Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3D566B34D8AD11EF8A8A074D762E951A.roa
File: 3D566B34D8AD11EF8A8A074D762E951A.roa (raw, json)
Hash identifier: vX8BBLM/4npvnoV/Q2L/JHb7pEuBD1btXiytEF0mbCw=
Subject key identifier: 8E:1B:87:F8:58:CA:4D:82:2F:E5:A4:53:A4:8D:38:6F:B9:65:91:3B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 013ECE
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3D566B34D8AD11EF8A8A074D762E951A.roa
Signing time: Wed 22 Jan 2025 10:40:04 +0000
ROA not before: Wed 22 Jan 2025 10:40:00 +0000
ROA not after: Sat 08 Feb 2025 10:40:00 +0000
asID: 150008
IP address blocks: 154.210.224.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 81614 (0x13ece)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 22 10:40:00 2025 GMT
Not After : Feb 8 10:40:00 2025 GMT
Subject: CN=6790cb04-4468
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:e7:30:5f:dc:2c:3e:53:e7:4e:06:96:6e:2a:
e8:4b:55:33:4c:1d:b9:85:e2:4b:0c:62:e4:fa:cc:
65:d1:54:27:cd:3a:c2:eb:a2:20:a1:85:a3:08:d2:
3a:17:2a:58:25:a3:61:d3:b8:a7:80:d2:ba:2b:1e:
5b:36:07:bf:a8:5c:08:3c:37:a2:89:e6:cc:7b:21:
61:60:a6:8a:8e:b3:2f:cb:63:f9:6b:70:f1:22:e5:
ad:28:e9:f0:4f:82:60:db:24:68:f3:5d:00:93:10:
a0:3a:b2:be:8c:0d:0c:16:af:11:4a:86:bd:ca:00:
d2:65:48:09:8c:fb:3c:f8:ce:31:b2:64:75:4a:0c:
a4:c8:5d:97:56:e3:2a:7c:92:2d:30:06:59:be:7b:
ee:68:5f:69:2e:82:18:1a:66:f5:37:88:e1:c4:a7:
4c:18:b9:d2:2e:65:14:87:66:2e:44:c5:27:38:6d:
8a:93:1f:d7:6a:5e:2a:00:b5:79:af:5a:05:e8:69:
a6:a2:5f:e8:1e:a6:e9:99:09:3d:9a:77:4a:e8:7a:
65:19:68:b3:7b:5c:26:27:ad:02:30:be:52:ea:96:
0e:4f:83:38:be:d1:0c:36:5d:37:c1:51:f5:7f:92:
92:24:ee:71:ee:20:2f:04:bb:e8:c7:60:4a:e0:fb:
1b:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:1B:87:F8:58:CA:4D:82:2F:E5:A4:53:A4:8D:38:6F:B9:65:91:3B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3D566B34D8AD11EF8A8A074D762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.210.224.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:1e:d1:c6:8b:5d:60:1d:87:06:b9:39:0a:4c:8d:a5:6e:e5:
b1:f1:8f:a5:33:2a:02:f3:42:36:15:1d:5c:de:51:70:6d:99:
f4:29:89:6e:f6:3f:3a:66:5b:aa:88:13:92:a1:fd:c0:d0:b7:
96:e7:02:92:b8:83:27:88:46:6d:d7:d2:cb:d9:f6:b9:81:fb:
bb:30:d8:08:b7:52:1a:69:3d:ce:8d:a3:df:cd:cf:eb:d7:c1:
63:9f:10:09:0c:76:3a:a4:1a:5f:50:96:c7:3a:f3:d6:b8:76:
7c:c7:78:8d:7d:22:d4:b2:38:2a:fa:35:d6:70:f4:45:f6:20:
94:f7:14:ad:a7:af:9a:bd:ff:c6:fb:0e:99:33:02:fa:ed:0b:
90:b0:90:4c:e1:ed:63:89:ee:43:5e:77:31:95:e2:13:5b:d5:
fd:83:f3:33:34:d1:56:44:de:67:ad:5e:8e:06:55:f3:ac:ba:
61:52:c0:c3:70:01:c3:b2:b6:54:fd:c4:42:44:a7:c0:64:ee:
1a:43:20:a0:cc:59:d9:d9:76:24:56:8e:c6:52:9f:09:d8:5f:
b3:8c:fd:20:57:e0:7b:46:e8:8b:a8:51:68:23:79:77:f0:2a:
ec:46:e6:a0:97:db:70:27:2a:52:39:d4:50:7e:08:a7:4a:70:
8b:39:b3:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 15:44:38 2025 by rpki-client