Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/647D685EDC7F11EF980EEF97762E951A.roa
File: 647D685EDC7F11EF980EEF97762E951A.roa (raw, json)
Hash identifier: dOdgpM/6woWPBKrVJvszvccgi7NCGlkXCsAbi1XEqTQ=
Subject key identifier: C7:8A:90:AE:94:CB:B2:8E:BD:20:30:44:5A:55:53:A4:BA:F6:4B:00
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 014B63
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/647D685EDC7F11EF980EEF97762E951A.roa
Signing time: Mon 27 Jan 2025 07:21:58 +0000
ROA not before: Mon 27 Jan 2025 07:21:54 +0000
ROA not after: Sun 09 Feb 2025 07:21:54 +0000
asID: 55933
IP address blocks: 154.198.128.0/19 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 84835 (0x14b63)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 27 07:21:54 2025 GMT
Not After : Feb 9 07:21:54 2025 GMT
Subject: CN=67973416-8348
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:4f:51:9c:90:9a:fd:cf:fb:29:a4:6f:5e:ea:
86:29:f0:93:de:8e:a4:29:a2:09:fe:e2:eb:60:67:
ef:cc:49:ba:51:7f:b4:b9:97:ef:27:27:c2:7c:6c:
21:67:62:5d:7b:a3:df:29:36:61:1f:19:29:82:ad:
7b:02:57:6e:a6:2b:fd:11:78:f8:c0:9e:20:43:27:
3e:8a:4a:fb:4a:8c:fa:46:c0:b1:72:fc:27:5e:0f:
c2:68:3e:0b:8d:86:35:40:c3:1d:a4:42:35:ce:16:
bb:90:7b:74:12:fd:f0:e1:7c:c3:de:f3:b9:fb:90:
55:53:69:4f:60:28:26:7a:a5:33:e4:b6:ef:41:ff:
1b:de:d5:a5:0a:54:37:ff:b0:3b:38:8d:ff:de:8f:
ca:58:0f:5d:bb:b7:0d:09:ad:5d:13:97:f4:bb:e6:
62:86:56:68:bc:12:a3:f9:36:34:1b:c6:4e:3d:10:
d8:78:cb:a9:5b:ae:e2:d4:97:f2:e4:4c:7d:84:f5:
07:ee:c8:a6:39:c9:57:6f:92:e6:76:1f:dd:f4:fd:
42:41:94:bc:b1:32:5c:03:ad:93:97:e3:01:bd:5c:
f3:94:06:3b:22:0e:16:2d:34:a9:99:ad:ad:08:29:
a1:08:df:81:76:f3:3d:0d:7e:f7:ae:ff:13:ea:9a:
91:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:8A:90:AE:94:CB:B2:8E:BD:20:30:44:5A:55:53:A4:BA:F6:4B:00
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/647D685EDC7F11EF980EEF97762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.198.128.0/19
Signature Algorithm: sha256WithRSAEncryption
11:eb:f0:b5:e7:a6:2d:01:1b:dc:84:c8:b3:37:fb:7e:c8:bd:
bb:8c:b6:4a:cd:5e:be:f5:98:f9:6a:9b:79:80:90:e3:8d:97:
01:96:4d:a1:10:35:1c:ed:6f:a0:9c:cd:89:3a:d2:c3:ed:16:
7e:25:0a:71:4f:da:2b:ba:f5:56:1c:33:be:d4:34:26:48:2b:
d4:dd:c8:12:15:8c:d5:c8:ae:d0:c1:73:a3:b9:9c:b0:10:37:
a3:c3:99:bb:a7:4d:a3:20:b4:59:57:98:c0:9b:04:be:94:fd:
37:27:ce:15:59:95:eb:65:2c:48:d8:38:8e:6a:51:c1:c9:0f:
31:7b:64:cd:0d:3e:01:25:fd:3a:95:73:1b:fa:ec:cf:3a:32:
aa:c3:62:54:03:38:a3:6b:c5:20:38:56:e5:1b:e9:27:e7:39:
f3:09:9c:43:9a:50:e2:92:55:e1:2c:d2:36:f5:43:f0:28:53:
2b:52:f6:6d:ed:61:2f:65:07:72:f9:f1:e1:9c:8a:0a:eb:76:
29:b2:cd:b8:4c:ae:5a:66:d9:3a:df:16:f0:9f:7c:48:3a:39:
7f:6c:92:7a:ed:85:74:a6:3d:4c:9b:3c:65:c7:85:14:b4:8d:
52:72:de:0f:d7:04:d8:1a:da:52:19:4e:44:19:b7:1e:e9:54:
d6:b7:6d:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 11:35:00 2025 by rpki-client