Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6FE544F4DB3111EF95F69249762E951A.roa
File: 6FE544F4DB3111EF95F69249762E951A.roa (raw, json)
Hash identifier: Ym+2bvuPUcdfRfXlm7y5QeNe+dhOGPhRvIqbdbOxfRE=
Subject key identifier: 89:B6:63:84:29:49:6C:03:F8:1C:46:D5:96:0B:3F:DC:08:E6:F5:CC
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 014A02
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6FE544F4DB3111EF95F69249762E951A.roa
Signing time: Sat 25 Jan 2025 15:31:25 +0000
ROA not before: Sat 25 Jan 2025 15:31:20 +0000
ROA not after: Fri 07 Mar 2025 15:31:20 +0000
asID: 63139
IP address blocks: 154.223.27.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 84482 (0x14a02)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 25 15:31:20 2025 GMT
Not After : Mar 7 15:31:20 2025 GMT
Subject: CN=679503cd-9c08
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:8b:8e:12:70:c0:db:fd:cb:a6:2a:04:43:ca:
b7:74:62:bd:cb:ca:a8:b1:3d:ed:b0:50:80:35:5d:
23:e6:4a:bc:f6:03:80:9e:0b:29:ee:dc:6f:a2:7d:
ff:78:16:ee:42:b3:91:2c:da:e5:8d:20:4b:25:40:
be:e6:b9:1a:03:bf:e4:8b:db:a0:aa:5e:60:a2:bf:
22:89:15:80:ef:32:04:34:a0:b2:bb:a0:e1:16:d2:
57:83:ee:6c:62:7a:db:78:51:15:55:d2:aa:a9:47:
5f:f8:c1:4b:72:5f:ca:8b:5e:07:07:a7:ec:08:d0:
68:64:29:c1:94:97:5c:56:f9:e8:c2:9b:da:c7:47:
a2:d1:6f:d9:9e:6a:2e:1f:c1:5b:2f:08:34:7a:3f:
21:5f:c4:07:f5:64:80:6f:9b:c2:b1:f1:c3:b8:db:
17:03:d9:37:78:9e:22:05:c1:4b:ae:1b:ea:c1:da:
52:43:a0:40:29:b5:bb:e4:d4:e5:bc:b6:0c:d1:1c:
46:79:3e:e8:10:a8:77:db:07:40:cc:c8:01:98:13:
3e:af:8a:03:06:92:fd:43:11:3c:f6:68:2c:de:dc:
cb:9a:8c:1a:e1:45:c2:3f:69:20:6d:31:7e:6c:65:
e6:cd:8f:6e:d3:cd:b1:43:52:8b:c6:ed:1a:84:43:
09:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:B6:63:84:29:49:6C:03:F8:1C:46:D5:96:0B:3F:DC:08:E6:F5:CC
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6FE544F4DB3111EF95F69249762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.223.27.0/24
Signature Algorithm: sha256WithRSAEncryption
75:c8:ae:67:62:48:6f:3c:93:af:e2:ba:68:b8:a3:28:d3:b3:
52:2e:83:0f:e0:7d:a7:9b:cf:40:1d:0d:36:0b:61:39:b6:3e:
5c:d7:37:2d:7f:7c:8a:56:44:b1:e6:a4:08:c1:12:77:30:42:
ef:c4:31:30:41:89:bf:b7:04:e5:02:70:ec:e4:66:32:31:43:
da:af:2f:98:ad:49:18:ef:a9:25:64:f7:dd:31:35:4e:bd:6f:
19:23:8d:bc:98:37:76:f3:76:0f:96:bb:ba:4c:1b:7e:e7:6c:
28:d7:a5:4a:3f:04:ea:5b:16:95:ac:24:17:93:f7:ac:cd:4f:
aa:78:b7:fb:c6:7c:1a:9b:6c:53:63:37:14:30:14:1e:74:d3:
59:a8:64:91:cc:ba:2c:c0:5a:ce:af:d8:02:de:d3:c2:3e:b6:
07:63:3d:2b:6e:f1:f0:c1:77:9e:bb:6b:76:b7:67:93:d0:fb:
92:73:ac:db:81:f8:4d:ad:96:0c:ad:a5:90:97:91:ee:ca:59:
d1:6e:cc:5d:f3:92:74:be:fe:46:21:8e:23:77:df:79:70:29:
de:fc:27:ac:c1:58:b0:5c:03:72:b7:b9:40:47:5e:c3:12:7e:
42:19:8b:aa:63:62:6e:ff:15:f1:48:f6:6e:6f:af:15:49:a2:
d2:d3:e4:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 05:33:57 2025 by rpki-client