Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5B477FB2DE2411EF990C80B0762E951A.roa
File: 5B477FB2DE2411EF990C80B0762E951A.roa (raw, json)
Hash identifier: PYuCzds5AL2UDoiJyFqoShnVf8NJW1fCey3YY16gkX0=
Subject key identifier: A8:4A:65:3E:06:5B:F4:C2:D8:7B:9F:91:2A:C9:1B:ED:DD:69:CF:B5
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 014D68
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5B477FB2DE2411EF990C80B0762E951A.roa
Signing time: Wed 29 Jan 2025 09:35:20 +0000
ROA not before: Wed 29 Jan 2025 09:35:16 +0000
ROA not after: Fri 28 Feb 2025 09:35:16 +0000
asID: 395793
IP address blocks: 154.193.100.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85352 (0x14d68)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 29 09:35:16 2025 GMT
Not After : Feb 28 09:35:16 2025 GMT
Subject: CN=6799f658-d6cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:d8:7d:88:70:82:03:f8:c7:94:b1:bb:53:33:
c8:b5:05:52:d8:13:f4:9a:05:89:35:58:5e:86:fa:
da:f1:18:9c:a6:64:4e:bc:9c:18:6e:06:5b:b1:72:
4a:53:2c:9e:46:e6:f8:3a:54:d6:8e:d6:28:fa:6c:
b0:c3:df:ad:14:52:be:0a:9f:81:18:92:81:3f:05:
c5:95:a6:a4:6e:1d:63:bd:4a:55:00:68:0e:97:f7:
8d:23:8e:36:27:e7:a7:16:4a:cd:17:e4:6a:e9:61:
d3:f6:21:cc:22:ae:aa:c2:73:18:1c:6a:23:c3:65:
81:30:20:d2:db:8d:d5:cd:09:19:06:52:93:e3:ef:
c4:ad:6a:94:c8:fc:6b:12:15:91:7b:80:c7:2a:37:
33:76:8c:d0:e1:b8:2b:bd:07:f8:69:56:66:f2:37:
e6:ab:7b:df:93:fb:a0:18:63:4e:d2:47:f4:ea:92:
12:75:a4:01:d2:fb:47:79:59:6e:d3:56:9a:4f:9e:
a5:83:6f:11:c5:0d:45:9e:49:6f:cd:68:45:a3:ba:
7d:3f:b3:3a:9f:ae:15:1f:c9:53:69:8f:00:fe:12:
79:3d:a9:13:12:75:48:a1:2f:b7:8f:43:27:7f:a7:
73:20:2b:81:cf:fc:88:31:8e:c6:7b:83:70:42:d6:
68:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:4A:65:3E:06:5B:F4:C2:D8:7B:9F:91:2A:C9:1B:ED:DD:69:CF:B5
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5B477FB2DE2411EF990C80B0762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.193.100.0/24
Signature Algorithm: sha256WithRSAEncryption
76:fe:1b:61:52:99:07:13:c0:2d:8a:b2:35:6a:98:ac:81:23:
1f:85:a0:3d:fc:b6:51:50:14:7c:ff:e6:99:31:f2:0f:43:b2:
be:78:d2:a0:cb:68:1b:d6:6d:b7:3a:43:d4:43:9a:09:7b:ed:
9f:c7:1e:89:ca:85:58:92:d3:d1:d5:c8:44:4d:00:7e:bb:0d:
8a:f0:4d:87:3d:a6:cb:6e:e4:ce:4e:27:47:a3:67:ad:f5:33:
0e:8f:2a:23:2c:f8:6a:93:c2:49:eb:3b:26:c0:2b:51:05:22:
5f:1f:c6:00:28:33:db:1b:9b:f8:ed:73:94:d9:73:0a:4c:f8:
5e:13:3c:58:d6:81:ca:5f:5d:f0:55:31:5b:e1:61:94:7e:9f:
c4:2b:22:bc:3e:44:b4:25:d9:88:b1:e7:25:af:be:52:bd:b5:
3f:66:e2:e8:40:bd:19:57:af:30:86:92:6c:ce:79:a9:e4:d5:
0a:e0:5e:82:74:cc:9b:8e:e7:e5:d0:16:40:ee:f2:56:ff:c1:
e7:b6:c7:b2:c0:4a:58:95:82:54:8c:a8:a5:56:8b:dd:a4:d3:
24:a0:c1:eb:74:17:bf:12:a7:b5:e1:f4:fa:e9:5b:5d:ca:96:
f4:39:eb:c1:7b:44:1f:6b:5d:37:c9:12:e1:7a:17:c6:de:17:
61:02:ff:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 13:19:31 2025 by rpki-client