Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3486E0EACAD611EF8B424E66762E951A.roa
File: 3486E0EACAD611EF8B424E66762E951A.roa (raw, json)
Hash identifier: OrRBRphpiUVk1uu8tQMyMZVXByvH84NkI/Y+n4rKeI4=
Subject key identifier: 5F:7C:B2:F5:DA:63:35:2B:89:FD:1A:25:0C:15:FB:F2:4F:A3:68:18
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 013537
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3486E0EACAD611EF8B424E66762E951A.roa
Signing time: Sat 04 Jan 2025 19:58:02 +0000
ROA not before: Sun 05 Jan 2025 19:57:59 +0000
ROA not after: Sat 08 Feb 2025 19:57:59 +0000
asID: 203020
IP address blocks: 154.217.6.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 79159 (0x13537)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 5 19:57:59 2025 GMT
Not After : Feb 8 19:57:59 2025 GMT
Subject: CN=677992ca-69e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:df:85:d2:9a:d5:25:d7:56:7b:02:d9:33:a7:
b0:0c:9f:7a:c8:49:5a:b5:46:12:89:ec:42:70:c4:
a2:51:ef:59:a5:6d:8d:43:20:25:5e:99:78:d1:e9:
87:a2:4d:6f:03:26:75:fd:20:6e:f7:51:25:9c:bf:
da:03:73:52:f3:40:fb:bb:4c:a9:29:67:98:61:ca:
75:f1:73:6d:71:30:7b:0a:a0:c0:30:40:0d:93:5e:
c4:8b:81:53:9f:2d:64:d3:f9:2a:bf:2e:9b:bc:61:
97:37:ee:4a:35:f6:90:60:81:84:d1:8c:59:bf:9f:
91:75:72:b0:af:d3:fd:e1:41:c6:c1:f0:8e:f0:6e:
69:1a:7d:33:96:55:cf:0e:01:43:2f:4b:4c:24:d8:
b3:90:34:fb:9d:87:25:6e:95:b8:94:8c:58:a5:ad:
be:79:3e:11:8a:7b:70:66:73:23:22:4f:fa:4e:6a:
35:08:df:de:59:e5:03:4c:58:b6:ce:b0:12:3c:8a:
2a:ec:24:df:11:84:f1:e4:67:61:8a:b1:41:c9:69:
34:c4:6d:e1:d3:1c:b0:81:b3:38:df:de:1f:0f:a9:
19:41:5e:71:4b:94:24:88:ed:a3:ef:55:bd:81:c3:
b0:11:cc:55:78:0a:79:30:34:ab:47:3c:b2:3e:1f:
80:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:7C:B2:F5:DA:63:35:2B:89:FD:1A:25:0C:15:FB:F2:4F:A3:68:18
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3486E0EACAD611EF8B424E66762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.217.6.0/23
Signature Algorithm: sha256WithRSAEncryption
b4:b7:70:79:40:4f:22:7c:5b:32:55:21:c0:40:67:c6:aa:43:
50:a6:d9:95:b9:74:3b:d4:77:fd:4a:95:a5:0e:3c:6c:e6:18:
95:e2:70:3e:26:df:58:82:4d:6d:69:25:23:fb:91:c2:87:f2:
25:75:91:15:63:63:aa:67:0c:99:d1:b8:de:8b:2d:0d:63:27:
b1:8f:f6:12:68:07:8b:31:20:c3:7a:c6:bf:8f:28:e2:9b:83:
3b:bc:c8:3e:79:0c:2b:0b:1f:95:b3:27:54:50:64:92:4c:dd:
ea:78:2a:65:fb:b3:02:31:1c:eb:98:3f:e7:1e:36:a5:5e:70:
ba:f9:32:e1:12:88:f0:d3:8c:bd:75:51:81:9e:04:ab:d8:0c:
c4:d5:38:27:56:5c:69:8d:8c:23:e4:a8:29:22:ba:37:88:96:
7f:30:6d:66:94:76:ad:61:0b:ff:e6:04:1f:ea:54:d6:17:9e:
cb:2a:b9:52:8d:77:71:d2:6d:55:09:9a:07:a3:4c:90:78:e6:
58:b5:a9:21:8b:0a:81:71:43:80:c6:c6:21:f5:25:1a:51:92:
9d:d6:4d:74:a1:a8:70:ff:e0:2d:e4:15:be:66:0b:cc:c8:fc:
18:60:19:f0:bd:93:1a:d6:54:b6:14:07:c9:b5:38:18:4e:bf:
5c:33:25:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 18:12:04 2025 by rpki-client