Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5D2D043EDE1811EF9DE84562762E951A.roa
File: 5D2D043EDE1811EF9DE84562762E951A.roa (raw, json)
Hash identifier: teSn1KyDEWxOVzN41vKdQrJPRIZ5AlPfPgmlqcsHpj0=
Subject key identifier: C3:BD:FF:C0:5D:C5:15:CC:03:0A:A5:3E:E1:40:C1:0A:E3:00:91:C2
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 014D46
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5D2D043EDE1811EF9DE84562762E951A.roa
Signing time: Wed 29 Jan 2025 08:09:30 +0000
ROA not before: Wed 29 Jan 2025 08:09:26 +0000
ROA not after: Wed 05 Mar 2025 08:09:26 +0000
asID: 203020
IP address blocks: 154.207.216.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85318 (0x14d46)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 29 08:09:26 2025 GMT
Not After : Mar 5 08:09:26 2025 GMT
Subject: CN=6799e23a-8749
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:48:cf:26:00:3e:65:c6:f5:bc:f5:e0:ec:b7:
04:11:07:45:69:06:b2:93:d2:08:f8:e4:99:a2:f0:
59:eb:2b:cf:e4:88:53:1d:bc:9a:fa:2f:a9:67:b4:
ff:5f:f8:8a:d6:9c:ee:b8:de:b3:0a:a2:31:7e:cd:
b8:2c:2b:46:ee:07:12:14:89:77:f1:df:8f:48:32:
39:ed:18:8d:2e:20:e6:a5:87:c7:e0:ba:af:95:1d:
a8:d0:9a:0d:d2:b7:95:5b:75:ec:56:2b:40:65:fa:
88:76:39:ee:a2:c5:0b:c1:41:4e:5e:00:1d:95:b7:
f3:be:f0:95:c2:60:b2:8b:4b:d9:af:2e:24:52:00:
e7:16:81:42:aa:84:90:bc:3c:e9:75:8d:09:25:d0:
ef:12:c2:97:c8:84:ea:a6:2a:ae:7d:04:32:98:96:
e9:3c:83:b5:c8:36:13:f0:2d:d4:c9:68:2f:ca:d8:
25:e5:45:bc:95:bf:5b:28:01:72:cc:d8:81:c8:2d:
46:43:0f:9d:f9:31:77:c9:0d:62:b2:60:55:20:fe:
2a:2c:07:c9:7f:5e:16:db:9c:4f:7c:12:8a:f9:b9:
b4:3e:72:1c:3d:68:90:01:15:47:eb:11:cf:97:1e:
a5:14:97:39:24:fc:b1:67:b0:f2:56:6f:8f:5b:96:
7e:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:BD:FF:C0:5D:C5:15:CC:03:0A:A5:3E:E1:40:C1:0A:E3:00:91:C2
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5D2D043EDE1811EF9DE84562762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.207.216.0/22
Signature Algorithm: sha256WithRSAEncryption
55:6a:84:55:11:fe:c9:4e:b0:c9:4b:d5:19:52:1e:70:de:16:
8e:b8:d0:b6:b6:40:b1:bc:cc:57:ce:8d:b9:b5:bd:a6:79:eb:
c6:08:2e:45:c3:1b:38:7e:e5:6f:81:cf:9e:b2:8f:f3:03:db:
8f:9b:1e:28:4c:f6:a2:36:18:fd:63:b4:86:82:b8:93:1a:5b:
ac:94:e0:39:ce:de:b1:cc:ca:4f:84:7b:2b:56:ca:2f:c3:12:
bf:62:23:d5:eb:b8:95:df:ac:2e:e8:aa:6c:07:ea:ed:2a:f3:
03:01:2d:85:eb:d8:b0:d4:64:ee:d6:ce:aa:09:88:f2:91:2b:
2d:33:ab:ce:5a:32:f2:5f:fb:6b:58:5d:94:6a:38:9b:a9:76:
63:35:30:d3:67:a6:a1:68:f4:e2:25:5e:54:76:0c:18:d0:d3:
c0:62:11:c0:a6:3e:fd:36:54:26:a0:b4:63:14:4c:10:4c:96:
9e:2c:ef:45:9c:ad:34:fe:10:1b:88:be:96:25:89:6e:dd:9f:
98:3c:41:81:10:2f:e7:c3:ff:00:64:16:75:22:56:a1:b2:b7:
63:ad:fd:0e:d0:52:a2:fc:35:f2:c0:29:8f:18:24:3d:ef:03:
46:73:70:27:d3:77:56:a9:87:92:bc:3e:23:d1:c8:8e:83:c5:
e2:08:c3:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 16:57:48 2025 by rpki-client