Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7308B840D40211EFBFCDC3B1762E951A.roa
File: 7308B840D40211EFBFCDC3B1762E951A.roa (raw, json)
Hash identifier: bUVzkFBCG619QA/fVz+Khb49dQpNjej0Cshc1GpCXVU=
Subject key identifier: 40:C5:06:87:37:88:15:DD:89:E7:64:0C:F2:4A:29:2D:1D:90:26:70
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 013C1A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7308B840D40211EFBFCDC3B1762E951A.roa
Signing time: Thu 16 Jan 2025 12:07:26 +0000
ROA not before: Thu 16 Jan 2025 12:07:22 +0000
ROA not after: Sun 16 Mar 2025 12:07:22 +0000
asID: 17561
IP address blocks: 154.206.207.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 80922 (0x13c1a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 16 12:07:22 2025 GMT
Not After : Mar 16 12:07:22 2025 GMT
Subject: CN=6788f67e-e6a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:e9:bf:df:4e:1f:45:36:5d:f8:1c:51:7e:57:
bc:c8:18:33:ca:c3:ce:49:a2:ba:47:da:49:73:94:
50:29:b9:63:dc:7c:10:2c:78:94:23:ee:ee:46:33:
77:33:b3:d7:47:cc:29:a0:49:74:de:26:da:a6:d1:
dd:32:cc:ce:97:85:30:0d:15:fa:b3:06:28:73:9f:
49:72:71:59:8d:fc:33:00:12:55:9b:75:de:1a:ab:
e2:80:6d:28:6c:1b:db:82:04:c5:19:32:99:ec:2c:
e1:e6:bc:27:4b:7d:f6:e6:27:c0:5b:45:59:da:ae:
e5:1e:14:39:5e:12:c8:99:85:45:9c:04:4e:11:71:
a5:e2:9d:31:66:b4:76:d3:2c:a7:63:89:c2:58:98:
a1:a3:fe:37:a7:28:1c:6d:8a:f5:3e:b3:a1:32:ac:
97:68:3e:fe:3f:39:ce:11:3e:87:5d:72:dc:f7:8e:
76:e2:42:2b:1c:ac:f2:fb:70:89:16:5c:13:2f:bd:
89:18:a3:b9:94:56:2c:a0:46:2d:83:24:c0:0c:fe:
1c:f0:5b:81:b9:76:ef:61:79:bd:42:30:ef:7c:8e:
71:23:9b:6d:14:4f:2a:16:35:d7:ce:84:33:af:a1:
2a:cf:86:12:9b:04:ee:d6:8a:35:99:c3:5b:f1:2c:
aa:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:C5:06:87:37:88:15:DD:89:E7:64:0C:F2:4A:29:2D:1D:90:26:70
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7308B840D40211EFBFCDC3B1762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.207.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:8e:17:30:be:cf:66:f8:59:d6:47:de:42:69:17:dd:e7:68:
d1:b5:7a:d2:86:ad:a9:af:fa:bd:7e:1e:e4:21:7c:01:e3:f6:
98:f1:63:44:5c:b6:6c:1e:09:a1:0d:56:82:04:a9:74:59:b0:
ec:a1:81:47:2f:ea:33:30:91:87:a2:ad:a0:89:0d:a4:ae:ea:
8b:eb:4d:d3:24:62:81:07:b5:02:0e:5a:cd:8a:5d:ad:5b:1b:
51:41:c7:1c:a1:98:f8:ce:c9:51:36:37:54:65:d1:34:ef:28:
85:65:1a:97:d6:16:46:73:98:62:24:c4:2a:85:9d:1f:e5:a2:
0e:2e:b2:94:33:80:db:90:9f:44:75:e8:96:29:e2:b4:73:85:
11:49:a3:29:32:ba:e2:f1:1a:35:84:f2:6d:ac:60:51:3a:f9:
11:4e:6f:ea:6b:bb:9c:05:f3:6c:5a:95:11:2a:23:59:66:b6:
f5:ef:e4:fb:80:de:46:83:ac:06:20:4d:11:88:f3:f0:96:96:
db:1a:8f:cb:96:4d:a3:34:11:64:a9:df:79:05:4e:a6:a3:d8:
2d:f1:39:7f:61:11:c8:b7:17:10:bb:7a:f3:75:2d:74:90:f4:
e1:7b:b0:10:ed:d4:c2:69:57:17:35:5b:c2:2a:14:ef:c3:a7:
81:33:9b:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 22:44:58 2025 by rpki-client