Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/59B1D194D97D11EF8F706445762E951A.roa
File: 59B1D194D97D11EF8F706445762E951A.roa (raw, json)
Hash identifier: SPhi6wLjU+HVR9JPQuM2XzBJ+NgxyAFWVwo60mwzUfw=
Subject key identifier: B8:47:D9:0B:38:B5:43:64:83:30:D7:AD:6F:AB:B7:27:34:E9:50:03
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01419C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/59B1D194D97D11EF8F706445762E951A.roa
Signing time: Thu 23 Jan 2025 11:29:48 +0000
ROA not before: Thu 23 Jan 2025 11:29:31 +0000
ROA not after: Fri 28 Feb 2025 11:29:31 +0000
asID: 62240
IP address blocks: 154.195.159.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 82332 (0x1419c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 23 11:29:31 2025 GMT
Not After : Feb 28 11:29:31 2025 GMT
Subject: CN=6792282b-fc78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:10:88:5d:78:6e:0a:95:4b:f2:55:58:f5:45:
b3:c9:85:1f:db:58:05:13:4a:b6:25:eb:61:41:e8:
a9:3c:a8:fc:ff:c2:ea:b2:19:ff:3d:f4:c7:54:67:
0b:53:a7:a3:b6:9e:f7:a6:d0:32:f4:55:78:3d:f7:
56:1f:d5:7f:16:77:aa:bf:c9:e7:a8:df:bf:56:9e:
f5:9d:a9:78:54:84:bb:1f:86:65:de:bf:a3:d1:4f:
46:2a:d4:40:26:c2:11:8c:fd:54:88:fd:0f:ff:e7:
b7:08:82:6f:f7:ce:7d:da:f0:9c:a5:dc:40:3a:1f:
cc:95:89:69:df:80:12:59:5d:dc:e6:82:98:1a:c0:
6c:47:ca:5e:61:89:7f:2f:93:ce:ba:40:7c:fa:74:
00:d2:c9:1d:c5:f7:5e:d8:18:e1:f4:f7:b5:32:c4:
5c:1b:5b:3a:da:76:f2:da:57:eb:90:bc:6d:75:d4:
8e:45:53:50:1c:2d:03:25:f9:6b:9f:8f:9c:56:d0:
c0:90:e4:c4:b9:53:aa:ba:07:8d:02:6a:3e:e8:21:
d8:75:a4:01:fc:af:80:03:66:f3:cc:47:44:0f:f6:
4b:4c:ad:24:79:58:97:f5:21:bc:5a:44:1a:c6:58:
b9:15:a8:dc:53:41:9a:84:19:b4:17:b8:9c:a9:75:
60:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:47:D9:0B:38:B5:43:64:83:30:D7:AD:6F:AB:B7:27:34:E9:50:03
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/59B1D194D97D11EF8F706445762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.195.159.0/24
Signature Algorithm: sha256WithRSAEncryption
52:ce:20:5a:17:e5:6d:bf:9c:75:f0:fb:ea:29:0e:75:3c:2f:
47:ea:1f:57:f2:73:13:97:00:a9:b4:d4:3d:0c:eb:f8:94:fd:
32:c0:cf:45:1f:90:27:2d:be:5a:b0:c5:ca:97:2e:48:57:21:
77:c3:db:87:66:eb:0a:0a:62:ee:89:68:8e:b1:7c:c7:65:68:
a7:33:66:a3:ce:f3:1c:ba:b9:9e:ee:51:35:37:84:28:ed:7f:
b1:b5:54:ae:de:e3:ec:07:a9:75:3f:11:34:30:a3:b3:f1:ae:
4d:9f:b8:b6:0a:a2:74:a8:05:ae:43:23:42:d6:bc:61:74:96:
fb:c0:ee:5a:f7:88:e6:e3:32:6c:80:ee:fe:39:16:d9:56:e2:
43:ed:f1:04:b7:8f:dd:74:00:94:c7:8c:0d:72:ad:71:e1:fc:
b9:a4:5d:95:ee:48:de:22:aa:9f:6d:3d:6a:02:d9:ce:8f:cf:
f6:79:b4:93:2d:37:df:2e:28:40:ec:6e:75:eb:9a:50:10:20:
03:eb:6f:e8:a4:a8:46:34:78:fe:cc:fc:08:cd:0d:c4:06:8d:
96:23:98:09:bd:f4:54:7b:8b:cb:97:0e:a1:2d:96:11:32:83:
8e:2a:4b:62:40:3d:87:dc:f0:de:6f:d4:01:52:74:7b:ad:8c:
d0:af:b5:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 12:05:59 2025 by rpki-client