Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/409EEF06DA5F11EF9A4283BA762E951A.roa
File: 409EEF06DA5F11EF9A4283BA762E951A.roa (raw, json)
Hash identifier: +6dyLMCO/F1XIfkXntxGp66pjjsgF7lC5Dbg9pn9Qhw=
Subject key identifier: 17:A1:E2:1E:34:55:45:71:7F:3E:2F:E0:66:A2:8C:38:0D:29:F3:58
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 014827
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/409EEF06DA5F11EF9A4283BA762E951A.roa
Signing time: Fri 24 Jan 2025 14:26:51 +0000
ROA not before: Fri 24 Jan 2025 14:26:48 +0000
ROA not after: Wed 05 Mar 2025 14:26:48 +0000
asID: 48031
IP address blocks: 154.222.251.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 84007 (0x14827)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 24 14:26:48 2025 GMT
Not After : Mar 5 14:26:48 2025 GMT
Subject: CN=6793a32b-ffb7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:7b:d3:50:48:0f:2b:5b:51:b5:a3:2c:2a:02:
2d:62:cf:af:17:79:27:aa:e2:46:46:32:12:27:23:
71:36:7a:e4:a1:04:e7:7d:a4:0a:68:59:c7:c6:13:
9c:04:1b:67:6b:9c:a8:29:20:fb:54:4a:41:7d:0f:
af:00:58:7a:39:5d:f3:9b:86:8b:d6:b8:3c:db:bd:
b7:d0:3e:a7:8b:fa:e1:f2:ba:54:06:a9:01:8a:68:
ac:fd:1c:8a:87:a6:48:c7:5c:92:56:3e:bd:40:85:
a3:6a:e3:e3:77:0b:07:fa:04:49:0e:59:d6:e3:f7:
85:cb:55:58:15:6c:0a:39:e2:84:8d:b8:28:63:6c:
d0:8b:38:29:10:9d:75:45:6a:08:85:c6:da:f3:1c:
2d:b7:23:e9:22:3b:24:5d:11:bd:49:71:16:b8:93:
6c:ab:8e:78:ed:15:16:62:86:d0:d9:da:bb:20:5b:
a0:ab:86:08:2d:74:77:cc:dc:b2:44:f3:59:19:f7:
32:e4:0d:7a:c9:d4:80:53:ad:2b:dd:e8:63:c2:bd:
fe:7c:5d:43:f1:dc:57:4c:c0:00:e3:88:3d:7d:6e:
70:f2:f2:0e:4d:95:71:28:b1:f2:4d:36:42:77:96:
51:ab:08:f3:f3:38:07:37:48:22:c5:cb:02:b6:da:
28:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:A1:E2:1E:34:55:45:71:7F:3E:2F:E0:66:A2:8C:38:0D:29:F3:58
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/409EEF06DA5F11EF9A4283BA762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.222.251.0/24
Signature Algorithm: sha256WithRSAEncryption
04:fa:e9:ed:dd:bf:8c:72:08:6e:6f:5e:76:87:99:11:01:6c:
a7:61:56:16:71:36:df:5a:b6:07:9e:fb:22:35:e5:6a:99:bf:
51:ce:1c:b4:25:d1:92:b8:4f:2b:6c:2f:64:e3:20:96:24:48:
bb:c3:79:64:d7:3b:9d:a3:e0:e6:66:db:1f:28:71:da:57:63:
c3:bf:4c:77:5a:6c:f3:48:01:96:28:3b:52:6d:77:02:b5:f7:
47:35:8f:61:fd:52:d3:a2:c0:8f:dd:ed:a6:d0:6c:19:39:7d:
0e:47:dc:25:a4:1c:5d:fc:3b:51:2b:fc:84:74:29:1a:c6:e4:
3e:1e:d3:93:d5:03:88:c8:8a:60:4e:90:9a:7f:d3:27:41:ad:
0c:d0:ae:03:e5:19:9b:ae:12:d2:ab:ab:c0:96:20:56:4a:05:
1b:58:39:18:ac:c7:35:9e:17:cf:7d:75:65:4a:a3:41:57:bb:
a5:3b:06:61:74:9f:2b:28:ac:88:44:d8:ff:ed:1a:14:5d:bc:
cd:3c:51:0c:d7:93:c4:ae:09:7b:c0:90:b0:f9:91:a7:b4:ea:
62:a3:10:db:c8:13:35:b2:75:bd:7c:f5:71:d0:59:86:e8:7e:
9d:06:f1:17:09:5d:ce:0c:cb:56:87:62:7c:31:57:c3:a1:a2:
ee:a0:66:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 02:14:55 2025 by rpki-client