Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6FCFB780C36011EFB8F8EB80762E951A.roa
File: 6FCFB780C36011EFB8F8EB80762E951A.roa (raw, json)
Hash identifier: FxmK6V8GJCJqgIEDp+SFq+AuTg2MW5/+qgdGbKVRMvo=
Subject key identifier: 1A:91:E6:3D:CA:90:97:7F:F5:66:3F:E0:4A:D2:57:76:23:BC:40:1B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 012646
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6FCFB780C36011EFB8F8EB80762E951A.roa
Signing time: Thu 26 Dec 2024 08:07:23 +0000
ROA not before: Thu 26 Dec 2024 08:07:20 +0000
ROA not after: Tue 04 Mar 2025 08:07:20 +0000
asID: 138915
IP address blocks: 154.93.74.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 75334 (0x12646)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Dec 26 08:07:20 2024 GMT
Not After : Mar 4 08:07:20 2025 GMT
Subject: CN=676d0ebb-d4f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:b3:03:e4:0d:f8:d5:dc:91:5c:73:4e:e4:cc:
7c:d5:24:e7:e4:bb:ca:7d:d8:c7:28:cc:4f:52:5f:
30:a9:bb:cb:56:36:04:da:95:67:72:42:73:11:23:
1c:65:bd:8c:ca:ac:4f:2a:14:55:db:3c:e1:51:fe:
1c:75:6e:58:0e:7e:e6:dd:cd:68:58:9d:99:1e:15:
7d:18:4a:c7:97:6f:3c:d5:65:7e:1c:38:ea:cb:7e:
d6:4b:ed:d7:24:2c:97:a7:ac:bc:79:f8:7b:db:41:
3a:7e:3c:f3:79:6c:e1:6d:01:90:c4:90:6c:c2:4c:
01:ae:7b:c2:c8:31:7e:82:e8:87:4e:cb:7d:91:ed:
11:44:8f:6d:29:bb:c5:73:d5:d8:ff:c2:ab:a6:01:
18:b5:0a:8a:6f:a3:95:3f:8c:bd:79:97:84:e9:b7:
2d:95:f8:9c:96:b0:da:a6:8a:62:21:06:43:6b:0e:
6b:a7:35:6a:e4:30:4a:ca:b6:04:76:35:92:bb:2b:
bc:06:5f:f7:c8:e5:d8:ec:03:41:7a:40:44:a2:c4:
85:11:1c:49:04:b6:10:1d:e7:18:ae:2f:56:39:14:
95:92:3f:9b:0a:4b:aa:fe:63:0b:9c:4a:3b:6e:a5:
4a:ee:0d:f7:89:cf:6a:06:75:a1:fe:fe:43:df:28:
b4:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:91:E6:3D:CA:90:97:7F:F5:66:3F:E0:4A:D2:57:76:23:BC:40:1B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6FCFB780C36011EFB8F8EB80762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.93.74.0/24
Signature Algorithm: sha256WithRSAEncryption
73:38:88:d1:19:3f:64:11:8f:29:e7:68:98:89:39:a0:30:4e:
24:18:03:5e:50:43:80:c6:0b:b3:47:f9:97:4b:dd:69:8f:ef:
a5:7c:10:93:b5:16:bf:ad:0c:f4:2b:4a:5b:7c:5c:1b:fc:e8:
63:22:22:f4:3f:99:ef:37:7a:cd:45:97:65:13:bc:0a:0e:45:
36:ba:dd:31:61:16:51:f2:45:cf:b5:97:0f:1a:85:41:18:da:
d8:1b:54:6e:91:33:33:37:43:40:65:4f:18:a8:d9:af:4b:67:
32:9e:bc:fa:a6:26:1e:59:f6:24:3d:9e:40:23:41:c4:fc:4a:
43:93:80:ac:d4:19:54:73:8f:cc:dd:c7:92:d0:aa:86:c4:d6:
11:fb:44:be:7e:35:d4:a1:3d:db:65:f3:bf:4f:84:12:ba:7e:
40:c4:0d:de:e8:cf:eb:4a:53:a4:d6:9f:e9:c0:61:b0:66:0a:
fe:7c:bd:5a:80:93:9f:24:0a:8b:8b:0d:0c:e4:df:4a:8c:cc:
64:18:75:81:4c:a6:59:98:1b:88:02:d6:0a:be:04:91:fa:b0:
6b:f3:61:75:0f:3e:34:33:3a:76:c3:b0:1f:16:70:8f:06:34:
38:51:67:76:11:bc:2e:63:1c:40:80:98:04:6b:33:97:ef:c9:
af:d3:88:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 04:00:46 2025 by rpki-client