Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/45D61BBCD97311EFBC2D3D83762E951A.roa
File: 45D61BBCD97311EFBC2D3D83762E951A.roa (raw, json)
Hash identifier: JnrbrqKSI9lhAs/3jvQPzIDQZUpxVhl/ZUEjskY6ASg=
Subject key identifier: 46:14:09:BE:C1:9A:79:F5:F5:CC:0D:6A:96:F5:EC:E5:38:03:E7:7A
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01411E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/45D61BBCD97311EFBC2D3D83762E951A.roa
Signing time: Thu 23 Jan 2025 10:17:39 +0000
ROA not before: Thu 23 Jan 2025 10:17:35 +0000
ROA not after: Fri 28 Feb 2025 10:17:35 +0000
asID: 62240
IP address blocks: 154.194.91.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 82206 (0x1411e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 23 10:17:35 2025 GMT
Not After : Feb 28 10:17:35 2025 GMT
Subject: CN=67921743-711a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:a5:78:05:a8:d5:00:54:41:a5:0b:40:3e:b7:
b8:84:79:38:95:e2:9d:ab:e7:73:f1:76:c0:48:b2:
f6:51:ed:ea:f2:5a:99:88:42:08:5b:0a:5a:da:95:
d2:32:f4:78:3f:39:e6:35:37:37:54:0c:14:7c:36:
4b:ac:ce:2d:0f:32:7c:00:9f:00:35:75:ea:5d:17:
53:aa:5e:09:60:cf:81:b2:62:9d:96:0f:73:82:c0:
61:22:90:e6:fa:8c:9f:bb:a4:46:ef:86:ac:c2:d1:
6f:d5:9f:34:27:68:55:0e:2e:42:61:f5:c7:f8:92:
73:b8:a4:48:c0:98:27:4d:96:82:73:c8:04:c6:5d:
69:c7:59:ce:c3:96:7f:97:f3:45:86:4c:2b:8a:28:
39:11:fa:7f:c7:f5:93:af:dc:a9:84:25:d6:2b:68:
0f:b7:9e:fb:ff:c8:55:3c:ba:ad:35:3e:fd:bc:80:
b1:57:03:00:47:4c:05:df:40:95:db:b8:c5:2c:40:
6c:91:9d:9a:de:be:3e:cf:22:e6:88:ae:47:be:d8:
31:28:74:ad:7b:b2:04:93:c1:c7:a6:91:02:35:99:
18:9b:05:71:3b:3b:1e:4b:a2:01:0c:62:6c:e4:6c:
9a:d3:92:ff:54:50:98:c9:89:58:12:fd:b4:4a:d2:
eb:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:14:09:BE:C1:9A:79:F5:F5:CC:0D:6A:96:F5:EC:E5:38:03:E7:7A
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/45D61BBCD97311EFBC2D3D83762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.91.0/24
Signature Algorithm: sha256WithRSAEncryption
84:28:29:50:7c:10:15:fa:f4:42:17:07:a7:1e:6a:63:50:a1:
31:5e:e3:ec:10:d8:12:82:73:55:53:7d:df:fd:7d:b8:ab:96:
3c:0e:29:71:77:ff:ff:7d:ba:90:e0:2b:25:6b:8b:1c:1d:f7:
3e:42:46:f8:65:f7:97:95:70:37:50:1a:3c:3e:d7:32:e2:9c:
78:f6:86:b6:f7:6a:c0:38:f5:71:b6:ec:f2:84:d3:75:3f:9f:
63:a9:ba:38:2e:5d:0d:97:7c:3a:ec:9b:bf:43:92:49:d7:30:
26:99:03:9c:11:79:fb:27:41:90:8b:70:12:14:79:59:8b:61:
4a:82:5f:3d:49:87:4c:e2:ed:d0:98:2f:cc:d8:ce:f4:45:cb:
ff:00:03:94:ff:86:01:73:a2:04:8c:30:a9:f6:35:80:c7:6f:
bb:b0:08:43:4b:88:2d:f7:02:7d:d5:ca:31:32:04:3d:cf:f6:
39:78:5d:31:a7:c0:fc:da:26:2f:e0:d6:07:dc:ef:a9:8f:fb:
95:62:ad:30:b2:d2:a6:16:e7:11:57:85:c9:e4:fc:f3:27:bb:
1f:1d:7b:17:75:b7:d6:49:9b:f7:71:0f:cf:e4:13:b7:55:3f:
3c:35:49:52:93:f7:d1:70:43:56:2a:e9:78:d8:49:b4:59:5f:
af:ab:a2:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 09:49:08 2025 by rpki-client