Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/44127834DE1411EF94A65747762E951A.roa
File: 44127834DE1411EF94A65747762E951A.roa (raw, json)
Hash identifier: RkU5nHzzZ2gCKdZv+TZ/vBaX2tSU/D1+Ku+HQj18vM0=
Subject key identifier: 41:CD:E8:D5:8B:C3:02:13:9B:C2:B1:30:65:71:C1:9B:D1:64:B2:54
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 014D2B
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/44127834DE1411EF94A65747762E951A.roa
Signing time: Wed 29 Jan 2025 07:40:09 +0000
ROA not before: Wed 29 Jan 2025 07:40:05 +0000
ROA not after: Tue 04 Mar 2025 07:40:05 +0000
asID: 15221
IP address blocks: 154.198.32.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85291 (0x14d2b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 29 07:40:05 2025 GMT
Not After : Mar 4 07:40:05 2025 GMT
Subject: CN=6799db59-11ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:19:b6:d2:55:ba:bd:7f:48:13:a9:f9:26:23:
37:23:7c:0e:12:9e:53:f2:c1:e3:c5:08:77:16:d4:
64:1b:2f:e2:59:35:7e:9e:4b:df:34:91:59:06:8e:
54:52:f6:9f:1c:70:30:ad:42:5a:27:8f:ce:77:b9:
35:97:73:b3:78:2f:95:e5:73:54:b7:0e:cd:02:36:
d4:78:b2:97:c6:33:31:9a:28:10:b5:09:8b:1b:95:
df:87:11:b2:e7:04:e8:0f:25:6a:3f:13:30:58:7c:
26:ea:e2:9f:d7:49:65:30:70:6d:50:f0:10:de:85:
10:b2:85:42:04:d2:12:87:30:bc:a0:99:c8:2e:fe:
c2:07:63:85:38:98:9b:fa:ac:13:9d:e9:e0:5d:0f:
ef:d2:5f:55:37:d5:36:35:2b:68:8b:23:ea:39:ad:
84:a5:76:1e:96:2d:10:c0:2d:7c:d9:9f:8f:d2:d3:
8e:5b:0e:44:2a:4d:c6:ca:fb:3e:65:6f:03:8c:f4:
0e:ae:bf:25:f9:fd:17:d8:27:90:83:a1:42:50:c0:
8d:c4:d5:18:94:ae:69:0a:67:4e:cb:95:c0:be:f8:
d7:2e:b6:30:f9:74:cc:89:c6:3c:8d:46:a1:ea:2f:
84:0f:aa:8b:48:79:41:7a:4e:8b:7f:a5:45:0f:83:
f9:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:CD:E8:D5:8B:C3:02:13:9B:C2:B1:30:65:71:C1:9B:D1:64:B2:54
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/44127834DE1411EF94A65747762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.198.32.0/22
Signature Algorithm: sha256WithRSAEncryption
51:68:a7:76:d1:79:c5:19:6e:ff:10:fc:14:98:cb:c1:38:c1:
e7:cc:d1:89:9e:cf:0e:f8:fa:f0:07:df:28:ac:99:3c:74:13:
8f:f7:95:b0:d9:0e:4e:9a:a3:eb:fe:04:3a:e4:cc:4d:d6:d9:
44:26:b9:98:e0:d3:1f:c9:26:5a:60:0a:07:ba:a3:f5:8f:c1:
ff:71:f6:d8:9e:ae:80:0d:1a:c1:21:5f:35:18:b9:57:ff:f4:
3e:0f:d4:86:cd:6f:8f:ca:b9:c1:a0:10:bc:1c:d4:d7:35:61:
af:16:08:10:19:81:fb:11:88:fb:53:41:d9:7b:e6:f1:e4:62:
2a:20:0f:c1:ea:af:f4:d5:d6:36:ae:62:0a:3d:bd:22:ce:38:
c3:8c:d9:37:90:dd:3a:32:47:aa:bb:c7:20:70:9e:4c:5b:e9:
86:bd:e9:ea:f9:4b:05:c8:d0:88:fd:32:e1:2d:aa:f8:4c:7a:
c5:c1:41:4b:28:19:61:4f:90:c6:88:7a:c6:08:14:0a:e5:23:
36:63:9e:fa:87:2a:5b:28:f4:ca:bc:ae:1f:f3:bb:8e:10:da:
81:7f:7c:fd:46:ca:94:cb:20:bf:02:b5:9c:1e:45:86:eb:8a:
82:f6:73:24:f2:be:e5:b9:0e:4f:77:09:2c:1f:10:7b:9c:b4:
89:53:c5:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 22:50:23 2025 by rpki-client