Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6700BAC2DC0711EF96D75269762E951A.roa
File: 6700BAC2DC0711EF96D75269762E951A.roa (raw, json)
Hash identifier: abpUNOgd8eVDMPr2AqGyTJZtsSQL1AZ9ac44cWdett0=
Subject key identifier: 6E:BB:77:34:B3:E7:E9:13:15:6A:EF:3B:58:C4:D9:43:C2:BA:69:27
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 014B0A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6700BAC2DC0711EF96D75269762E951A.roa
Signing time: Sun 26 Jan 2025 17:03:02 +0000
ROA not before: Sun 26 Jan 2025 17:02:59 +0000
ROA not after: Thu 20 Feb 2025 17:02:59 +0000
asID: 142062
IP address blocks: 154.86.89.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 84746 (0x14b0a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 26 17:02:59 2025 GMT
Not After : Feb 20 17:02:59 2025 GMT
Subject: CN=67966ac6-f03c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:a8:29:1c:e1:82:59:b5:e9:94:d5:67:4c:85:
22:b8:e8:4a:ba:ba:80:81:00:c0:ec:96:bb:24:e8:
9e:32:58:8e:f8:92:85:5c:76:76:ba:33:71:08:6f:
ae:06:e7:ef:b9:bc:df:56:8e:91:28:48:13:e2:d2:
b9:eb:1d:65:1c:f5:7f:42:93:4d:07:f2:c0:a3:42:
73:12:85:87:88:2a:16:5d:35:ad:97:75:c4:0a:80:
71:58:48:06:20:50:41:20:8c:ca:62:c9:f5:35:c5:
32:1e:02:65:43:17:ed:50:cc:e7:12:e3:fa:44:d0:
ab:5e:b5:e6:e1:ee:a1:c7:bc:4f:f9:11:12:33:6f:
8b:64:63:1a:44:c3:86:48:a1:11:d9:c2:4d:4e:0f:
92:6b:61:63:56:54:30:29:8a:da:74:42:be:ee:3e:
87:f7:8a:e2:2c:f6:b8:03:99:88:08:da:42:82:b9:
e6:cd:91:2d:df:79:be:5e:70:3e:0c:ba:67:cf:cc:
33:a8:94:bb:cf:ae:8f:bd:21:85:86:e2:81:47:ef:
1e:5f:fb:be:ca:19:82:78:3a:f4:ea:fc:60:43:19:
d9:32:09:dd:66:d8:3c:d9:9e:74:20:e5:b9:08:da:
a3:9e:ab:0e:b5:9e:9b:06:79:c7:57:6b:0e:cd:51:
71:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:BB:77:34:B3:E7:E9:13:15:6A:EF:3B:58:C4:D9:43:C2:BA:69:27
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6700BAC2DC0711EF96D75269762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.86.89.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:c4:4e:7a:4b:da:a1:e4:99:44:87:7c:08:19:aa:bc:10:be:
c8:26:94:7b:c7:e5:c9:f0:e5:31:02:bf:cd:96:d3:8a:3f:8e:
86:5c:d5:82:74:4a:4a:30:96:37:c7:15:84:5d:26:69:ad:8e:
f0:9f:45:36:7f:dd:de:fb:e3:b3:be:6d:bb:b3:7a:94:07:4e:
45:bc:95:76:7c:f4:8d:ac:b4:93:14:33:ae:82:cc:3f:46:3c:
5f:ac:f9:68:8c:74:c0:96:50:bb:6e:a3:b5:33:7f:1e:68:66:
b7:25:c4:6e:9e:81:45:7c:b4:1d:f1:6f:28:ef:59:87:7a:e1:
b4:d0:84:9a:54:3c:ac:cb:84:3c:b8:78:c8:15:c8:1b:9c:58:
2f:e7:86:5f:da:66:16:9a:10:6f:e4:b5:42:20:be:df:76:e4:
32:de:25:89:bc:87:98:04:7f:fe:bc:cb:2e:d1:25:e8:d0:43:
2a:5c:dc:45:69:0c:7a:67:b9:e0:9b:cf:59:db:c3:fa:f1:25:
26:97:cd:fa:db:9e:2b:61:1a:f6:cb:9a:79:f6:0b:ea:a3:97:
62:9d:30:13:e3:8a:9f:10:41:4a:fb:df:66:5d:70:0d:d0:69:
3d:8e:da:ed:7f:d5:88:19:92:b0:fa:97:eb:96:f5:6e:08:52:
f7:59:4a:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 01:00:58 2025 by rpki-client