Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/71207D6CAD5E11EF989F794C762E951A.roa
File: 71207D6CAD5E11EF989F794C762E951A.roa (raw, json)
Hash identifier: wanA/t37FUs86IJ9gAX3+xapACVDiXcG/VkGqbKnzbo=
Subject key identifier: 05:53:5F:84:8B:E5:FA:20:A0:51:40:A5:86:11:C2:CE:95:6B:46:DA
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0114FB
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/71207D6CAD5E11EF989F794C762E951A.roa
Signing time: Thu 28 Nov 2024 07:57:41 +0000
ROA not before: Thu 28 Nov 2024 07:57:37 +0000
ROA not after: Tue 11 Feb 2025 07:57:37 +0000
asID: 3561
IP address blocks: 154.197.8.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 70907 (0x114fb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 28 07:57:37 2024 GMT
Not After : Feb 11 07:57:37 2025 GMT
Subject: CN=67482275-5d0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:aa:96:53:02:7f:44:4a:ca:11:dd:2e:54:de:
fb:bc:07:df:62:ce:cc:17:98:f3:d3:a4:eb:05:8b:
8a:57:a7:5d:9d:6e:2c:06:26:00:7d:19:a7:40:52:
c8:5b:e1:ab:c8:98:8f:85:40:e2:30:84:d5:6f:8f:
c9:35:05:71:76:fc:a7:7e:47:e0:7b:11:8b:0e:a8:
18:65:05:09:12:3d:31:cd:5a:7a:80:56:08:1f:ac:
11:95:c7:61:6b:a9:53:34:04:ff:59:ac:e2:ef:f9:
f9:92:87:76:f5:5e:6a:34:85:36:05:e0:f7:84:4c:
ae:8f:3b:50:c4:2b:c6:39:55:3a:3c:f4:f0:31:29:
21:15:56:85:2a:31:1d:78:0b:ab:a1:fe:ae:de:b9:
b6:e5:cc:6a:48:8e:b2:b7:b4:d2:b4:61:85:c8:5b:
c9:a6:04:1e:1a:38:55:ae:5a:51:fb:a1:eb:34:e6:
1e:3c:d0:6d:27:36:f9:78:84:a2:74:1f:7b:af:2e:
8a:ff:be:67:24:bd:be:d6:b8:4a:19:a3:89:a1:bb:
ab:d9:7a:8b:2e:3e:62:f9:a4:3b:31:85:6e:38:a4:
1c:e0:82:25:b0:ef:91:ac:44:97:54:ba:f4:6f:95:
5e:05:42:77:72:86:e9:52:ef:56:de:82:ce:33:70:
83:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:53:5F:84:8B:E5:FA:20:A0:51:40:A5:86:11:C2:CE:95:6B:46:DA
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/71207D6CAD5E11EF989F794C762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.8.0/22
Signature Algorithm: sha256WithRSAEncryption
ba:1a:26:ad:09:5b:26:39:a5:8c:b5:d5:d0:0b:3b:37:46:74:
e0:0d:ec:14:81:8d:2e:59:98:61:3e:a2:3c:9b:ff:ec:f8:f9:
ee:83:86:a4:15:cd:a9:2a:0b:54:81:dc:bd:b4:ba:8f:44:fd:
74:bb:5f:ca:69:08:38:a8:31:3e:a5:2b:e6:60:e1:99:e4:86:
f3:52:e1:2f:d9:91:93:0d:0e:89:e6:ac:64:a3:f2:7e:9d:64:
a0:a1:d6:07:c4:d0:23:6e:4e:dc:c7:28:d6:75:aa:f7:d1:5f:
c5:f4:14:f7:d6:9b:71:d1:86:70:e2:c9:90:bf:d2:e6:fb:65:
96:4f:53:2d:95:c9:27:ce:bc:1b:cf:f4:bb:d4:df:02:56:77:
23:9f:4b:e6:02:fc:68:a3:3b:ce:12:a8:c7:b7:92:f9:ba:f9:
16:87:9d:13:53:e4:fe:b3:74:c2:06:d7:48:66:76:6f:a4:57:
ea:a0:82:55:fb:d1:52:a7:28:91:4c:d2:aa:20:7e:1b:06:81:
d9:00:b2:7f:94:66:93:6d:b2:c0:ad:3b:ba:ed:d6:8b:75:0a:
c2:d1:a8:1e:de:f6:f6:98:3e:ac:a1:3c:c3:e9:6a:32:ed:ed:
a1:2b:bc:f2:09:df:e9:87:d3:d7:68:3c:43:57:67:11:38:06:
8c:a8:8a:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 09:48:57 2025 by rpki-client