Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/55C44F66DCC611EFA2B7386F762E951A.roa
File: 55C44F66DCC611EFA2B7386F762E951A.roa (raw, json)
Hash identifier: bhArZwKjzd7Mt1V+3uKMw36foLZBJBds2rhgEzXeI6g=
Subject key identifier: 6E:D8:D1:2F:C9:3A:B9:D9:F4:7E:59:3A:A7:D2:CD:04:CF:97:96:F7
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 014C55
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/55C44F66DCC611EFA2B7386F762E951A.roa
Signing time: Mon 27 Jan 2025 15:49:47 +0000
ROA not before: Mon 27 Jan 2025 15:49:43 +0000
ROA not after: Thu 13 Feb 2025 15:49:43 +0000
asID: 5065
IP address blocks: 154.207.164.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85077 (0x14c55)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 27 15:49:43 2025 GMT
Not After : Feb 13 15:49:43 2025 GMT
Subject: CN=6797ab1b-2b41
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:11:e7:64:42:1d:c7:ae:0b:74:91:31:69:b8:
a8:6f:92:f2:53:cb:0a:ed:88:4b:0c:e3:7d:60:47:
a6:62:96:be:32:44:26:7c:af:53:f2:e4:00:25:4d:
c7:3a:bf:f5:99:a4:8c:fa:ee:51:5e:c2:36:8b:69:
b7:80:9c:e1:4c:7e:3f:02:4c:58:8f:f8:b2:d5:34:
7a:ec:13:5b:eb:61:49:f8:a9:dc:ff:8d:12:bd:4e:
23:f5:14:e1:2f:cd:4e:c4:87:c5:33:96:33:85:5a:
91:80:69:00:5d:10:7d:09:e8:18:72:d2:db:36:45:
dc:b6:26:11:25:5d:05:76:8b:de:be:6a:dd:2d:5f:
bb:4a:1e:8a:82:65:05:e1:9d:22:f2:47:3f:d6:de:
12:71:2b:d2:4b:b1:99:40:92:e8:54:f1:9f:14:d5:
19:07:00:4c:e3:b4:3e:15:7f:00:15:d4:ce:0f:a0:
95:15:c6:72:63:27:6c:31:aa:01:33:40:06:3d:b5:
cb:98:51:27:00:07:d7:df:37:31:fe:91:d0:7b:e9:
5d:61:e2:2d:5b:82:bb:cf:e8:85:d4:bb:80:1f:74:
2e:f9:74:5c:2e:b4:e5:ab:84:e5:de:0f:89:cf:b4:
65:51:ec:57:de:62:c5:73:2f:0b:57:4c:27:b6:d5:
18:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:D8:D1:2F:C9:3A:B9:D9:F4:7E:59:3A:A7:D2:CD:04:CF:97:96:F7
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/55C44F66DCC611EFA2B7386F762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.207.164.0/22
Signature Algorithm: sha256WithRSAEncryption
1a:97:f7:c2:31:01:5a:40:17:89:d9:a6:95:c6:70:80:97:6d:
3f:98:e5:bd:b6:3f:9c:ab:76:1f:a0:52:a0:13:54:69:12:2e:
20:d0:6e:53:33:44:7c:fe:ff:af:15:ff:ad:45:e5:34:54:22:
17:5b:8e:78:11:2c:7b:2a:cb:5f:26:b8:2c:78:0e:87:9b:9d:
4a:ec:d9:64:10:c1:9f:49:e6:92:c0:a2:4b:90:84:c4:82:43:
32:bc:7c:ba:6b:89:90:25:04:28:fe:05:79:44:1c:86:58:10:
5a:1c:ff:75:9d:7b:ca:ce:5d:d5:02:cd:48:51:06:20:3e:2c:
5b:34:84:b5:82:4f:66:d8:06:84:81:ef:cd:ad:80:1c:b2:6c:
49:dc:40:a9:46:6a:e3:21:9a:c7:55:ef:6e:7d:24:51:66:e4:
e5:6a:14:5b:c1:40:47:8a:ec:91:5a:d0:9b:b2:cc:21:71:b2:
45:5d:22:86:53:d3:df:aa:54:58:d4:e7:3a:cb:a7:ad:da:9e:
f5:5b:fd:8a:77:63:03:db:22:15:9a:12:89:3d:e0:61:2d:e3:
a2:6d:ab:bb:0d:40:3c:3b:4e:13:22:cd:1a:60:46:b7:15:26:
5c:5b:14:c0:8f:07:1f:8d:2e:d6:b4:47:2c:9c:ba:d7:2e:54:
3d:6e:48:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 10:02:14 2025 by rpki-client