Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/56F93FC4DE2211EF9E24EBA2762E951A.roa
File: 56F93FC4DE2211EF9E24EBA2762E951A.roa (raw, json)
Hash identifier: 7WbUlgnlMEoh1oEIN7UD0SWCaUyAGvUNJSPy7QmdSEw=
Subject key identifier: A0:F4:F9:3A:42:6F:43:E2:30:9D:AA:31:33:C5:F8:3E:29:B9:6C:A7
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 014D5A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/56F93FC4DE2211EF9E24EBA2762E951A.roa
Signing time: Wed 29 Jan 2025 09:20:54 +0000
ROA not before: Wed 29 Jan 2025 09:20:50 +0000
ROA not after: Wed 05 Mar 2025 09:20:50 +0000
asID: 203020
IP address blocks: 154.207.136.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85338 (0x14d5a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 29 09:20:50 2025 GMT
Not After : Mar 5 09:20:50 2025 GMT
Subject: CN=6799f2f6-ea25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:ba:c6:45:cc:e7:7d:31:2b:82:a1:d7:15:24:
d7:cc:03:44:d3:a7:13:45:62:0b:94:50:5d:f9:01:
45:5e:b9:34:23:71:48:89:4e:aa:a1:ca:cc:c1:10:
6f:5a:d6:40:b4:58:dc:6d:e0:19:96:e3:32:7f:e8:
2c:58:d1:33:a6:9a:cf:a6:e8:fb:1b:9c:18:ff:f3:
4e:91:19:5e:af:e1:63:fe:d6:0a:a8:7c:b7:53:ff:
c3:0b:87:26:dd:1e:68:09:ad:12:13:f1:0e:2e:c8:
be:bc:8c:0c:bf:fc:c5:e1:a5:78:86:28:53:c4:69:
3a:27:e8:28:ea:ef:46:8e:76:8d:68:44:c1:79:ab:
91:3f:c3:7d:c3:30:e7:3c:c9:38:5c:23:f0:10:4c:
47:9f:62:d5:46:25:9a:4c:30:45:25:13:7f:ce:d9:
8a:68:79:e3:65:03:7e:9d:0f:66:64:3f:81:ec:d7:
05:d3:37:03:cd:03:12:b1:8c:24:6e:43:89:61:49:
fc:ca:ff:cf:02:10:4e:47:48:b0:65:89:4b:a3:11:
79:61:02:e0:74:57:36:b3:40:4e:62:d0:c7:59:d2:
37:24:a9:6a:af:47:e6:7f:ef:e7:55:1c:a6:a6:1e:
a1:fa:df:b5:23:e1:68:9a:29:e5:5d:57:e3:7a:8b:
fc:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:F4:F9:3A:42:6F:43:E2:30:9D:AA:31:33:C5:F8:3E:29:B9:6C:A7
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/56F93FC4DE2211EF9E24EBA2762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.207.136.0/22
Signature Algorithm: sha256WithRSAEncryption
bd:76:04:12:ec:ef:c8:30:b8:47:e8:29:79:15:f7:ce:ac:ae:
34:92:48:a6:35:78:62:6a:89:16:ab:f2:80:c5:87:0d:d2:d7:
11:57:41:9e:05:5d:58:aa:3e:6e:5a:d0:a7:c4:b8:dd:c0:e9:
b4:b0:74:7c:38:f4:27:ed:2a:cc:30:aa:43:fc:95:9b:da:ee:
77:d3:a9:1c:a7:e5:5e:4b:46:97:96:dd:29:01:20:2c:0d:ea:
77:85:04:95:02:1d:05:e8:bd:4b:ab:87:22:1e:53:8a:f6:c8:
7f:33:47:67:99:c3:85:b4:64:ce:39:25:d3:4c:2a:4e:bb:c2:
89:7b:91:b3:4e:b0:f6:49:18:90:71:06:16:43:ed:61:f9:ca:
66:35:46:a4:27:8d:5a:5e:01:03:53:eb:c8:77:31:d4:1a:a1:
cc:fb:a3:5c:4e:4f:ea:e4:16:4a:2c:47:d1:40:c9:1f:9d:4b:
35:f8:9d:da:2e:09:31:a9:5e:57:ef:fa:97:49:00:e0:83:6c:
1b:cd:bc:4f:83:8c:57:9f:1a:e0:23:a4:47:bc:43:30:b9:58:
93:26:28:ff:af:e2:97:a6:91:c2:c6:ff:5f:bf:9b:c1:8b:24:
f9:7b:da:72:38:7c:8a:3e:1d:eb:02:d1:47:76:0f:b7:32:e0:
48:6c:11:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 04:18:14 2025 by rpki-client