Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/43191F6AD96311EF859EE196762E951A.roa
File: 43191F6AD96311EF859EE196762E951A.roa (raw, json)
Hash identifier: ryTdoZ3G9F5CZ2AtPIG8jzq61GLtbHJTarYiFv2HSr8=
Subject key identifier: B0:66:35:89:5F:E2:DB:82:F7:ED:26:D6:B3:31:53:36:48:E4:3E:D3
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01407F
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/43191F6AD96311EF859EE196762E951A.roa
Signing time: Thu 23 Jan 2025 08:23:02 +0000
ROA not before: Thu 23 Jan 2025 08:22:59 +0000
ROA not after: Sat 08 Feb 2025 08:22:59 +0000
asID: 18229
IP address blocks: 154.210.190.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 82047 (0x1407f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 23 08:22:59 2025 GMT
Not After : Feb 8 08:22:59 2025 GMT
Subject: CN=6791fc66-c151
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:33:1c:fd:66:7a:98:cc:30:e6:4c:4f:e2:ed:
2d:28:3f:a1:dd:48:75:a2:df:ef:e7:a3:c5:6f:53:
87:e5:05:93:9e:92:8f:68:c1:f8:cc:77:41:97:ce:
cd:48:a1:58:c0:88:e4:8d:ae:77:2b:e3:f4:18:bf:
3a:a5:d6:98:2a:bd:a1:41:45:b8:42:2f:8b:1c:11:
51:a1:df:9f:32:9f:b7:e4:3a:f0:03:f6:df:99:6c:
99:b0:bc:9b:e8:95:5c:83:fb:c5:2b:de:3e:ff:5a:
0c:60:a3:4b:e0:2a:eb:4a:32:e7:21:e7:41:05:1e:
f0:5d:35:81:a7:07:2c:2b:f1:da:f9:6f:72:df:b6:
f4:5f:9a:77:59:be:2f:33:de:b0:e0:37:a7:84:43:
d0:df:31:ad:29:cf:75:ab:ec:39:d8:f0:7d:21:57:
5b:56:29:7c:0d:d4:70:27:40:55:7e:e0:ee:01:5f:
5a:f8:c6:76:43:bb:94:eb:72:3b:03:87:94:20:85:
2c:ab:07:ca:50:87:5a:f7:94:cd:da:50:93:df:58:
42:87:30:e7:90:47:5f:23:47:91:db:1a:e7:59:c9:
e9:33:ec:d8:3d:e6:62:b8:18:7d:4c:97:2f:ac:22:
70:e2:8e:da:77:d8:ec:61:92:5a:cf:7a:a8:af:40:
92:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:66:35:89:5F:E2:DB:82:F7:ED:26:D6:B3:31:53:36:48:E4:3E:D3
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/43191F6AD96311EF859EE196762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.210.190.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:e3:bf:9a:8b:e3:ea:96:03:f5:e5:39:43:f2:f5:09:80:b4:
90:c8:83:e7:b0:1d:e4:b6:e1:35:c4:9b:54:75:52:26:f1:1f:
1d:29:2b:6b:d3:8a:f1:b9:fa:15:39:b9:54:23:ee:bf:ce:13:
71:de:f1:f8:73:02:99:40:66:1a:1c:2f:39:04:da:d5:f2:7a:
45:9d:61:04:77:bc:f4:21:f8:60:bb:cf:97:c6:d6:1d:34:9a:
1b:6c:5e:b4:26:2e:88:13:a3:b4:03:c2:a3:03:6c:ac:7b:41:
a6:e1:6d:35:39:9a:66:d4:77:43:15:ac:ea:2c:de:03:9e:ab:
5d:3f:d9:3d:6b:af:c2:d4:16:0f:43:e6:db:30:cd:40:0b:a3:
57:94:9f:6e:cf:51:95:59:09:cf:59:a2:8e:d1:85:31:42:bf:
18:ca:8e:ca:ff:00:62:cd:3f:0e:7f:ac:04:d7:80:b9:b0:6e:
02:b6:36:4c:d6:19:ad:e7:87:e8:0f:5d:a8:4c:30:e5:c6:0e:
e1:3d:11:b9:aa:8a:ed:cc:1d:27:c2:e9:08:e1:23:8e:6f:a8:
ff:1d:5c:65:fb:4e:40:39:ee:38:0f:ad:19:2e:41:2d:d6:a8:
00:02:4a:d4:dc:51:c8:2c:60:c5:2d:38:18:8a:47:25:1c:40:
91:87:4c:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 16:45:27 2025 by rpki-client