Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6DFB8630CF2411EFA345955E762E951A.roa
File: 6DFB8630CF2411EFA345955E762E951A.roa (raw, json)
Hash identifier: l0RRBqlvrkWlLwYTfadWb+CgmvjfT1TbDF+tnVQt/nY=
Subject key identifier: D3:B7:FC:B9:D6:37:F6:46:82:9F:9A:00:14:2E:FE:1A:F6:C0:FF:44
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0139A7
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6DFB8630CF2411EFA345955E762E951A.roa
Signing time: Fri 10 Jan 2025 07:28:04 +0000
ROA not before: Fri 10 Jan 2025 07:28:01 +0000
ROA not after: Fri 14 Feb 2025 07:28:01 +0000
asID: 394432
IP address blocks: 154.196.192.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 80295 (0x139a7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 10 07:28:01 2025 GMT
Not After : Feb 14 07:28:01 2025 GMT
Subject: CN=6780cc04-9e96
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:40:de:5c:3b:54:59:63:8e:bf:b9:64:b8:61:
47:15:f7:ca:ad:7e:3d:44:fe:7b:d7:58:1a:a3:79:
5a:9e:71:74:99:e7:6a:2c:5c:3a:e5:f2:fd:3f:7e:
23:1d:3f:d2:a3:31:1a:89:65:34:4e:bd:fd:46:64:
4e:76:81:0e:12:08:60:9d:46:40:5a:b8:7a:d6:02:
00:52:59:34:cf:f7:d9:22:02:99:25:bb:3a:b1:e9:
1a:a6:d5:0a:23:05:62:f1:d8:15:9d:f3:8e:ae:de:
38:99:38:3e:d5:36:c8:07:52:ac:13:e6:03:e6:71:
98:0c:cd:f6:61:12:57:68:5b:a6:94:3e:cb:26:e9:
c1:22:bf:86:c4:7f:85:86:ae:13:df:b3:f0:2f:3f:
64:57:e5:79:c0:25:cc:d0:de:7d:8d:9d:2a:53:ac:
39:1b:b9:84:9b:05:5a:86:f4:20:9d:84:2b:33:0d:
6c:5e:c7:cb:b6:0c:94:d8:dd:a7:b4:81:84:33:88:
01:ff:a0:29:ca:8d:8b:67:54:17:73:b1:b2:9c:1d:
db:0d:b5:f3:6b:65:39:fc:88:f1:43:a2:a6:0e:55:
48:fd:50:73:38:3b:56:2d:b7:b4:30:65:cc:f3:e1:
61:92:64:4b:ff:66:32:92:35:d3:ff:47:9c:c2:94:
da:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:B7:FC:B9:D6:37:F6:46:82:9F:9A:00:14:2E:FE:1A:F6:C0:FF:44
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6DFB8630CF2411EFA345955E762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.196.192.0/20
Signature Algorithm: sha256WithRSAEncryption
80:4b:d4:e0:08:3e:49:ee:71:dd:cf:59:9c:ea:9e:df:6d:65:
67:d0:c4:77:cd:b0:33:77:95:b4:3b:91:6d:40:4f:31:4d:16:
68:dc:d6:e1:69:74:9a:f2:1b:63:0b:a0:ef:f1:24:9a:32:ca:
17:05:d9:0d:ba:75:39:17:e9:7d:cf:c9:c4:7c:64:b0:1d:2d:
c6:49:00:3d:48:11:59:ff:fe:fb:26:bf:16:35:75:fc:06:c2:
be:90:a4:0e:c9:17:ba:4c:75:fd:8b:7b:c0:50:5a:7f:75:62:
16:b6:5b:63:98:a6:5b:0d:3c:6f:c5:3c:01:52:0c:59:56:78:
93:9f:46:c4:2d:98:57:72:e9:0b:3e:52:0f:c0:5f:19:d9:c7:
66:ca:50:7d:cf:39:81:30:0e:80:b4:4a:8c:b4:de:5c:7c:af:
10:65:66:95:b8:4c:64:ea:df:73:4b:9a:97:e1:e9:a7:0e:bc:
6b:52:f1:ba:35:69:fb:b7:7b:5a:60:85:f2:46:1f:c8:99:82:
14:74:4b:5d:78:2e:24:48:7d:28:f2:4b:be:3b:af:45:2b:2a:
ae:c2:4e:bf:fe:91:c3:1a:12:4b:c0:9d:f1:99:07:10:1c:2e:
e0:3b:6a:ed:f5:56:60:36:3e:8e:75:af:59:82:56:cc:ff:79:
55:74:44:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 22:45:13 2025 by rpki-client