Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3029BD2ADCC811EF84AC797C762E951A.roa
File: 3029BD2ADCC811EF84AC797C762E951A.roa (raw, json)
Hash identifier: pC/E3EIys16Z6F6JJSo7Uf8WtzVHnERs+Zrzn5tc3bk=
Subject key identifier: 29:78:82:D9:DB:4B:EC:B1:9C:BF:00:96:6B:63:01:62:5F:04:1F:C6
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 014C61
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3029BD2ADCC811EF84AC797C762E951A.roa
Signing time: Mon 27 Jan 2025 16:03:03 +0000
ROA not before: Mon 27 Jan 2025 16:02:59 +0000
ROA not after: Thu 13 Feb 2025 16:02:59 +0000
asID: 5065
IP address blocks: 154.207.176.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85089 (0x14c61)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 27 16:02:59 2025 GMT
Not After : Feb 13 16:02:59 2025 GMT
Subject: CN=6797ae37-dcfc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:38:9b:41:c9:a1:b2:07:b3:8a:e4:e4:c3:1b:
33:fb:05:97:a3:02:a4:39:23:96:95:50:5d:4f:86:
7f:3e:c6:58:a4:1e:c3:9f:90:58:38:42:62:b1:37:
5b:94:e4:54:0d:ce:26:34:14:4c:be:16:c3:8d:fa:
a5:22:11:59:ee:cb:78:5a:df:b3:ef:60:5b:bd:38:
ec:23:66:9d:09:97:aa:94:b8:91:c5:3f:13:5e:4b:
39:18:b7:6f:31:21:7f:bc:65:2e:43:92:4f:96:f2:
8a:cd:78:0a:4f:e6:13:50:c1:eb:1d:fe:92:96:e6:
c4:f8:69:28:b2:41:e6:a6:72:10:f3:36:82:9c:d0:
9f:02:07:84:f9:e2:de:4c:95:dc:49:21:e2:2f:21:
38:52:af:01:43:eb:8e:98:bb:34:f4:03:ff:26:5b:
1c:3d:f8:dc:76:be:5b:a2:ea:85:fa:9d:c8:5d:b1:
c9:a0:03:ec:03:a1:11:bd:fe:36:43:0c:ff:e5:1e:
6b:38:5f:39:dd:3e:b9:97:e3:8c:49:89:f0:65:d0:
40:90:09:bd:fe:e2:98:3a:17:d2:b9:c8:ca:5b:5d:
02:18:12:f9:45:86:f1:1a:14:f7:09:0b:7e:51:d1:
d1:77:e7:f2:29:a3:af:04:f1:a8:06:3b:dd:6a:10:
06:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:78:82:D9:DB:4B:EC:B1:9C:BF:00:96:6B:63:01:62:5F:04:1F:C6
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3029BD2ADCC811EF84AC797C762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.207.176.0/21
Signature Algorithm: sha256WithRSAEncryption
74:b2:19:dd:83:83:90:46:12:91:60:6b:a6:3e:d3:27:54:18:
e5:77:7e:06:89:33:96:48:f2:1d:75:1f:af:bc:70:ed:bf:09:
93:03:c2:b4:61:7e:15:e9:8c:ef:32:ce:27:53:13:e3:b7:3f:
71:69:7e:44:c6:a5:6e:e5:1d:83:85:f0:57:0b:eb:69:e5:bd:
0b:7b:f7:78:43:89:be:82:4f:df:9d:a3:7d:65:fc:c8:92:b3:
c6:4c:ce:51:e2:f8:bd:23:04:7a:0a:d7:89:1d:cd:ff:e9:c9:
9d:d9:ce:12:c0:37:42:bf:a3:69:c5:6d:44:a1:57:6a:25:66:
46:8a:bf:d4:8b:23:64:8f:ed:ec:6f:69:eb:e0:30:91:3e:8d:
6d:9f:7e:d7:b1:4d:4b:cf:00:b9:40:f3:38:86:7b:58:52:75:
3f:0f:b2:0a:be:61:d8:3c:5b:65:3b:89:4e:50:04:4a:a9:e2:
6c:75:a2:5c:b7:77:cf:32:05:be:5c:93:81:59:df:1a:29:45:
25:c4:3d:ae:64:e8:7a:07:4c:e6:ea:c7:68:89:d0:44:45:9d:
1e:64:9c:b3:bd:1d:9a:54:95:1f:b9:f1:90:a6:7b:67:5b:d7:
5f:4e:2f:82:e6:e9:45:a5:cc:f1:c8:e6:e1:cd:db:2c:5b:76:
35:86:36:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 11:55:24 2025 by rpki-client