Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/66F7BF30D9D711EFA0E61098762E951A.roa
File: 66F7BF30D9D711EFA0E61098762E951A.roa (raw, json)
Hash identifier: nP2cs/DlRY9NbAa1Q812J90nlLP8BynRmwPMpwwYbVY=
Subject key identifier: 24:43:1F:1D:55:BD:14:52:00:7D:03:C8:EE:BB:02:3C:05:82:C8:AB
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01433F
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/66F7BF30D9D711EFA0E61098762E951A.roa
Signing time: Thu 23 Jan 2025 22:14:24 +0000
ROA not before: Fri 24 Jan 2025 22:14:20 +0000
ROA not after: Sat 01 Mar 2025 22:14:20 +0000
asID: 44559
IP address blocks: 154.205.230.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 82751 (0x1433f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 24 22:14:20 2025 GMT
Not After : Mar 1 22:14:20 2025 GMT
Subject: CN=6792bf40-e3a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:d4:63:3e:fa:f9:77:f9:d3:89:8f:13:0f:8c:
67:a2:52:55:c0:e2:15:93:8e:e7:58:99:2d:38:8f:
ca:47:9f:39:1a:d8:71:f3:ba:84:04:95:93:51:e5:
79:45:29:53:94:d7:36:63:dd:91:85:1f:6f:e4:23:
bd:eb:f9:7a:e8:18:2b:44:6e:3b:6d:ca:5a:cf:be:
90:f7:f8:c8:ca:8c:79:27:ca:52:d9:46:41:28:24:
1e:a5:87:79:bf:9d:41:7a:65:ba:05:db:ec:bd:80:
ba:04:c2:79:ad:94:cd:33:ce:f7:52:ae:bb:b1:25:
d1:9e:fd:4d:24:c7:e0:59:c6:c0:28:e8:f0:00:ba:
18:1c:b3:71:26:7a:1c:d9:8d:59:57:b7:16:4a:14:
e9:a0:5f:4b:c9:38:07:ac:3b:f3:e8:1d:cb:bb:7a:
2b:05:6f:4b:73:97:98:cb:80:b0:41:83:34:c5:30:
9f:b5:c2:8e:9f:e7:37:37:f4:69:c3:85:4a:73:63:
ef:be:fa:22:d9:a1:c0:c6:38:ea:8f:cc:18:c0:bb:
4b:ed:7a:10:dc:b8:2d:78:73:45:47:e4:10:5d:bf:
76:e6:cb:55:30:21:08:88:dc:88:6a:a6:43:02:b7:
03:f5:c9:53:9a:2c:e4:33:11:a8:25:89:eb:ad:d7:
ae:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:43:1F:1D:55:BD:14:52:00:7D:03:C8:EE:BB:02:3C:05:82:C8:AB
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/66F7BF30D9D711EFA0E61098762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.230.0/24
Signature Algorithm: sha256WithRSAEncryption
ad:97:58:99:ac:84:69:6a:f0:f9:69:5d:22:21:9d:7c:cf:09:
41:41:be:ce:f5:e1:2d:f3:4a:1b:6e:fa:44:6a:32:b9:10:a1:
4e:ba:73:21:b7:47:22:c1:0a:3a:08:fb:19:49:2c:65:1a:c6:
86:7c:10:19:e3:a0:7c:13:11:1b:eb:01:fe:cb:05:12:e6:cd:
24:ac:d0:bd:88:71:0e:3e:31:3f:73:66:03:97:44:cb:08:49:
59:e2:4f:b0:b1:09:0a:32:94:0d:47:15:4c:ae:58:5e:ca:ba:
9a:9b:be:04:5c:ea:cc:e7:8c:41:dc:ed:00:e9:9c:0f:d2:67:
85:ad:1c:77:a9:0c:b2:cf:c8:62:82:a3:0c:48:cc:43:c7:4e:
3a:12:ba:55:a4:ad:40:97:24:d4:5c:d5:7b:52:c6:db:cb:36:
6f:22:a1:62:f7:50:72:26:12:16:da:a8:fe:ce:08:a4:06:f8:
f5:56:30:04:f2:7e:ac:0c:7d:b4:c5:24:9d:8f:48:6e:92:af:
27:bf:17:d7:f1:ac:25:56:c4:04:e8:01:f0:fd:14:a4:a0:2d:
81:08:48:21:11:ef:a6:a9:cc:d6:ab:d0:8c:43:a8:5f:98:05:
50:55:a9:c6:38:cf:08:19:39:c9:b7:f0:ae:a1:83:7b:4e:c9:
25:c5:9d:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 20:34:55 2025 by rpki-client