Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/31FE5720DD7011EFBB7A0C71762E951A.roa
File: 31FE5720DD7011EFBB7A0C71762E951A.roa (raw, json)
Hash identifier: YrjHvfXfYMVmlYxYAEuepAyEt2E+2ZFsPTBWRRXoRzI=
Subject key identifier: F8:44:E6:00:F9:F7:69:77:DE:7B:18:F9:86:69:CB:0F:E8:B1:51:9C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 014CFE
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/31FE5720DD7011EFBB7A0C71762E951A.roa
Signing time: Tue 28 Jan 2025 12:05:42 +0000
ROA not before: Tue 28 Jan 2025 12:05:38 +0000
ROA not after: Wed 12 Feb 2025 12:05:38 +0000
asID: 5065
IP address blocks: 154.94.32.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85246 (0x14cfe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 28 12:05:38 2025 GMT
Not After : Feb 12 12:05:38 2025 GMT
Subject: CN=6798c816-08ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:c1:a0:d8:c6:83:87:93:cd:62:dd:36:96:1d:
f0:1a:54:7c:e4:ce:2e:5c:70:a9:71:73:86:41:0d:
51:cd:9e:bc:d5:8c:d1:a5:ce:1e:17:19:99:4d:0e:
4e:3e:6e:f3:47:72:5e:81:ef:df:54:10:14:b3:72:
cd:7e:35:1b:a3:ad:b9:7e:7b:97:ce:dd:ac:84:bc:
f5:43:7f:2c:ec:29:c2:0c:9a:33:db:51:c7:02:a1:
1c:47:ec:27:65:b2:98:09:70:4e:b0:cd:e3:5f:32:
92:63:1c:43:62:5a:78:44:41:53:68:ed:8c:19:2b:
12:38:d9:4c:ce:c0:db:8b:65:0f:39:ac:b0:d0:a6:
0b:e0:eb:54:99:2e:e8:b2:f5:d2:c8:19:77:7c:8c:
6c:29:1e:a8:e1:b3:e9:f5:41:11:62:19:27:7e:ca:
15:41:50:8f:e7:34:79:85:4d:2c:17:5c:7f:cd:60:
2f:96:5e:97:d7:93:c8:5a:03:54:0e:72:dd:7b:fa:
5d:a5:b0:c5:1c:48:b1:de:7a:0b:f3:20:e3:55:84:
93:a7:90:17:f8:f7:d3:b1:d6:d3:32:c6:88:7d:6b:
52:41:9c:c4:c5:ec:b5:7c:43:d7:5e:47:4b:66:d7:
92:0d:7e:f1:ff:09:10:40:91:ee:6b:11:46:92:06:
3f:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:44:E6:00:F9:F7:69:77:DE:7B:18:F9:86:69:CB:0F:E8:B1:51:9C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/31FE5720DD7011EFBB7A0C71762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.32.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:23:06:4c:c6:0a:ce:51:a9:63:a1:79:5d:b2:8a:23:5c:5a:
0f:80:99:f3:76:e8:14:0d:91:67:8e:c6:b6:7b:11:fa:e8:bb:
24:58:d7:ce:09:a4:30:a4:2d:95:e6:42:b6:03:6c:41:ea:c8:
35:f9:e1:df:f2:91:88:75:9d:ba:1e:0d:60:12:86:e8:5f:79:
67:f8:6b:ba:20:b8:73:5a:0c:83:1e:cb:03:0d:30:31:02:a4:
7c:84:2c:89:9f:84:b6:5f:03:06:be:d1:6c:66:2f:6a:21:6a:
cb:f3:22:57:84:68:52:e9:ee:c2:83:2b:f5:9f:b7:18:f6:78:
25:97:b6:19:46:a9:15:16:34:60:27:07:36:02:82:86:c0:5a:
5c:3a:29:f5:be:b4:5c:74:6a:1e:8b:51:3d:28:b0:fe:f4:7a:
57:2b:bf:8c:29:6f:57:5c:a6:04:27:11:9a:69:ca:14:c6:b8:
76:32:66:99:a2:38:ef:6a:a8:d2:6a:7c:e7:a3:fb:ef:3f:c5:
ee:64:69:73:b7:a7:87:37:14:15:d0:b8:97:9d:c3:fa:82:b2:
4e:1b:cf:02:62:30:af:b4:d2:f0:e8:f7:33:03:17:97:be:74:
f8:00:db:fc:1a:1c:ed:3b:c6:05:2d:26:33:7d:84:bb:1e:67:
ff:4b:36:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 14:27:22 2025 by rpki-client