Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/397C61B8D8C011EF946BB54B762E951A.roa
File: 397C61B8D8C011EF946BB54B762E951A.roa (raw, json)
Hash identifier: 7lIZ1OkQTK3ylcT9VunqXPF1jpPcNQRBQz7jLFVp6uU=
Subject key identifier: 06:0A:B3:32:4F:66:FB:9D:9C:3B:E8:C0:94:F4:DD:18:5A:2B:DB:22
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 013F66
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/397C61B8D8C011EF946BB54B762E951A.roa
Signing time: Wed 22 Jan 2025 12:55:58 +0000
ROA not before: Wed 22 Jan 2025 12:55:55 +0000
ROA not after: Sat 08 Feb 2025 12:55:55 +0000
asID: 18229
IP address blocks: 154.210.148.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 81766 (0x13f66)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 22 12:55:55 2025 GMT
Not After : Feb 8 12:55:55 2025 GMT
Subject: CN=6790eade-60c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:bb:d9:fd:9a:1e:e4:c7:2c:83:61:c2:b2:1b:
01:71:ff:c5:10:14:45:cd:32:b8:cd:2b:b4:f1:6b:
8d:43:fe:7a:b4:05:9a:03:d1:ac:09:22:16:a6:5d:
94:7d:00:2a:41:89:c0:2f:fd:fc:02:1b:98:40:33:
7e:bb:ba:89:ad:2b:03:53:21:18:0c:82:da:91:1d:
71:bd:34:1e:cd:fb:12:c0:bf:8b:39:a7:5d:da:e6:
e6:03:a7:ec:01:3b:00:40:92:80:86:fd:97:61:10:
da:b4:6b:b2:9e:bb:4f:e9:46:58:e6:b4:a5:a7:07:
b5:85:c5:a8:39:34:62:c4:09:d9:23:38:11:db:a0:
42:14:1b:de:8a:f4:85:a7:52:cb:dd:2a:5b:98:65:
e4:f9:b8:06:ec:19:b0:6d:df:e3:06:50:44:61:f8:
4c:ae:6c:73:ed:84:05:18:de:09:c2:79:41:9f:a6:
a2:86:32:f6:b0:dc:a3:27:dc:71:62:b4:f2:01:45:
8e:8c:72:e5:5c:19:d1:3b:a4:d3:77:06:9f:58:16:
9b:c1:a1:7d:8c:ac:c3:91:b9:c7:9b:fd:80:c4:2e:
b1:2f:4c:30:ac:46:04:67:28:1c:d2:51:63:38:23:
1b:b6:43:ff:4d:dc:fb:7e:3b:de:85:e9:4e:32:84:
cf:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:0A:B3:32:4F:66:FB:9D:9C:3B:E8:C0:94:F4:DD:18:5A:2B:DB:22
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/397C61B8D8C011EF946BB54B762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.210.148.0/24
Signature Algorithm: sha256WithRSAEncryption
78:ff:3e:34:19:a0:6f:41:25:01:f4:96:87:78:52:9c:62:99:
b0:5a:27:02:ee:de:c0:36:a1:be:1c:25:19:66:e4:73:b2:4c:
69:2d:c0:0f:70:53:43:b7:3d:a8:20:00:77:30:6c:a6:cb:62:
a3:2f:df:a5:bb:81:81:d8:e1:f2:eb:bd:43:06:c0:1b:0d:90:
9a:9d:90:cf:9b:98:9a:57:64:06:ba:71:02:a4:5b:e3:ee:97:
aa:53:db:f0:67:ed:92:94:9c:a3:0f:8e:e1:92:08:57:c3:08:
7e:80:a9:ba:1b:9f:03:7e:fa:29:3f:6e:2e:97:7c:65:08:e2:
88:fb:24:87:77:35:24:93:8e:fe:75:fc:2e:ac:c0:72:7c:22:
94:de:78:e7:a5:83:a2:25:57:ad:6e:e3:d7:f5:d1:3c:2f:fe:
bf:5d:66:7b:71:89:d2:cb:55:41:63:a3:79:19:80:20:ee:df:
ba:f7:4d:24:d9:58:c2:9c:45:f4:b0:1a:bb:59:e4:b8:fb:dc:
88:5b:bf:20:4a:55:7a:8f:17:74:cf:c7:c1:ef:f7:86:a6:ac:
cd:d7:98:e3:7e:e6:f2:8a:ee:6a:11:2e:2a:e4:55:0a:76:48:
5a:0e:53:a4:81:d3:06:95:0b:b2:7e:3b:78:a4:21:b5:91:8a:
fb:bf:f3:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 16:42:41 2025 by rpki-client