Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2EDF78EAD4FF11EF885EA2A4762E951A.roa
File: 2EDF78EAD4FF11EF885EA2A4762E951A.roa (raw, json)
Hash identifier: Btn6UprHsm5n5w0PktwLoyWuAODti0QxbtYU0Aj342U=
Subject key identifier: 2A:6F:63:F9:1A:6E:CC:80:12:E1:32:56:EF:F3:BD:4B:82:63:CD:EA
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 013D1B
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2EDF78EAD4FF11EF885EA2A4762E951A.roa
Signing time: Fri 17 Jan 2025 18:16:34 +0000
ROA not before: Fri 17 Jan 2025 18:16:30 +0000
ROA not after: Fri 31 Jan 2025 18:16:30 +0000
asID: 39600
IP address blocks: 154.206.120.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 81179 (0x13d1b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 17 18:16:30 2025 GMT
Not After : Jan 31 18:16:30 2025 GMT
Subject: CN=678a9e82-5f39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:cf:ec:10:4f:93:64:39:81:b0:41:a9:a5:be:
75:1e:4c:97:f5:69:cc:7f:74:74:31:ec:d4:da:3d:
49:67:d9:2e:55:a4:5a:46:90:5b:82:26:c7:4b:3c:
09:e7:4e:80:a5:b2:5f:1e:b4:b8:02:ad:5d:51:19:
df:39:b4:34:e3:b2:f1:61:57:7a:6b:7e:2b:be:b1:
9b:4c:45:b6:37:82:7e:16:7c:1e:f7:c5:ca:cb:de:
9b:b5:ab:2d:1f:d0:54:80:7b:63:86:3a:0f:21:0b:
bd:6b:1d:01:23:77:9c:1a:4b:69:f2:c7:49:af:a0:
27:d8:e7:66:e2:7e:bc:a0:34:2b:ca:80:2a:8b:2e:
08:b9:36:58:58:3d:79:17:99:c2:82:82:b9:56:d2:
a4:ef:9f:6c:ac:8c:6c:28:8f:60:9e:7b:ab:1b:ac:
78:85:55:99:33:b8:4e:ec:19:6c:e2:ab:f7:a4:d4:
bf:69:bb:b0:bc:f0:c0:d3:1a:a5:7d:16:1a:51:ad:
05:16:7a:98:60:2a:36:01:cd:b8:09:95:8d:18:f4:
2b:87:7c:0b:4b:31:fe:63:16:7d:36:67:b3:14:03:
3c:a8:8e:14:20:02:6e:fe:d4:a1:01:11:a8:15:a9:
66:ea:bd:49:28:e0:b9:5e:c1:df:e9:78:74:95:43:
fa:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:6F:63:F9:1A:6E:CC:80:12:E1:32:56:EF:F3:BD:4B:82:63:CD:EA
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2EDF78EAD4FF11EF885EA2A4762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.120.0/21
Signature Algorithm: sha256WithRSAEncryption
d7:cf:6b:ab:80:00:98:0b:cd:84:9f:b7:6d:81:ce:4a:65:52:
cc:bd:1c:c4:02:c3:63:2a:c9:d8:ff:2b:e4:91:0e:cb:5e:8b:
99:7a:a2:5e:3a:80:9f:16:e8:bc:e9:8b:6d:6e:c7:6c:ed:9d:
3c:84:27:25:a3:03:ff:33:6a:79:29:25:84:98:23:73:3d:50:
3c:95:a1:7f:f8:4e:14:e0:ab:94:db:53:b9:da:b5:07:aa:73:
f8:2c:07:24:93:7a:d4:f4:63:27:f7:2d:6b:2b:2c:19:1d:7d:
af:be:46:c2:12:8f:3c:7c:15:9d:34:bc:e7:ca:6c:48:cf:80:
b1:65:1d:86:ec:d6:02:cb:4d:4b:cb:f2:36:ee:0a:40:7f:79:
74:c2:29:06:e1:7e:46:31:a1:a1:91:93:12:a5:b8:01:49:31:
23:f7:e6:ba:ad:ec:1f:45:4f:99:84:a6:63:e4:ad:ab:9e:42:
ea:45:19:57:c4:d7:b6:27:01:9e:f7:8d:a3:8d:26:71:7d:1a:
3d:e2:40:9e:73:05:a0:22:39:89:f9:5f:7c:9a:ae:c1:cd:97:
f6:2b:c7:b7:e1:75:05:aa:18:91:31:6d:95:6f:5c:a1:3f:1e:
0a:d6:c6:27:a0:3c:22:be:e3:87:91:16:6d:55:7f:ac:32:33:
37:19:b8:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 02:11:13 2025 by rpki-client