Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/50FE9FD6DA3711EFB7D245AA762E951A.roa
File: 50FE9FD6DA3711EFB7D245AA762E951A.roa (raw, json)
Hash identifier: NDzDbyd2PiLkI78vDqSb9U91tY0h/HVXp1dGAIyXNRM=
Subject key identifier: C7:03:71:1F:41:D0:D8:B4:AC:F1:88:67:C3:3B:9B:86:31:2D:3F:B2
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01450D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/50FE9FD6DA3711EFB7D245AA762E951A.roa
Signing time: Fri 24 Jan 2025 09:40:59 +0000
ROA not before: Fri 24 Jan 2025 09:40:55 +0000
ROA not after: Wed 05 Mar 2025 09:40:55 +0000
asID: 202656
IP address blocks: 154.219.224.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 83213 (0x1450d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 24 09:40:55 2025 GMT
Not After : Mar 5 09:40:55 2025 GMT
Subject: CN=6793602b-5961
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:c4:18:17:65:59:b6:48:78:ad:f6:9e:85:34:
1a:d1:1d:76:6d:2c:37:47:78:83:7f:e6:80:d0:8d:
8e:bc:7f:1e:af:7d:27:e4:0d:e5:65:47:0f:96:9e:
26:12:c4:5e:2c:b7:26:19:1b:6f:62:b9:47:7c:97:
d3:55:d1:4b:8f:59:0b:98:b2:5b:9e:83:4b:eb:2e:
23:5e:a7:90:56:f1:49:94:a3:df:a5:d2:1d:42:7e:
8c:a7:4f:fc:14:70:2a:9f:51:9e:20:7f:54:12:a9:
9b:66:39:f3:80:19:3b:30:02:8a:2e:06:1a:b9:e8:
72:7e:be:aa:73:71:0c:43:12:82:42:b4:f7:b0:9d:
e0:bd:7a:74:7d:68:dc:1f:d1:f8:94:18:12:2b:9f:
df:ce:5b:f3:c7:3c:e8:2a:d1:bf:ec:47:71:4d:e9:
33:87:f4:62:b3:88:c7:bb:ac:35:60:e4:7f:f6:b9:
0b:39:b2:b6:13:b1:01:19:19:08:a9:37:fa:15:bc:
6d:cf:f5:2d:a8:8f:46:a8:27:25:35:87:ef:e6:72:
9c:66:d7:67:75:1b:45:2b:f3:f8:6e:16:08:96:a5:
94:de:34:0e:3d:0d:5b:fa:5b:4e:fa:ff:bf:16:75:
09:1e:72:8c:d3:75:0f:cb:93:03:e4:76:a9:a5:36:
e3:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:03:71:1F:41:D0:D8:B4:AC:F1:88:67:C3:3B:9B:86:31:2D:3F:B2
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/50FE9FD6DA3711EFB7D245AA762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.219.224.0/24
Signature Algorithm: sha256WithRSAEncryption
bf:32:37:f2:33:d7:47:cf:85:d7:49:00:db:05:3f:1c:d0:71:
2d:59:a8:e5:20:a5:a9:cd:35:54:dc:a1:ad:c8:f0:26:d6:6a:
a5:da:72:22:02:a0:5d:60:94:1b:32:70:e2:01:a8:f3:11:3b:
83:58:a1:8b:ad:cc:b1:22:55:16:f9:70:d2:a0:72:10:ac:b5:
ff:c8:d0:9b:30:ab:cf:bf:46:69:ff:3b:e6:6f:2e:7a:6f:29:
c3:ff:f6:bb:4b:1d:c5:f1:95:9b:66:d0:8f:ca:7e:62:29:f6:
aa:92:c0:d5:de:e5:a3:77:48:3c:63:73:b1:be:2e:ad:fd:18:
0e:c0:01:07:fd:ed:a7:ed:4f:52:3a:83:f1:eb:fd:5f:97:e6:
23:4a:5f:c0:a6:2c:6c:82:c5:c5:05:95:46:34:3f:9c:d9:f4:
63:f7:ca:f3:37:f8:72:ef:ce:bb:46:ae:35:39:31:0a:89:0d:
27:a3:f3:6d:14:37:2f:73:9d:02:b5:9e:04:42:3b:66:2a:20:
93:6a:96:af:75:c1:f1:e0:b7:79:02:21:73:ab:df:22:4a:0c:
2f:fe:39:01:50:5a:7d:b9:b8:50:3d:87:e7:dc:78:a9:47:4d:
28:27:35:59:ff:d5:de:2f:ef:8c:d3:9e:a5:c4:41:45:ff:55:
c0:17:c8:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 09:50:05 2025 by rpki-client