Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3736FC9ADD5911EFAFC85453762E951A.roa
File: 3736FC9ADD5911EFAFC85453762E951A.roa (raw, json)
Hash identifier: 570kPr/acnSBD4DBTfuoNAtFwBVjbbfTsHIm+BKsFnI=
Subject key identifier: 57:32:03:83:B4:54:1B:3C:57:97:82:DA:A9:44:D6:24:8A:32:51:03
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 014C98
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3736FC9ADD5911EFAFC85453762E951A.roa
Signing time: Tue 28 Jan 2025 09:21:12 +0000
ROA not before: Tue 28 Jan 2025 09:21:08 +0000
ROA not after: Tue 04 Feb 2025 09:21:08 +0000
asID: 5065
IP address blocks: 154.206.33.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85144 (0x14c98)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 28 09:21:08 2025 GMT
Not After : Feb 4 09:21:08 2025 GMT
Subject: CN=6798a188-91a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:83:e0:fb:e1:cd:87:2b:a1:3c:b2:aa:23:d8:
bb:37:aa:f3:9e:ee:cf:c8:97:f8:e7:cb:d9:60:e7:
cd:65:54:15:ae:7a:23:32:46:c8:49:55:c0:35:21:
7f:78:88:7a:db:5a:3a:ea:c6:6a:1b:01:81:af:10:
5c:04:c6:f1:d9:6f:02:cd:3e:cb:e0:2c:4d:c9:e2:
12:27:65:b8:fa:4d:1c:80:33:7d:0b:74:be:6b:5e:
51:3b:fc:7e:a0:65:03:92:86:db:67:45:8f:68:ae:
73:fc:d3:0d:13:58:57:91:19:a9:08:16:e8:0c:33:
6a:67:bb:01:18:fd:3b:90:41:f3:2b:1e:c5:48:3a:
ff:0c:a8:07:f5:81:b7:90:74:a6:ba:e9:e8:b1:21:
77:14:39:34:fc:c7:95:05:a8:f8:46:18:aa:e6:47:
1e:85:68:26:75:4f:cf:1d:01:fa:b9:dc:26:34:24:
2c:ca:39:ae:c2:70:0e:37:68:e3:75:e2:d0:8e:d3:
fc:2c:6e:d7:76:06:e9:f6:ed:66:4b:33:22:cf:89:
6e:5f:c1:9e:b7:de:fb:49:e5:df:2d:63:33:26:09:
ad:9f:bf:77:ea:84:e3:26:c2:e0:5a:20:14:74:cb:
89:09:42:7d:15:5b:7e:f7:cd:8d:7d:d9:35:ac:dd:
10:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:32:03:83:B4:54:1B:3C:57:97:82:DA:A9:44:D6:24:8A:32:51:03
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3736FC9ADD5911EFAFC85453762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.33.0/24
Signature Algorithm: sha256WithRSAEncryption
c4:44:20:64:a9:2b:36:ed:76:72:7c:90:3d:c6:1a:ea:b7:ac:
c3:57:5d:1d:64:e3:e9:2e:a4:1e:4d:d3:c6:ac:55:df:c8:c4:
ff:45:f0:cf:22:2d:af:56:82:f4:c7:a7:de:f0:5a:e5:d6:f8:
e2:c7:dd:ac:10:3d:b7:08:4f:a6:c0:5d:84:22:d6:4b:c9:2d:
b6:58:01:f2:95:43:18:7b:9c:ee:ca:5f:ec:37:64:b2:80:65:
0a:4d:42:b8:8e:bf:dc:ea:98:26:aa:62:9a:a7:53:06:35:08:
a3:f0:3c:c6:7e:3e:cb:70:e3:55:f8:44:cc:5a:61:34:d5:4b:
76:c3:e6:e3:2c:af:f4:ca:7d:73:95:37:e1:59:12:d7:19:bf:
2b:2c:b7:fc:26:8b:69:ab:c5:b9:83:1a:7b:22:5b:41:1f:45:
3a:7f:0a:2e:07:a9:46:94:fa:42:a8:ed:27:13:b6:31:f1:2e:
27:54:03:bd:8c:f7:ec:91:c5:62:4b:a6:2d:b8:3b:2a:20:7c:
e2:5e:6f:78:93:b7:cf:4b:86:75:0d:ea:17:85:bc:6e:ec:32:
03:4a:ef:30:9d:32:41:a4:2a:ea:9d:4c:76:a5:99:e3:bf:48:
30:ba:a7:f8:9b:a8:90:d1:58:31:98:0a:70:73:5f:c1:7d:42:
44:d9:dd:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 11:50:39 2025 by rpki-client