Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4C981DAACEA711EF881983BA762E951A.roa
File: 4C981DAACEA711EF881983BA762E951A.roa (raw, json)
Hash identifier: hna6eken3UmyZD6izE8zqZrvRVagQaocU9axFnByvoI=
Subject key identifier: A8:31:C6:91:54:C3:B4:63:34:6C:A6:DB:AE:94:F9:A7:5F:DD:C0:57
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 013960
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4C981DAACEA711EF881983BA762E951A.roa
Signing time: Thu 09 Jan 2025 16:32:21 +0000
ROA not before: Thu 09 Jan 2025 16:32:17 +0000
ROA not after: Tue 11 Feb 2025 16:32:17 +0000
asID: 5065
IP address blocks: 154.95.20.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 80224 (0x13960)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 9 16:32:17 2025 GMT
Not After : Feb 11 16:32:17 2025 GMT
Subject: CN=677ffa15-30e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:e8:83:b8:3c:a1:fa:a7:46:89:74:91:91:a3:
90:1e:cf:18:9e:87:75:ba:d1:f2:10:03:ba:bd:d2:
b7:93:43:88:08:be:aa:4f:7a:b9:53:87:de:b4:58:
57:cc:45:e2:fb:3e:9f:27:70:cb:be:20:35:42:7c:
bd:52:b4:6e:bd:62:bd:fe:8d:af:1f:84:d5:a1:5f:
14:a9:a9:a2:e3:ef:46:be:da:d5:cd:d3:76:1a:c4:
a6:75:4f:43:3d:f0:93:88:28:f2:4e:4e:3c:26:96:
09:6f:d1:4a:6e:0e:4f:41:e9:18:21:63:2d:cb:ec:
ed:df:8c:9a:74:d7:2f:1e:a9:54:b6:76:02:b6:61:
eb:07:54:3f:ff:b7:38:39:9c:91:0a:ac:1c:4b:0b:
0c:a5:e9:dd:57:a7:84:09:59:43:d8:fe:aa:84:76:
5b:d8:87:87:1c:3a:71:d9:46:b0:65:2e:ff:88:9d:
6e:a6:f9:74:c9:89:bf:b7:e6:60:c1:bb:e1:14:6b:
1e:0f:b7:f1:c4:cd:e7:70:dd:ba:b5:ca:13:72:30:
98:b4:ac:08:8d:ae:9e:94:26:94:d6:6b:72:83:63:
86:35:52:18:5b:f5:cd:e3:cb:63:dc:5a:31:44:f8:
21:56:bc:2e:0e:5b:3b:a5:39:2a:5c:3b:09:51:a7:
bf:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:31:C6:91:54:C3:B4:63:34:6C:A6:DB:AE:94:F9:A7:5F:DD:C0:57
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4C981DAACEA711EF881983BA762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.95.20.0/22
Signature Algorithm: sha256WithRSAEncryption
47:05:6b:b8:cf:c4:49:47:0c:07:42:b7:da:4e:46:25:65:43:
7a:0c:a3:73:57:d7:20:d1:59:07:20:9f:67:e5:c9:f0:e4:7b:
cf:36:72:6d:eb:14:41:58:fb:ca:9e:a0:56:b8:d5:66:d1:d8:
95:7e:32:6b:d2:c2:8b:c3:e3:f7:7b:5b:21:78:62:0e:6e:1a:
41:ab:14:2b:1f:ec:8b:92:fc:e8:8d:da:0d:0a:9c:7c:5b:59:
82:a6:aa:79:8b:28:fb:a2:85:d3:51:cb:7c:3d:eb:57:d9:73:
21:4f:75:7c:05:f4:52:e2:49:ee:ed:77:6d:24:fa:54:9b:e1:
3a:ce:32:1a:53:1d:ac:be:a7:2e:db:19:fc:bb:db:80:71:02:
63:6e:7e:37:a5:f4:b1:be:cf:31:ac:b6:f6:b5:93:9f:c9:5d:
1a:40:f0:68:d5:c5:28:8d:43:30:af:96:89:c7:c4:78:c8:eb:
19:d9:fd:27:58:4b:f8:0e:f6:a7:fa:4b:7d:9a:7d:01:f7:d9:
b0:6a:f4:6a:2a:cf:ff:a9:3e:ee:0c:18:a2:70:c9:53:8e:ba:
f7:91:f1:b2:ac:43:2a:98:b9:fe:69:8e:49:05:ed:a8:b2:4d:
fa:85:e1:f1:97:a0:e6:c0:73:2d:9e:0d:32:0e:c6:96:25:2c:
1e:c5:c6:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 00:57:16 2025 by rpki-client