Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/74C06998DA6B11EF8BB0218E762E951A.roa
File: 74C06998DA6B11EF8BB0218E762E951A.roa (raw, json)
Hash identifier: s1a2VC+crEeIz8UR5QPQVFwYRGV1UlRwXVQKt/ObyCc=
Subject key identifier: 65:7E:7B:A8:88:30:6A:4B:78:12:44:35:B2:68:9C:2C:5E:9D:83:29
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0148D0
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/74C06998DA6B11EF8BB0218E762E951A.roa
Signing time: Fri 24 Jan 2025 15:54:13 +0000
ROA not before: Fri 24 Jan 2025 15:54:09 +0000
ROA not after: Mon 03 Mar 2025 15:54:09 +0000
asID: 203020
IP address blocks: 154.223.187.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 84176 (0x148d0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 24 15:54:09 2025 GMT
Not After : Mar 3 15:54:09 2025 GMT
Subject: CN=6793b7a5-da47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:85:78:6b:f9:e1:88:c4:58:2d:8f:7c:4f:01:
62:19:0c:4b:e5:b9:1f:46:88:4a:f0:f5:12:f1:70:
b3:c5:db:1d:9e:fe:78:0f:18:7f:0b:75:a9:f7:94:
c7:56:12:14:1c:83:f8:34:b6:b9:3f:2f:63:76:3c:
21:9c:23:c2:54:74:08:c6:67:48:8b:22:40:25:00:
37:40:38:04:85:74:c5:04:cf:54:2b:ff:63:ab:ae:
fb:5b:dc:b0:81:eb:44:8d:f9:ea:fb:ae:ca:47:6d:
c2:c5:2b:5a:3e:0a:cf:48:4c:d7:32:61:6b:c8:ce:
d2:d4:ae:7e:6c:30:c8:60:91:1d:21:1d:52:9f:36:
27:22:c3:79:86:6c:53:03:5f:27:e7:84:9b:cd:b0:
34:93:9d:f6:79:7b:ae:9e:1b:14:8e:2c:b4:40:17:
1e:74:81:b8:a7:05:16:9c:c1:18:76:a8:e5:e3:fa:
22:35:d2:3d:3c:46:ef:14:ed:8c:29:ba:a8:cd:61:
b5:03:22:84:3d:1c:cf:b1:92:e7:6b:07:55:50:fb:
db:74:96:94:48:94:e8:76:1c:ee:ed:2f:18:ad:5b:
b3:59:36:94:ed:28:ea:06:66:50:85:f9:a2:93:75:
9d:f9:7d:e9:dd:3b:2d:3e:bf:ac:ad:9b:43:29:92:
8e:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:7E:7B:A8:88:30:6A:4B:78:12:44:35:B2:68:9C:2C:5E:9D:83:29
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/74C06998DA6B11EF8BB0218E762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.223.187.0/24
Signature Algorithm: sha256WithRSAEncryption
96:48:15:96:da:c0:ff:93:1d:06:6f:6e:be:e4:96:56:39:4b:
76:0e:30:6b:0a:70:ee:df:da:94:74:a6:fd:38:84:e5:4d:8a:
ac:9f:6a:01:e9:02:6a:ce:79:60:eb:c5:63:13:c5:97:03:f4:
6f:0c:84:86:d1:6a:33:07:d2:91:98:6c:6a:c5:5c:37:23:e1:
1f:ea:d1:95:ac:33:f8:b0:7c:f4:ea:c3:2f:73:97:9e:46:7d:
3a:b4:a1:e4:0c:23:e6:3a:04:a9:32:21:39:85:07:1f:4c:37:
30:eb:c5:53:7b:60:f1:3f:5a:9f:78:fb:3d:de:b8:5e:8b:9b:
3c:d6:61:4f:42:6a:04:d9:aa:23:01:eb:17:a5:46:b4:c8:04:
08:f0:f7:ad:95:bc:f9:8a:5c:8e:e6:db:54:f9:1a:d1:86:2a:
8a:df:f9:a3:de:0e:23:ce:bb:a0:96:c1:4b:f8:1e:35:47:77:
e5:c8:d6:33:42:e2:a5:53:4d:bf:f2:64:4d:19:63:c5:ee:2d:
8a:76:27:0c:49:aa:3d:4b:6d:64:47:cd:0b:9b:5c:3e:1f:38:
12:56:9e:e3:c9:a5:55:6c:9f:09:94:84:df:36:c2:44:b0:b4:
e2:3e:d0:18:d6:fa:5f:a0:43:26:37:5f:6a:09:b3:59:b1:ae:
ff:28:ac:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 16:58:04 2025 by rpki-client