Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/66188DACD8A511EF89302099762E951A.roa
File: 66188DACD8A511EF89302099762E951A.roa (raw, json)
Hash identifier: 3ra+YsF2gkmD+wfcKB8hDR1kH0EPZkRoOl1fLLwdWvc=
Subject key identifier: F3:71:D1:52:53:EF:04:F8:24:9F:EC:ED:98:DF:0A:6E:D6:27:4C:98
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 013E94
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/66188DACD8A511EF89302099762E951A.roa
Signing time: Wed 22 Jan 2025 09:43:57 +0000
ROA not before: Wed 22 Jan 2025 09:43:53 +0000
ROA not after: Tue 04 Feb 2025 09:43:53 +0000
asID: 395886
IP address blocks: 154.201.88.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 81556 (0x13e94)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 22 09:43:53 2025 GMT
Not After : Feb 4 09:43:53 2025 GMT
Subject: CN=6790bddc-54a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:69:bd:78:66:37:8b:43:cf:3a:96:9c:11:13:
5f:9b:23:99:e3:b7:5d:c6:fc:e8:50:f9:eb:74:a4:
69:34:84:b1:06:c0:37:61:0f:e2:61:e9:87:a4:c8:
5a:47:72:3b:10:36:af:a0:1c:83:ad:06:52:c6:5c:
79:15:f7:f7:2a:e1:ee:09:19:11:a8:c4:a5:22:9d:
b1:4f:d8:ca:ab:b1:3b:ac:cd:87:5f:fb:e8:30:ba:
22:00:c3:18:3e:d1:16:9a:84:ff:03:ed:a0:9c:ee:
e3:97:dd:af:0b:bf:8a:e3:89:56:13:88:a7:8a:ff:
d1:bd:9b:94:ba:1e:ff:21:28:e5:e2:d3:cb:c7:a4:
bd:76:51:9a:bd:e0:74:a0:cd:34:de:c9:66:17:36:
7d:ee:b4:a2:37:5b:89:52:c0:65:46:28:b8:e3:8f:
88:9b:ed:9a:18:f7:03:a8:fa:75:5a:f4:71:16:52:
b6:1e:d6:cf:d4:8a:af:92:18:fd:58:07:de:c7:d4:
e4:43:84:f0:d4:5c:3c:b3:f7:bd:75:03:14:9a:81:
bd:30:7f:d0:87:5f:3e:d5:cf:98:36:8d:5e:34:fe:
dc:71:0a:8f:f4:90:81:21:75:56:b8:59:a7:df:e5:
96:12:d3:f4:91:19:6d:07:32:2f:44:9d:14:55:db:
3f:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:71:D1:52:53:EF:04:F8:24:9F:EC:ED:98:DF:0A:6E:D6:27:4C:98
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/66188DACD8A511EF89302099762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.201.88.0/22
Signature Algorithm: sha256WithRSAEncryption
54:7a:80:80:0a:48:bb:fe:ca:73:a7:14:87:3b:6d:ae:05:f8:
b2:ee:86:29:8a:b2:5e:b1:b8:12:49:b6:83:52:ec:f5:be:5a:
8f:a9:bd:36:5d:29:75:fb:82:a6:40:b2:f6:44:87:0e:70:d6:
43:03:fd:2b:eb:18:a4:aa:42:98:04:dd:2b:b3:a1:d4:d7:ee:
6f:12:6d:16:64:57:f9:42:84:6f:c7:f9:72:94:45:3d:50:30:
94:3d:cd:9c:0c:9b:20:47:ef:58:57:38:5f:be:1e:ca:b7:04:
35:89:93:c8:9d:3f:09:45:10:da:d6:81:5e:32:6c:1f:4d:fb:
cc:0d:e5:ca:61:52:39:d5:c7:b0:6d:4e:97:41:6f:f3:54:1f:
39:c5:e8:a0:eb:ce:85:de:39:4a:13:76:86:d4:a5:ed:27:04:
5d:e9:04:4c:e0:20:ad:74:13:1a:32:0a:64:30:4d:dc:85:9d:
46:fc:ad:29:97:67:13:54:fb:9d:53:5c:37:7d:b9:52:7b:52:
94:3b:a1:76:a0:4d:1d:b1:2f:f2:d8:b1:35:f0:d5:0b:9f:53:
40:2f:c6:b8:99:94:5d:49:d4:32:9b:93:ad:a1:f8:fc:02:ee:
b7:b7:86:6d:73:1b:3c:6d:d6:7e:9b:46:b2:11:17:c0:0a:ec:
9f:a4:e5:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 22:47:25 2025 by rpki-client