Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/698EC3A0D51411EF8791B3AE762E951A.roa
File: 698EC3A0D51411EF8791B3AE762E951A.roa (raw, json)
Hash identifier: uqOzl3n/h+E2tbBahq9tQG7p9t3MkTMKmt95w6jltB0=
Subject key identifier: 8C:A8:A3:0C:48:7E:06:A2:4E:4A:72:6C:D1:3B:5A:FD:47:8F:8F:15
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 013D41
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/698EC3A0D51411EF8791B3AE762E951A.roa
Signing time: Fri 17 Jan 2025 20:48:32 +0000
ROA not before: Fri 17 Jan 2025 20:48:28 +0000
ROA not after: Sat 01 Feb 2025 20:48:28 +0000
asID: 141883
IP address blocks: 154.216.128.0/18 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 81217 (0x13d41)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 17 20:48:28 2025 GMT
Not After : Feb 1 20:48:28 2025 GMT
Subject: CN=678ac220-1555
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:70:cf:c0:50:02:95:71:76:7d:ab:db:30:e2:
e2:fc:d9:c2:ed:4e:c7:21:95:79:a3:20:cf:2d:3f:
ca:b8:25:16:ba:b4:dc:4e:6d:11:9b:0e:09:d2:43:
3f:73:aa:60:40:77:33:bb:a3:30:ac:d5:0d:37:d8:
c9:c7:2d:8c:4c:13:50:2d:86:cf:77:d4:af:9f:72:
e3:db:3a:d6:cf:b4:61:d6:7c:25:ce:8b:a5:93:2a:
ad:4e:05:21:8c:a2:fe:00:76:20:ad:43:ce:cd:6f:
9f:70:e6:e7:88:60:0f:ff:23:ac:c3:fe:b7:a1:de:
30:5d:2b:c1:38:02:79:44:bc:81:f8:eb:c0:e9:91:
ca:5b:4a:2b:89:df:70:65:f8:90:14:32:13:79:a6:
46:34:23:e8:0b:26:4c:af:69:91:f8:bb:74:96:5d:
fb:03:b2:d8:04:bf:eb:3f:f2:61:1c:46:6a:f6:43:
cb:8d:a6:35:5f:b5:51:fb:d4:eb:98:23:42:da:d8:
9b:5e:e1:b1:0a:5d:06:eb:3c:a9:26:96:02:f3:eb:
92:6b:88:17:96:55:2e:5a:2e:39:53:a5:87:d1:1f:
66:3e:97:fd:09:bf:12:72:5c:2c:e5:1e:27:3f:d8:
ba:7e:ee:17:6f:70:a4:0c:ba:a5:58:ba:f5:81:4e:
49:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:A8:A3:0C:48:7E:06:A2:4E:4A:72:6C:D1:3B:5A:FD:47:8F:8F:15
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/698EC3A0D51411EF8791B3AE762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.216.128.0/18
Signature Algorithm: sha256WithRSAEncryption
3f:7c:be:db:96:b2:88:79:28:b1:ae:17:de:65:a7:dd:58:23:
c1:9a:6b:f7:fa:4a:8f:02:9d:4d:00:85:2c:32:6c:a4:01:0e:
ad:86:ef:e0:d1:17:82:b6:c2:c4:8d:8e:bd:30:7b:d2:3d:8c:
ec:3f:15:64:28:f1:2a:fb:4c:73:14:83:6e:dd:a3:eb:15:0a:
97:f7:ce:3f:0f:00:60:34:0d:62:5b:51:88:c5:17:4b:f7:72:
4e:32:15:20:dd:5e:bf:87:e7:98:db:bd:cb:ff:b0:46:2a:55:
72:18:42:dc:80:72:e5:1c:85:9f:2b:1c:e1:6d:32:a3:c7:9e:
80:49:69:66:5c:96:c7:37:56:a9:c9:47:22:94:e7:58:dd:bc:
58:10:e6:66:32:9c:01:c9:83:47:12:d1:ba:79:ee:11:6c:56:
42:c6:42:6e:40:e1:2b:ac:1e:4b:77:41:c2:c2:30:0f:43:d5:
f4:25:86:50:c0:bc:7d:c9:1b:21:5f:08:b9:cc:4c:45:77:b1:
f3:b6:29:99:6f:74:a6:18:84:50:33:ea:67:00:9d:26:78:95:
16:cb:e2:ea:db:e1:b9:c0:15:d0:19:99:9f:ca:b1:21:53:32:
ee:5f:c9:9b:93:27:d3:53:3d:cd:34:ba:5b:82:68:ad:ce:74:
84:6f:d5:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 16:45:20 2025 by rpki-client