Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/704D83A6DA6011EFA41D8143762E951A.roa
File: 704D83A6DA6011EFA41D8143762E951A.roa (raw, json)
Hash identifier: 2gKlLQdhaSZQE+pxyEZYRvgO7mlJMbPGgQEKuidTGVA=
Subject key identifier: 13:36:68:15:04:E6:AA:96:FD:F7:F9:26:BF:68:45:8E:7B:F3:68:39
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01483E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/704D83A6DA6011EFA41D8143762E951A.roa
Signing time: Fri 24 Jan 2025 14:35:21 +0000
ROA not before: Fri 24 Jan 2025 14:35:16 +0000
ROA not after: Sat 01 Mar 2025 14:35:16 +0000
asID: 44559
IP address blocks: 154.203.206.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 84030 (0x1483e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 24 14:35:16 2025 GMT
Not After : Mar 1 14:35:16 2025 GMT
Subject: CN=6793a529-d433
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:6a:9b:d5:41:a6:4d:a6:3a:7d:96:f8:09:97:
19:01:30:e9:56:0c:bd:53:62:39:26:23:f7:92:ae:
f5:0f:26:3a:42:8b:06:6c:72:d5:98:d0:75:7f:c1:
30:d8:50:d5:94:3a:30:14:c4:c8:a2:b4:8c:fd:fc:
23:cc:22:f2:b8:07:c6:99:bd:ca:a6:fd:ba:cf:bf:
1a:22:40:62:6a:f0:a4:c1:62:8a:c2:c4:0f:84:a8:
79:a6:db:ae:4e:63:ae:7e:bd:b9:ec:66:98:5c:af:
dc:e1:34:8d:72:e0:1d:0f:d7:e9:0c:5f:2f:11:6e:
51:5d:2a:3a:45:f5:94:97:71:49:b1:d0:17:4e:e1:
4b:ba:70:5d:e7:5a:f2:c5:e5:1e:fb:8f:f0:5b:df:
3f:fb:d7:79:fe:1a:72:00:26:58:95:b0:ef:fb:cd:
86:02:6a:c8:0f:35:38:1e:a2:4e:e7:bb:49:33:38:
3c:60:97:b1:09:06:b4:3c:4b:d2:ed:57:4c:42:16:
da:bd:a1:02:cd:0f:98:9e:27:96:0b:d5:7e:54:db:
0c:bc:fe:bc:09:34:34:fd:69:57:cd:c1:15:e1:9c:
3e:d4:e7:bc:47:23:8c:07:da:38:d2:87:ff:a9:29:
51:fa:d2:0e:4c:fb:c0:ed:aa:17:ec:b6:ed:45:59:
da:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:36:68:15:04:E6:AA:96:FD:F7:F9:26:BF:68:45:8E:7B:F3:68:39
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/704D83A6DA6011EFA41D8143762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.203.206.0/24
Signature Algorithm: sha256WithRSAEncryption
d3:ed:be:1f:39:22:b0:f1:e8:1a:d7:80:6a:50:8d:89:89:b7:
bd:52:bb:26:ff:68:4c:8d:3a:95:4c:31:c9:4b:07:4f:6a:eb:
48:1f:1c:ae:16:0a:46:0a:2e:83:ca:c8:3b:53:91:ff:8b:f6:
85:d6:38:fa:f9:a6:5e:c9:ff:f1:0c:c2:9e:ca:66:d9:52:9a:
4b:0e:bc:26:71:1f:99:9d:9d:4e:4b:80:3b:ba:a6:ff:94:c4:
53:6b:1d:44:75:f9:d2:5d:44:ac:d6:d8:e8:d9:c5:b5:4d:6c:
29:db:8b:82:bc:1c:45:0a:dd:0d:30:a9:0f:d8:92:78:f7:56:
c8:ae:99:e2:9c:99:a4:95:89:3e:25:0c:88:a4:37:70:fd:67:
35:51:65:cb:a3:11:84:bd:db:c3:ec:a7:e8:c7:f2:4b:23:c3:
e0:da:3a:2f:10:85:77:3a:3e:d5:ed:66:df:af:8b:6f:bc:76:
9f:d3:6a:39:79:a4:89:35:da:af:17:97:05:e5:b3:0d:f0:13:
c7:c7:ea:c5:cc:a9:42:f2:a8:33:4b:f9:c8:93:11:ed:55:09:
03:b4:db:a3:ac:c8:9a:8d:70:c6:65:fa:f5:ca:a3:4b:b7:ee:
bd:3a:94:71:13:52:54:f4:1f:db:d4:78:57:ec:05:f9:50:f5:
90:b7:19:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 10:12:26 2025 by rpki-client