Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/65DC0884D8BC11EF9E4B59B2762E951A.roa
File: 65DC0884D8BC11EF9E4B59B2762E951A.roa (raw, json)
Hash identifier: HCZ6osmLc9cGns5/ROozJp1fSiZvbEFN+Sz+uXQZWOA=
Subject key identifier: BC:97:03:F7:C5:BD:89:8B:D9:6E:7F:07:7A:E4:6A:58:DA:73:D6:80
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 013F3E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/65DC0884D8BC11EF9E4B59B2762E951A.roa
Signing time: Wed 22 Jan 2025 12:28:35 +0000
ROA not before: Wed 22 Jan 2025 12:28:31 +0000
ROA not after: Sat 08 Feb 2025 12:28:31 +0000
asID: 18229
IP address blocks: 154.210.133.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 81726 (0x13f3e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 22 12:28:31 2025 GMT
Not After : Feb 8 12:28:31 2025 GMT
Subject: CN=6790e472-2083
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:83:69:c6:a4:16:55:15:52:de:74:b3:fc:00:
80:94:e0:3c:2f:12:2b:74:b2:f9:43:d4:3f:40:47:
08:7c:4d:33:d0:7e:4c:80:34:18:c4:50:30:82:87:
6c:1c:c7:a7:a3:a5:77:c6:07:1d:4e:56:23:6b:da:
86:d4:d0:16:3e:46:97:7e:2a:6f:23:14:54:b1:83:
b2:29:76:60:c2:bf:4e:47:17:07:a6:38:ed:8e:96:
f9:24:f8:51:e3:ab:ac:92:00:3e:96:ee:78:e0:ec:
c9:97:2d:c5:e2:7a:9f:94:1c:43:ca:7e:01:54:99:
d3:ea:e4:ed:86:5c:4b:93:80:29:ff:de:0f:6b:96:
6a:ba:2a:41:80:29:4b:ae:a1:3c:e1:36:71:3b:b5:
65:7e:2f:0d:ad:43:bc:a4:0a:3f:60:4c:76:9f:7b:
cb:e5:fb:68:ff:eb:38:4a:fc:55:0e:f7:87:84:17:
9b:bc:de:1b:20:1d:35:66:d4:b6:8f:4a:c4:10:8f:
ae:56:79:09:0c:6c:ed:8e:6f:a1:24:bb:a8:27:02:
b6:ef:e0:57:bb:5a:38:63:ec:7f:a6:5d:80:e2:04:
92:f0:3d:ae:14:ab:6c:31:b4:c7:a6:ce:95:7a:5c:
69:6b:c9:55:27:d8:ad:2d:8e:2d:bc:56:67:ed:ba:
a9:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:97:03:F7:C5:BD:89:8B:D9:6E:7F:07:7A:E4:6A:58:DA:73:D6:80
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/65DC0884D8BC11EF9E4B59B2762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.210.133.0/24
Signature Algorithm: sha256WithRSAEncryption
a0:f2:48:ae:d9:d1:4d:05:f0:6e:6c:f3:b6:cc:f9:83:ea:49:
56:d9:b8:47:10:bd:c2:9a:2c:0a:07:2e:71:1a:ab:91:cf:39:
ad:bf:74:89:0b:3c:86:17:93:66:15:63:41:20:0f:11:23:90:
0b:12:c5:b9:77:9a:a2:b6:c1:af:ca:a5:06:e2:4a:b3:57:45:
57:ba:f6:38:8b:b2:af:41:c6:be:a9:72:8e:3d:0d:48:31:39:
c9:8e:9d:70:46:0d:2f:3c:f4:3e:91:86:2d:da:da:37:f4:38:
0d:2d:b1:27:a8:bd:3a:6c:9c:a4:92:ae:82:f3:96:3c:94:df:
c6:68:43:f2:12:3b:2b:fc:4b:d4:4e:1a:70:15:7b:db:3b:27:
68:29:5f:0b:80:82:01:c6:3f:a0:ff:e4:d1:de:6d:2f:4e:77:
9a:ec:a8:52:f1:b4:e0:4e:85:2f:33:69:4f:89:d8:fe:df:9f:
16:26:66:04:26:33:9c:6d:9d:c6:de:55:61:ab:5b:59:51:9b:
bf:a1:3a:07:10:81:92:a7:bc:3f:9d:a8:ca:d0:18:e7:14:61:
27:0d:83:63:91:54:bb:3b:2d:0b:5e:a6:1c:14:ad:67:f2:fa:
23:11:40:67:98:12:46:77:7f:f7:06:23:8b:af:07:16:a1:68:
88:26:f5:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 16:45:55 2025 by rpki-client