Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5C5D2C8AD73011EF8BC68E87762E951A.roa
File: 5C5D2C8AD73011EF8BC68E87762E951A.roa (raw, json)
Hash identifier: MJNuR9iGvWrVe7xa7uNNrLA86gtSiNqa8xFYBK++Sp0=
Subject key identifier: C7:86:2C:4E:F2:0F:23:4F:AA:C5:4B:64:10:F8:E3:2D:33:1B:76:7D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 013E3A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5C5D2C8AD73011EF8BC68E87762E951A.roa
Signing time: Mon 20 Jan 2025 13:13:38 +0000
ROA not before: Mon 20 Jan 2025 13:13:34 +0000
ROA not after: Wed 05 Feb 2025 13:13:34 +0000
asID: 135097
IP address blocks: 154.92.96.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 81466 (0x13e3a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 20 13:13:34 2025 GMT
Not After : Feb 5 13:13:34 2025 GMT
Subject: CN=678e4c02-cd84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:f6:3d:d1:70:00:cb:16:83:01:b7:9c:f5:8e:
af:49:16:fb:b0:34:36:de:9d:86:a6:3b:9b:f4:04:
da:84:ff:c0:a4:42:04:50:dc:39:ea:a4:8b:62:25:
dd:81:08:65:69:5b:60:75:f3:b6:01:5f:2e:e2:1d:
e9:01:9c:20:7c:e4:3a:10:27:f6:47:02:4d:07:73:
bf:d5:5d:e3:a0:10:6b:14:87:d0:da:12:fe:d9:dd:
a7:5a:5e:10:1c:e2:0e:9c:39:9c:0b:63:1d:7d:e2:
d3:71:bc:bd:8e:fb:7b:01:61:ac:ee:e5:87:52:ad:
ee:c3:42:4f:a0:cb:81:4e:34:53:cc:ba:d9:4a:82:
df:60:d4:b6:ac:5f:95:24:4c:e0:e7:0d:3d:15:57:
48:09:f3:e1:30:14:d4:76:38:c2:ab:55:05:4f:87:
cd:4e:5c:bc:17:78:6a:06:5d:97:1e:78:9d:0c:4d:
55:c3:a7:22:04:b3:ed:2e:06:4c:b3:65:b2:4c:76:
1e:4d:0b:6f:12:cd:42:a1:b6:e9:2a:75:b3:a8:02:
a3:bf:ce:23:87:3a:65:91:bd:31:ab:c2:60:90:02:
14:e4:25:1d:64:e2:5a:d3:76:27:ba:3c:f5:64:4f:
b1:ee:dc:56:10:31:7b:e4:8c:db:b9:26:13:7d:27:
29:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:86:2C:4E:F2:0F:23:4F:AA:C5:4B:64:10:F8:E3:2D:33:1B:76:7D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5C5D2C8AD73011EF8BC68E87762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.92.96.0/21
Signature Algorithm: sha256WithRSAEncryption
c1:11:fa:db:47:f8:54:4c:89:51:90:42:3a:c3:89:ba:f1:a6:
78:67:26:56:ce:79:6f:53:9b:b2:4a:99:0f:5a:01:55:81:4b:
c0:2f:34:81:58:0a:35:fb:26:30:53:c5:35:6f:db:43:5b:b6:
76:fd:73:97:61:92:c9:34:1b:61:a9:b4:c9:e5:b5:c3:14:e5:
39:66:e5:42:05:45:ba:7b:7f:19:d4:08:70:dc:be:8c:ee:f0:
53:87:14:69:b5:ad:3a:99:21:83:f5:e7:02:51:4a:7a:44:60:
58:84:c7:b5:7c:57:3d:a3:90:1d:25:ca:5e:47:5c:2a:0e:0b:
2b:53:f8:fb:9d:f8:16:db:bb:a0:42:ef:05:33:2e:a2:b3:19:
30:99:c6:d4:b8:bd:51:39:43:a4:a8:49:8c:ba:f9:5c:8c:e2:
c7:98:a9:0c:ac:fa:78:0e:3d:1d:61:97:3f:d0:9e:0b:63:6a:
23:86:9b:f1:a3:d5:f3:d6:3b:54:19:03:99:67:16:f4:bc:79:
43:24:42:70:db:7a:0b:b1:d6:ff:60:15:32:df:08:95:d1:09:
e6:81:8c:3f:42:5f:95:f1:49:01:df:d4:8e:f5:3d:db:a9:1e:
05:aa:04:19:b0:a5:81:22:a9:a5:a4:6d:25:83:9e:9b:4f:a7:
dd:f8:09:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 22:50:56 2025 by rpki-client