:35:f0:
6c:c7:1f:1d:52:88:69:7c:df:3f:13:77:05:19:b2:
63:51:10:60:e6:03:9a:c6:3b:ef:18:da:f9:bb:93:
f4:6b:d9:75:35:0c:31:8e:a6:33:cb:41:f3:43:70:
0e:82:ff:4b:18:3c:e4:bb:f8:a2:ae:fb:1c:9b:bd:
0d:12:26:54:73:0c:51:58:52:2a:37:25:88:6f:65:
e9:9b:7b:1a:d9:39:8c:01:7c:7a:4c:e7:a6:d8:0c:
4b:68:7f:ad:ab:db:97:0b:53:85:00:ab:d5:cf:c2:
43:50:e0:60:e3:a4:33:6c:92:85:bd:b4:de:ec:58:
c0:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:A5:E1:9F:B4:9E:E3:70:39:C8:FD:27:93:24:17:24:BD:B7:39:78
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/229B2F4ADA0C11EFAA14778C762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.81.43.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:26:29:d9:9d:0f:df:7e:83:46:58:a8:cd:54:8b:05:56:7a:
22:dc:c6:94:92:a8:81:67:46:f7:ef:1c:08:6f:a1:e5:b8:53:
59:e9:fd:8f:ae:6c:39:65:96:44:d2:c9:37:20:69:8c:c6:b4:
89:7d:43:9b:37:8e:3d:28:d3:94:e7:6b:a4:6f:fa:ed:b6:a2:
2f:46:1c:5e:93:ba:5e:49:13:bd:30:61:22:7b:a6:47:27:c5:
66:59:55:28:ed:70:2d:40:18:b7:a5:1d:a3:2b:9e:5b:6a:54:
46:30:9d:24:0b:98:a2:c7:d2:fd:cc:e5:52:84:1d:db:b5:dd:
5a:8f:f1:51:d9:8f:c2:c0:00:f3:d8:ba:00:69:96:92:97:09:
25:19:fd:dd:9c:26:c4:67:e9:68:10:e2:ee:06:ff:46:4d:d0:
7d:f1:89:8a:71:04:63:a7:62:db:6c:78:b3:28:00:21:bd:22:
bc:ae:5a:6f:d3:e5:ca:5d:e3:c4:e1:16:81:72:00:3f:33:a8:
f3:06:1a:a1:d1:cd:ad:68:61:ee:96:4e:8a:6e:a7:d2:b5:21:
19:74:b0:ae:d2:6a:85:27:3c:90:72:64:7c:20:0a:10:82:c7:
f4:ab:e0:f9:a4:45:8f:e0:b7:5d:66:bd:9b:70:c1:42:17:2d:
32:7f:d6:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 15:48:49 2025 by rpki-client