Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/52C58E16DB3511EF9C3A8A62762E951A.roa
File: 52C58E16DB3511EF9C3A8A62762E951A.roa (raw, json)
Hash identifier: mEnQFVfsFfMMVcOTkWcIEHHYDctWV1L0v/uxhwBOOdU=
Subject key identifier: 75:B1:61:F2:16:C7:6A:62:84:7E:45:33:D8:E5:BE:22:28:48:81:26
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 014A1A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/52C58E16DB3511EF9C3A8A62762E951A.roa
Signing time: Sat 25 Jan 2025 15:59:14 +0000
ROA not before: Sat 25 Jan 2025 15:59:10 +0000
ROA not after: Fri 07 Mar 2025 15:59:10 +0000
asID: 138915
IP address blocks: 154.223.48.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 84506 (0x14a1a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 25 15:59:10 2025 GMT
Not After : Mar 7 15:59:10 2025 GMT
Subject: CN=67950a52-08fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:90:ae:08:87:e9:bc:3c:df:03:c4:d2:c4:10:
27:14:59:75:b8:f3:38:d9:66:3d:1e:e0:c5:37:2b:
0c:98:17:a3:68:71:80:78:dd:09:47:b3:4c:85:ad:
f2:1d:ed:67:bb:80:7d:0b:c4:e5:36:b7:3b:80:f8:
bd:32:5e:da:fb:a4:83:27:ab:c1:2e:6e:24:0e:fa:
6d:6e:d6:2d:a6:1b:e3:ce:d8:50:4b:b8:74:5e:c6:
cc:31:5a:46:68:0a:6f:a0:a9:5c:ce:8f:af:fa:69:
48:00:e8:f9:e0:5f:36:93:41:8a:06:4e:95:c5:23:
e2:c8:2f:4e:2c:64:51:f4:63:6b:84:77:fa:8f:ce:
4c:4b:25:27:c6:b8:2b:c6:a5:a9:77:ab:c3:27:0f:
ca:89:71:44:2d:99:e6:1d:1a:60:4a:f0:84:07:d0:
77:1c:ce:0b:02:4b:dd:57:4a:3f:c3:35:ff:81:d3:
14:eb:9d:2f:d5:2b:fd:d7:a4:ba:a6:29:32:49:74:
66:24:31:e1:a4:8d:b7:b6:b2:ed:a1:10:14:d7:35:
ce:15:b5:f9:71:4a:e2:06:b1:9c:d7:86:46:9b:c3:
9c:16:00:12:9d:dd:9a:cd:64:9a:ce:a7:22:76:5e:
0e:12:56:3c:cc:3f:29:08:7e:0e:45:a9:cb:4a:24:
ec:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:B1:61:F2:16:C7:6A:62:84:7E:45:33:D8:E5:BE:22:28:48:81:26
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/52C58E16DB3511EF9C3A8A62762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.223.48.0/24
Signature Algorithm: sha256WithRSAEncryption
93:fc:2a:28:da:e2:e1:a3:bb:17:2d:b6:2b:9a:92:3e:4d:9f:
03:b1:ea:e7:d5:3f:2b:67:d7:e0:72:c0:18:33:de:59:17:00:
ab:23:26:d7:7f:b5:9a:81:6e:27:92:6b:6a:65:74:86:44:f5:
78:f2:8a:11:2e:f2:b5:38:77:4f:59:2d:68:4a:95:b5:ca:90:
ed:76:90:2d:ba:ba:7d:34:e2:d3:08:1f:06:e5:89:68:78:54:
95:f7:87:db:c1:2e:02:c2:5c:ea:e4:38:7f:17:57:5d:d3:fc:
9a:3c:93:eb:85:c7:33:ee:31:2c:e5:33:89:d1:32:76:bc:9e:
b8:b8:16:46:11:9f:8a:f4:86:e9:92:02:1c:45:70:4d:63:58:
97:db:cc:3b:06:6e:21:88:5e:c6:8c:e1:a4:25:4d:43:9c:5e:
2e:01:cc:07:c1:33:04:41:b4:61:76:c3:a3:da:65:93:47:28:
bf:52:79:5c:90:b9:43:b7:7f:23:be:42:1f:62:c0:ae:b8:08:
e7:51:aa:81:12:66:5b:3e:de:42:f0:e9:39:ce:3d:3a:97:df:
52:35:d8:48:45:9d:5e:e3:85:84:88:84:f4:c7:e3:80:61:85:
0c:57:08:c5:5a:97:65:6c:c7:7b:93:bd:9b:8c:a2:23:04:cc:
59:49:1a:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 00:59:39 2025 by rpki-client