Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/67B1780EDB2511EFABCB5278762E951A.roa
File: 67B1780EDB2511EFABCB5278762E951A.roa (raw, json)
Hash identifier: 5YpmV50myNpFHSCZeoL62N/IsNp3ZztyU1pU2GrDNPE=
Subject key identifier: 16:FB:10:48:5C:66:D4:D9:29:49:93:4D:3D:52:F9:DD:DF:A7:D8:4C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0149BB
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/67B1780EDB2511EFABCB5278762E951A.roa
Signing time: Sat 25 Jan 2025 14:05:17 +0000
ROA not before: Sat 25 Jan 2025 14:05:14 +0000
ROA not after: Tue 04 Feb 2025 14:05:14 +0000
asID: 5065
IP address blocks: 154.207.164.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 84411 (0x149bb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 25 14:05:14 2025 GMT
Not After : Feb 4 14:05:14 2025 GMT
Subject: CN=6794ef9d-9c29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:56:81:fd:00:e8:b0:9a:ed:d9:c4:1d:77:d1:
76:d9:de:06:b4:bc:d0:5a:35:e7:72:23:f0:09:17:
5a:c9:43:42:14:9d:b0:21:b9:60:9c:41:92:ed:25:
5f:83:d8:d0:ae:4b:50:23:c7:b4:71:9c:e8:97:58:
45:6d:2d:79:87:d1:88:ff:25:3c:06:2d:3f:ea:c5:
a6:33:91:16:ee:70:7a:e7:55:16:c6:be:d8:4a:1d:
70:99:8c:91:fc:aa:16:6e:ef:01:8a:cd:6e:3d:dc:
db:02:c8:ed:dc:be:3f:72:66:b1:e4:76:7b:3a:ba:
ba:70:92:37:c7:08:8a:a2:39:df:de:7b:ed:2e:30:
4b:7d:02:86:fa:25:ff:39:5c:03:d6:e2:a1:97:59:
36:2b:a0:84:b0:57:b3:19:48:a5:83:44:6f:ed:74:
15:2b:d9:e8:df:fb:28:57:71:af:a6:9a:19:96:7d:
f5:18:e5:6f:1c:b7:48:7c:7d:e6:bc:0a:63:e1:35:
a4:99:af:61:ac:9c:b6:7a:9d:40:f1:97:80:cd:df:
fc:c1:50:6d:b4:5f:35:45:48:63:95:16:8f:9f:67:
87:33:ac:5b:06:60:fa:17:04:e2:f4:da:0c:71:76:
6d:00:b1:60:ca:eb:3a:28:d1:67:04:40:5a:6d:2a:
6b:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:FB:10:48:5C:66:D4:D9:29:49:93:4D:3D:52:F9:DD:DF:A7:D8:4C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/67B1780EDB2511EFABCB5278762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.207.164.0/22
Signature Algorithm: sha256WithRSAEncryption
14:63:bf:c9:e7:4e:cb:74:d8:0b:c6:75:79:85:3f:60:ed:99:
f1:9e:34:ae:c6:70:6b:0d:16:20:ff:dc:a7:88:5f:b7:52:4d:
a0:f5:97:3b:fb:85:6c:be:2f:a9:61:3c:1d:6b:c9:4e:02:a2:
9b:58:fa:de:d0:b3:33:e6:fd:cd:48:10:d5:dc:2d:86:ac:2f:
c8:a7:6b:33:53:66:f9:ff:0c:21:70:e4:40:cf:70:4f:77:c3:
09:4c:7c:fd:ba:17:7d:49:70:42:a6:dd:86:15:38:3a:72:d5:
33:0c:48:e3:f0:1a:84:2a:55:59:cc:1d:bf:8f:63:18:58:6c:
ce:dd:0a:26:a6:c2:aa:c1:c1:f0:85:ab:f3:24:70:e9:cf:7e:
7c:04:53:13:6f:2e:fb:c9:f4:cb:b4:27:84:a3:87:0f:a6:2b:
cf:66:7d:b4:6c:c7:52:d9:c1:46:3e:e1:d3:44:d9:8c:db:b0:
68:48:b1:78:e8:a7:63:d8:ad:06:48:b1:22:f3:e9:70:ae:85:
9d:78:53:6f:ee:25:7f:17:86:f7:80:16:66:8e:2d:11:45:fd:
a0:20:08:a4:87:a3:8c:47:ea:7a:de:4b:56:ec:72:99:b9:40:
12:59:44:b1:3d:50:44:10:5e:dd:70:3e:3d:67:1a:0a:bd:c1:
06:57:d8:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 10:19:04 2025 by rpki-client