Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2318A48CD8B511EFBF88CC82762E951A.roa
File: 2318A48CD8B511EFBF88CC82762E951A.roa (raw, json)
Hash identifier: hmcxz0XDdREWpB8lnAFXSo7GuOZ9ed6CB1TZ+rGGcpA=
Subject key identifier: 80:EC:FD:25:C5:8F:77:FC:4F:72:EF:6B:DA:B7:2C:3D:AD:08:88:08
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 013F08
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2318A48CD8B511EFBF88CC82762E951A.roa
Signing time: Wed 22 Jan 2025 11:36:37 +0000
ROA not before: Wed 22 Jan 2025 11:36:19 +0000
ROA not after: Sat 08 Feb 2025 11:36:19 +0000
asID: 18229
IP address blocks: 154.210.199.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 81672 (0x13f08)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 22 11:36:19 2025 GMT
Not After : Feb 8 11:36:19 2025 GMT
Subject: CN=6790d844-d059
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:f0:5a:1a:09:8e:ef:e1:9a:f1:ca:58:a2:a6:
d7:d0:91:ad:13:43:3f:c8:25:bc:4a:8d:95:70:4a:
57:fb:85:90:6e:14:86:7f:7b:76:2d:af:58:3f:7e:
74:c8:1d:58:be:4b:3c:d6:04:0f:36:a0:63:7d:f1:
e0:61:d1:98:ae:8f:fb:98:cb:20:82:a8:72:14:90:
03:26:3d:54:f5:a7:85:76:1d:5a:c5:96:f2:13:65:
8a:3c:af:17:e0:42:bb:39:0b:d1:34:8d:e5:b7:ad:
86:ff:4d:35:dc:b0:87:4c:0b:e8:f1:d2:5c:74:ce:
60:49:b9:16:f8:73:8b:4a:99:c4:24:5e:35:82:10:
f0:cd:ab:8a:eb:1e:c4:63:15:9b:4a:ea:96:8d:36:
1d:6a:ea:b3:ab:ba:a9:d8:6b:3b:38:24:94:66:9e:
01:61:de:cc:73:85:74:16:16:62:26:49:88:46:67:
1e:05:66:2a:4c:36:dd:09:44:f3:92:b1:cf:47:80:
47:a3:94:ee:85:af:74:40:25:aa:fd:5e:c4:29:b5:
8c:e7:ca:e2:e0:c6:93:f6:0f:35:a6:59:11:0e:cb:
78:cf:75:20:f4:f1:66:02:7f:4a:0b:41:14:14:99:
88:d0:6c:c0:7e:05:a6:51:df:3b:6a:4c:32:06:b8:
18:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:EC:FD:25:C5:8F:77:FC:4F:72:EF:6B:DA:B7:2C:3D:AD:08:88:08
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2318A48CD8B511EFBF88CC82762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.210.199.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:45:90:5c:2a:25:c9:5c:c9:63:3f:7c:a3:1e:98:22:b6:c4:
df:5a:b1:f9:17:7e:7d:b7:6e:b7:ef:b0:4e:ba:51:65:4d:4a:
66:5b:29:f9:52:91:b3:47:ef:e3:d3:a2:54:a1:34:41:cd:ff:
95:b1:29:4e:58:26:9c:61:fe:10:d5:db:3c:32:7d:9f:b7:f3:
d8:59:38:13:b2:7d:ee:b9:7a:f6:6e:ea:e1:79:3a:90:92:24:
a2:a6:d7:f0:73:e5:7a:f7:60:52:52:85:69:1c:ab:5d:e4:29:
6c:33:65:49:63:3a:1d:ee:6f:3a:14:fe:fe:9d:05:4f:24:2d:
a5:6a:89:06:4c:3a:10:f9:63:af:5d:b7:6e:90:9f:33:01:c6:
c3:08:c8:78:9e:ef:64:b2:e8:25:ac:f9:06:cc:65:bf:d1:23:
ba:35:14:7b:7b:19:05:36:34:d5:10:89:71:87:4c:7c:57:8e:
30:8f:d7:55:7f:e6:9b:13:fe:79:74:b0:fc:35:99:c3:1d:9d:
ff:9f:1e:9e:70:e3:a2:61:7c:04:57:25:92:1f:2f:d7:b3:39:
15:6b:ec:6a:51:ff:49:86:51:4b:41:dd:54:9a:7d:3d:59:e2:
c7:b1:b1:3c:1a:a0:94:72:ad:ba:46:a9:ca:97:d5:a2:ee:b4:
0a:ff:17:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 16:46:04 2025 by rpki-client