Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6B929604DA6E11EF9264EFA0762E951A.roa
File: 6B929604DA6E11EF9264EFA0762E951A.roa (raw, json)
Hash identifier: lNdndcDi2h3oHpiPP1ZFkelt9XUGfsTwcSNx1S6RsvA=
Subject key identifier: 5D:21:8D:8E:AB:75:95:D7:C4:51:69:0B:3A:8D:35:B8:AD:44:0D:0C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0148E0
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6B929604DA6E11EF9264EFA0762E951A.roa
Signing time: Fri 24 Jan 2025 16:15:26 +0000
ROA not before: Fri 24 Jan 2025 16:15:22 +0000
ROA not after: Mon 03 Mar 2025 16:15:22 +0000
asID: 203020
IP address blocks: 154.223.137.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 84192 (0x148e0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 24 16:15:22 2025 GMT
Not After : Mar 3 16:15:22 2025 GMT
Subject: CN=6793bc9e-b8fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:50:90:e5:84:2e:8f:a5:db:e1:0b:30:fa:e2:
be:20:ce:6e:39:0e:7a:f0:de:60:39:46:a3:17:de:
98:ca:7c:df:65:b5:b1:07:08:be:93:62:b7:d8:88:
a8:5f:9e:73:c2:30:c8:3e:a8:5a:35:fc:31:c1:9f:
f6:28:ed:52:81:82:f5:1c:d2:32:40:0d:c9:b9:10:
01:cb:94:38:03:25:23:e2:5a:11:95:3e:95:c7:34:
a9:3d:36:a4:45:55:37:45:20:27:35:3a:0a:85:fd:
6f:60:3a:a8:3e:bf:27:54:bb:63:52:d1:0b:9a:d7:
42:50:0f:9b:9a:96:41:a9:0b:0e:2b:4c:4b:80:2e:
f1:df:5b:be:68:07:a5:e0:66:9d:79:e7:94:75:60:
f3:c2:58:f3:41:d3:38:75:87:41:7e:b3:f3:e5:67:
19:c0:6c:16:48:69:0c:f2:9b:71:9a:42:6c:c0:fb:
93:67:da:02:05:ea:d0:c5:33:c0:39:f9:fb:f9:ac:
9f:5a:03:0e:a8:b9:28:8e:4c:8b:75:49:24:e6:86:
36:87:69:5a:fa:d5:cf:19:d6:56:02:31:28:79:14:
c6:3e:23:2c:9f:8c:6f:a2:1b:4a:cc:e5:b5:69:fa:
2b:f8:af:c5:02:b0:e3:6f:a6:ef:aa:fe:80:7e:8e:
b7:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:21:8D:8E:AB:75:95:D7:C4:51:69:0B:3A:8D:35:B8:AD:44:0D:0C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6B929604DA6E11EF9264EFA0762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.223.137.0/24
Signature Algorithm: sha256WithRSAEncryption
35:86:11:db:cb:39:74:0d:c9:80:b0:47:f3:33:43:53:5d:0a:
8c:ee:fd:ea:4a:24:53:9e:db:04:89:5c:4f:dd:63:05:8b:e2:
9a:90:48:a6:d5:6f:bc:b0:3b:f2:b3:28:21:1e:e5:d6:97:73:
a7:c5:b7:00:26:e0:a5:2d:41:97:42:d8:9a:52:3c:70:cb:84:
0b:a1:b2:f8:f5:d9:23:33:ed:94:c5:78:eb:a8:09:2c:d3:ed:
f7:b1:80:bc:42:98:1d:b2:7f:a0:f7:d2:49:af:b0:85:bd:82:
97:59:d3:80:f9:ef:e1:a1:c2:32:23:37:c5:1d:63:5f:0b:cc:
d1:a9:d5:b3:9c:c1:2f:13:97:9d:fb:99:d2:dc:98:ba:91:62:
18:4a:ce:85:3b:11:86:f9:ae:9a:77:f7:86:8f:7d:2c:25:17:
43:37:56:ca:dd:56:c2:02:0f:98:90:86:15:b2:6e:38:62:ba:
9c:df:a9:fa:c2:21:26:97:16:8c:0f:a0:2e:e4:c4:eb:ed:17:
db:da:11:db:59:3e:82:77:d6:04:06:45:4f:c9:7f:0c:f3:08:
1a:16:6f:59:16:bd:ca:2b:25:c8:72:d0:33:b5:45:60:f7:73:
4f:e6:de:f4:6e:5f:7a:02:36:c6:61:88:7c:71:5a:bd:e8:c5:
8e:37:83:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 21:43:02 2025 by rpki-client