Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3AF40968DA4311EF836DFD7B762E951A.roa
File: 3AF40968DA4311EF836DFD7B762E951A.roa (raw, json)
Hash identifier: UmcBdKn3VeD5ZkYcmmMYFYuVtraB4UVernbteKe9AkA=
Subject key identifier: EC:E9:F0:6D:54:0A:AA:4C:49:2A:E3:63:2A:BB:8D:F0:DB:05:D0:24
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0145E6
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3AF40968DA4311EF836DFD7B762E951A.roa
Signing time: Fri 24 Jan 2025 11:06:16 +0000
ROA not before: Fri 24 Jan 2025 11:06:12 +0000
ROA not after: Fri 28 Feb 2025 11:06:12 +0000
asID: 62240
IP address blocks: 154.196.74.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 83430 (0x145e6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 24 11:06:12 2025 GMT
Not After : Feb 28 11:06:12 2025 GMT
Subject: CN=67937428-3300
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:ad:66:6d:9d:b8:c4:91:2a:c7:d4:08:99:d8:
09:9e:90:77:88:0c:c9:97:61:aa:a0:a4:c3:3f:6a:
28:49:89:31:1e:d7:1d:0a:31:ce:6b:28:fa:3e:8f:
a5:7a:c3:44:3d:7d:b7:1a:5e:4b:50:d0:b1:82:11:
f7:94:96:a6:3d:e3:e0:3e:fd:36:0c:19:eb:c3:d1:
18:d9:a9:14:80:34:dd:85:06:b4:91:2a:9b:07:95:
56:56:34:56:a4:05:57:c2:90:bc:af:34:99:25:63:
c0:2c:58:ba:84:b9:bc:dc:00:f9:aa:cc:2d:6a:8f:
e7:5f:35:ed:24:95:b9:59:fc:9c:0b:c5:d8:ad:3f:
a9:4c:84:ba:65:db:9a:a4:cd:e2:60:4e:11:a1:5c:
04:d4:d4:a3:ea:e9:ed:7d:04:00:57:9f:fb:7a:12:
7f:6a:d3:ed:08:c5:dd:14:e8:23:4d:ce:33:3a:96:
f1:75:ac:77:60:0f:02:0a:f3:36:09:29:d1:59:3f:
90:7b:55:be:a4:12:d1:f0:77:e0:d6:1a:f0:39:7c:
56:22:47:13:d3:66:e2:94:84:2b:07:10:1c:79:31:
a6:4f:18:3a:a9:77:74:41:7e:bc:6d:a1:68:0c:21:
8d:36:d7:7d:aa:6e:59:fc:f5:fa:15:30:40:bf:0a:
8e:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:E9:F0:6D:54:0A:AA:4C:49:2A:E3:63:2A:BB:8D:F0:DB:05:D0:24
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3AF40968DA4311EF836DFD7B762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.196.74.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:6d:45:e7:8d:eb:c9:b7:b6:6b:d3:40:49:fc:34:7b:94:b0:
5e:09:95:c3:b6:ce:12:4a:c3:5e:f8:78:0e:54:3a:ed:f0:ea:
5b:b5:7a:57:86:a0:6c:f2:ca:a5:2e:14:e8:52:43:2d:7c:1b:
89:fd:a9:9d:a4:42:d8:b0:f8:50:7a:1f:80:0d:2d:2e:33:eb:
19:1f:8f:8a:95:53:4b:be:fc:28:cb:42:8f:f0:9c:b8:30:c9:
e0:45:62:e1:c0:80:32:75:8e:5d:d9:a1:9e:95:49:7b:9c:c8:
a3:1f:71:57:f9:4e:dc:fc:52:ec:49:65:80:90:7a:0d:6c:8e:
6d:79:fd:39:11:1c:0e:97:86:e2:b2:53:4f:a9:ae:d7:af:0b:
4d:9d:c9:10:71:c7:40:5e:37:a5:4e:3f:df:35:90:60:55:ee:
27:6e:1c:5a:7a:da:00:85:2d:26:e3:83:1b:de:54:f2:26:c2:
a0:d1:ea:96:d8:d3:c7:27:1f:b5:95:31:30:3a:fa:a7:87:59:
94:85:46:72:72:c6:02:de:51:c5:be:7c:e8:da:ad:31:9e:27:
2b:4c:0a:86:dd:ab:f9:79:8e:62:a8:76:a3:08:f3:c8:d5:0e:
37:4e:f0:db:f8:3a:d8:58:63:e0:aa:3f:9d:5e:63:b6:11:72:
87:b1:fe:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 09:52:12 2025 by rpki-client