Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/647A8F96DA3411EFAB189797762E951A.roa
File: 647A8F96DA3411EFAB189797762E951A.roa (raw, json)
Hash identifier: 1KMsJoVrgByl68kf5R9Y4+HxyugaBnGodnF8C/lA91Q=
Subject key identifier: D2:4C:03:DE:4F:00:FC:81:D2:D5:EC:56:5D:9E:17:27:30:28:83:7C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0144DB
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/647A8F96DA3411EFAB189797762E951A.roa
Signing time: Fri 24 Jan 2025 09:20:03 +0000
ROA not before: Fri 24 Jan 2025 09:20:00 +0000
ROA not after: Fri 28 Feb 2025 09:20:00 +0000
asID: 62240
IP address blocks: 154.195.164.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 83163 (0x144db)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 24 09:20:00 2025 GMT
Not After : Feb 28 09:20:00 2025 GMT
Subject: CN=67935b43-6d6a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:05:02:72:a3:bf:e1:75:cd:2b:a2:3f:f7:4a:
49:33:b2:1d:3f:a2:6a:01:7b:5f:83:5a:1f:29:37:
59:57:bb:1f:9a:57:4a:6b:47:d9:49:42:af:4a:f5:
a7:7e:cc:6b:ce:2e:fd:e4:f5:ad:8f:be:cc:11:67:
e0:88:0b:a8:82:42:d8:f2:50:68:88:4b:32:ca:71:
68:b7:49:6a:84:f2:97:ba:ee:fe:9a:65:23:d8:c0:
9b:55:e7:e4:d7:ea:76:7a:27:f9:b2:04:70:ea:62:
84:5c:d3:1c:e5:4e:a7:59:b6:91:48:53:f2:bf:91:
00:c5:67:2c:f6:ef:46:e7:6f:de:e1:da:8d:f2:80:
8d:31:9d:0c:8e:71:17:36:e8:b9:40:24:17:2a:0a:
80:0d:8e:c7:c3:bd:e2:2a:80:6e:7e:e7:96:27:71:
be:d6:34:f5:7a:71:65:dc:16:a5:74:eb:47:11:68:
69:07:e1:a6:db:86:d7:1f:d9:d2:10:8d:f8:ff:f5:
f2:65:c1:d0:64:16:b2:8e:b3:28:bb:a5:3a:91:b0:
1a:a9:bf:1f:ac:b5:de:1b:bc:b1:78:23:80:ce:c2:
6f:ab:ce:15:ba:7a:40:d2:5d:37:41:6b:3e:17:ba:
fe:28:de:17:43:1e:37:c8:32:ae:76:b9:4a:81:46:
25:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:4C:03:DE:4F:00:FC:81:D2:D5:EC:56:5D:9E:17:27:30:28:83:7C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/647A8F96DA3411EFAB189797762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.195.164.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:9f:c8:d1:e5:cb:ca:1c:8f:c0:d3:28:b8:93:cc:f3:e3:b1:
2b:28:5d:97:42:b2:66:9f:62:34:8d:43:90:09:4e:66:cf:24:
2c:dc:f0:3e:23:48:e9:05:10:41:48:0d:ca:22:e7:84:08:43:
d3:67:0a:15:c3:0a:63:83:12:92:72:89:f3:b2:9b:82:69:2e:
3a:f4:2c:7f:74:58:b0:f4:9a:c5:c0:fc:e2:69:d9:58:2e:dc:
d6:09:e5:56:2e:2c:c4:3e:6e:8c:f2:81:c8:2c:e6:1a:b1:ea:
c8:99:23:93:fc:ec:fa:3c:1a:1a:f1:88:3a:36:be:d9:e5:2c:
c7:12:f7:ba:bd:e1:c7:35:cf:38:96:17:50:6a:64:a4:f7:77:
fe:f2:89:ae:56:89:ae:32:a0:3f:f8:1d:66:d0:29:06:ec:e2:
40:4f:4e:d7:f9:cc:c9:14:27:8f:1b:6f:a7:ae:85:0d:67:cd:
b5:96:74:c8:cc:7b:a8:5a:40:6f:1f:17:6d:9d:db:06:c8:0f:
d0:c8:4b:e0:b1:a9:96:1b:a1:41:dd:71:c2:99:b2:45:96:12:
39:fd:62:bb:cc:02:88:04:12:31:b2:1a:94:79:81:81:93:9e:
c2:4a:fb:5c:d5:21:5c:8a:09:7c:a4:94:8f:1f:55:cf:6b:a1:
e5:11:79:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 09:47:25 2025 by rpki-client