Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2BD47280DA5511EFACE11C77762E951A.roa
File: 2BD47280DA5511EFACE11C77762E951A.roa (raw, json)
Hash identifier: ouePcoaEWtPdK4tbcbA926ZIGCm1JnAQTZSDe4susTA=
Subject key identifier: 90:6E:EA:33:82:1A:9B:82:B7:B9:F6:05:81:6A:EE:3C:73:CE:FC:D3
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 014753
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2BD47280DA5511EFACE11C77762E951A.roa
Signing time: Fri 24 Jan 2025 13:14:41 +0000
ROA not before: Fri 24 Jan 2025 13:14:38 +0000
ROA not after: Wed 05 Mar 2025 13:14:38 +0000
asID: 44559
IP address blocks: 154.209.141.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 83795 (0x14753)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 24 13:14:38 2025 GMT
Not After : Mar 5 13:14:38 2025 GMT
Subject: CN=67939241-4805
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:c0:b8:e9:07:ca:04:44:6d:fe:85:da:2f:9a:
af:90:05:c9:65:51:9e:5f:e2:b4:14:c2:e6:3d:1e:
93:b9:88:43:fe:ec:2b:14:c5:cb:56:4b:14:bd:af:
16:21:a4:31:32:8b:10:52:49:78:3c:56:e3:da:1d:
a8:98:d4:55:18:89:89:18:94:4e:f6:08:40:b3:67:
2a:d5:76:6b:83:86:bf:71:64:f8:bd:c7:2c:3c:81:
5d:f4:72:4a:b6:a1:05:41:1c:94:02:c3:ce:08:c4:
20:1f:52:47:f8:ec:2f:55:9e:68:5a:55:79:8d:d2:
ea:28:2c:9b:85:dc:27:05:b1:a1:fc:82:1e:89:5a:
91:b6:71:fc:e2:4c:7e:37:02:9d:8f:07:42:2b:77:
47:c9:88:38:6f:5e:52:cb:05:7f:7e:40:de:9f:aa:
a7:f8:a0:c1:be:e0:31:1c:f0:96:be:e3:4b:48:fc:
71:97:e2:40:30:2d:5c:71:f9:c3:b4:5d:7b:0c:47:
9a:b8:fd:ad:6e:e2:99:a6:cd:73:50:17:a5:3a:b2:
23:26:3f:db:79:04:12:1e:76:be:50:86:84:82:93:
a2:a5:17:02:87:99:8a:55:fd:d0:0e:46:7c:86:70:
b9:d7:bc:9a:96:a7:ce:97:cd:75:6a:e0:ef:0e:53:
a1:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:6E:EA:33:82:1A:9B:82:B7:B9:F6:05:81:6A:EE:3C:73:CE:FC:D3
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2BD47280DA5511EFACE11C77762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.209.141.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:2d:2a:90:93:16:f0:ba:9b:4a:fd:73:b3:bb:cb:23:4d:42:
4a:83:5e:bb:1d:6a:f5:a5:2a:0e:24:d6:8b:a9:0e:f7:a3:89:
86:29:49:d9:34:ff:79:81:1b:c0:d7:cc:42:86:d5:c7:29:bb:
2e:4f:3d:0f:31:3f:c6:91:d6:e5:d2:37:60:87:5e:22:be:c2:
1c:61:ba:f2:79:2c:cc:7d:c5:9a:83:9f:70:c4:d2:2e:d2:05:
46:e3:15:cf:35:32:6d:60:dd:f6:01:81:26:e4:b2:36:4e:15:
63:b0:6e:c4:c1:24:c1:3f:02:3d:0f:bc:d1:1f:5d:bd:a6:31:
25:a4:d9:a4:34:a0:7b:7a:ee:89:6f:c5:cb:74:42:76:26:78:
d3:2b:4b:2a:11:70:e9:1d:d0:7e:c1:e1:d2:9d:39:2f:a6:f8:
07:7e:bb:f0:f9:51:39:d0:4d:2f:c0:fb:9a:28:a9:90:75:a4:
50:18:5f:86:39:3d:5c:68:82:57:d2:d0:53:97:52:44:21:8a:
03:92:14:d9:df:06:ec:cc:0a:f4:7f:75:c7:13:20:a6:47:bb:
45:df:25:82:80:4a:8f:3a:f5:5d:01:f7:2d:0e:e2:c5:75:03:
7c:4e:80:3a:b0:f5:68:1b:c8:19:1b:82:63:2d:da:61:9b:6c:
5c:a5:5d:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 10:04:58 2025 by rpki-client